Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Deal Slider removal help


  • This topic is locked This topic is locked
12 replies to this topic

#1 Uprightman

Uprightman

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 02 January 2014 - 04:11 PM

I have the deal slider ad ware on my google crome extensions and cant figure out how to remove it. The delete button is not there. I have tried reinstalling crome but still there.


Edited by hamluis, 02 January 2014 - 04:16 PM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:56 PM

Posted 02 January 2014 - 05:03 PM

Hello -

Please read the Deal Slider Uninstall Instructions
Once removed from extensions, you can reset your Homepage back to original.

 

This is adware that you have downloaded with another program like games etc.

 

 

To clean up, follow this -

Please download and run RKill by Grinler.

A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully. At worst the tool will run for about 2 minutes

 

Important: Do not reboot your computer until you complete the next step.

 

NOTE that this will reboot your computer, so please close all open programs.

* Please download AdwCleaner by Xplode and save to your Desktop.
* Double-click on AdwCleaner.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* Click on the Scan button (only once)
* AdwCleaner will begin...be patient as the scan may take some time to complete.
* After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
* NOW - Click on the Clean button (only once)
* Press OK when asked to close all programs and follow the onscreen prompts.
* Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
* After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
* Copy and paste the contents of that logfile in your next reply.
* A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

 

Thank You -



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:56 AM

Posted 02 January 2014 - 05:03 PM

Hello, what is your Browser and operating system?

Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
    [list]
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Uprightman

Uprightman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 02 January 2014 - 05:12 PM

16:08:17.0970 0x0a18  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
16:08:27.0064 0x0a18  ============================================================
16:08:27.0064 0x0a18  Current date / time: 2014/01/02 16:08:27.0064
16:08:27.0064 0x0a18  SystemInfo:
16:08:27.0064 0x0a18  
16:08:27.0064 0x0a18  OS Version: 5.1.2600 ServicePack: 3.0
16:08:27.0064 0x0a18  Product type: Workstation
16:08:27.0064 0x0a18  ComputerName: PHILIP-ACF5D5BE
16:08:27.0064 0x0a18  UserName: Philip
16:08:27.0064 0x0a18  Windows directory: C:\WINDOWS
16:08:27.0064 0x0a18  System windows directory: C:\WINDOWS
16:08:27.0064 0x0a18  Processor architecture: Intel x86
16:08:27.0064 0x0a18  Number of processors: 2
16:08:27.0064 0x0a18  Page size: 0x1000
16:08:27.0064 0x0a18  Boot type: Normal boot
16:08:27.0064 0x0a18  ============================================================
16:08:28.0174 0x0a18  KLMD registered as C:\WINDOWS\system32\drivers\32266919.sys
16:08:28.0502 0x0a18  System UUID: {C3D2F518-58E6-31BF-5143-42688414E73A}
16:08:29.0861 0x0a18  Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
16:08:29.0861 0x0a18  Drive \Device\Harddisk1\DR2 - Size: 0x1F5400000 (7.83 Gb), SectorSize: 0x200, Cylinders: 0x3FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:08:29.0861 0x0a18  ============================================================
16:08:29.0861 0x0a18  \Device\Harddisk0\DR0:
16:08:29.0877 0x0a18  MBR partitions:
16:08:29.0877 0x0a18  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A011FC
16:08:29.0877 0x0a18  \Device\Harddisk1\DR2:
16:08:29.0877 0x0a18  MBR partitions:
16:08:29.0877 0x0a18  \Device\Harddisk1\DR2\Partition1: MBR, Type 0x8B, StartLBA 0x6F6F42C3, BlocksNum 0x72652074
16:08:29.0877 0x0a18  ============================================================
16:08:29.0892 0x0a18  C: <-> \Device\Harddisk0\DR0\Partition1
16:08:29.0892 0x0a18  ============================================================
16:08:29.0892 0x0a18  Initialize success
16:08:29.0892 0x0a18  ============================================================
16:08:37.0080 0x01f0  ============================================================
16:08:37.0080 0x01f0  Scan started
16:08:37.0080 0x01f0  Mode: Manual; 
16:08:37.0080 0x01f0  ============================================================
16:08:37.0080 0x01f0  KSN ping started
16:08:51.0299 0x01f0  KSN ping finished: true
16:08:52.0330 0x01f0  ================ Scan system memory ========================
16:08:52.0330 0x01f0  System memory - ok
16:08:52.0330 0x01f0  ================ Scan services =============================
16:08:52.0470 0x01f0  Abiosdsk - ok
16:08:52.0470 0x01f0  abp480n5 - ok
16:08:52.0517 0x01f0  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:08:52.0517 0x01f0  ACPI - ok
16:08:52.0658 0x01f0  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
16:08:52.0674 0x01f0  ACPIEC - ok
16:08:52.0705 0x01f0  ADExchange - ok
16:08:52.0752 0x01f0  [ 0BCB5BD6EA1CBF1750D881E0C4E923FF, D3643914CEA9C9B58681095DCE8A0C3309709FB4EFEDC139F93476758B66DFA0 ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
16:08:52.0752 0x01f0  ADIHdAudAddService - ok
16:08:52.0752 0x01f0  adpu160m - ok
16:08:52.0799 0x01f0  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
16:08:52.0799 0x01f0  aec - ok
16:08:52.0845 0x01f0  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
16:08:52.0845 0x01f0  AFD - ok
16:08:52.0845 0x01f0  Aha154x - ok
16:08:52.0845 0x01f0  aic78u2 - ok
16:08:52.0845 0x01f0  aic78xx - ok
16:08:52.0877 0x01f0  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
16:08:52.0877 0x01f0  Alerter - ok
16:08:52.0892 0x01f0  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
16:08:52.0908 0x01f0  ALG - ok
16:08:52.0908 0x01f0  AliIde - ok
16:08:52.0908 0x01f0  amsint - ok
16:08:52.0924 0x01f0  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
16:08:52.0939 0x01f0  AppMgmt - ok
16:08:52.0939 0x01f0  asc - ok
16:08:52.0939 0x01f0  asc3350p - ok
16:08:52.0939 0x01f0  asc3550 - ok
16:08:53.0033 0x01f0  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
16:08:53.0049 0x01f0  aspnet_state - ok
16:08:53.0049 0x01f0  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:08:53.0049 0x01f0  AsyncMac - ok
16:08:53.0080 0x01f0  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
16:08:53.0080 0x01f0  atapi - ok
16:08:53.0080 0x01f0  Atdisk - ok
16:08:53.0142 0x01f0  [ 471087B5E1E01CC82604E81EA14781D8, DA6AAFE65232AF3DA3D0D5F399730A1117B0DBBCB6AA2A9BD0D1ADA22A1198B8 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
16:08:53.0158 0x01f0  Ati HotKey Poller - ok
16:08:53.0205 0x01f0  [ B979BA0120B6DB757196A8E2E873FE3C, 4F4CCD1D07485A53CA3ECEB10E029102BBE9946A15C7B67840E64D352808A0CA ] ATI Smart       C:\WINDOWS\system32\ati2sgag.exe
16:08:53.0220 0x01f0  ATI Smart - ok
16:08:53.0377 0x01f0  [ C0B86ECB324E50F6BBD529F9D5C6B24B, 6B6E58CBDE1010FF13740DA91482E8A40D7B31CD808C16B524BE012C0EADB0D1 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
16:08:53.0533 0x01f0  ati2mtag - ok
16:08:53.0564 0x01f0  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:08:53.0564 0x01f0  Atmarpc - ok
16:08:53.0595 0x01f0  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
16:08:53.0595 0x01f0  AudioSrv - ok
16:08:53.0627 0x01f0  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
16:08:53.0627 0x01f0  audstub - ok
16:08:53.0892 0x01f0  [ 4DB93F4DB7077801D2D82013506AC1D0, 3D71655D1557021D5D828E37EAFDBA35C631061E48D64B9D376746F8FCC760B3 ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe
16:08:54.0111 0x01f0  AVGIDSAgent - ok
16:08:54.0158 0x01f0  [ 5BCAE36134162830ED283F4C3D88476A, A47EE816A88A8C18458BA721AB829E49D492128BA8D5BF6FF317C2B5A1FFA60F ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
16:08:54.0158 0x01f0  AVGIDSDriver - ok
16:08:54.0174 0x01f0  [ 7C8E88549BCDAAC965B1B724C175F7A9, 86240BF965C60FFAF381879D1B2DD7190FAD597E7534AEE9A9E48A2BDEC119BA ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
16:08:54.0174 0x01f0  AVGIDSHX - ok
16:08:54.0174 0x01f0  [ F8D2E76EA51B3B4119DF3D6A7A6D99F3, 417E05BA987345ED48223404DEBC10043A18CBC749462186CC3EE9C20F47C86D ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
16:08:54.0189 0x01f0  AVGIDSShim - ok
16:08:54.0189 0x01f0  [ 2018C4E9A40B122408763A5635CF14D9, E0BF5D5C7CFDD078F8BBA9627F1F8E0434B38A23FA9E039B37A22D7E1AD4EFFA ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
16:08:54.0189 0x01f0  Avgldx86 - ok
16:08:54.0205 0x01f0  [ E2B9CF2CF787C6978E7CC898E9684E48, 73D5D8514EF1BF3BCC64DC158C68189D07B3940641F1155823C6822D03BC761B ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
16:08:54.0205 0x01f0  Avglogx - ok
16:08:54.0220 0x01f0  [ 3F59750A3AA55C46663801E7C2FD1E2B, F748EB6552889974CB1FC6F666F2D78F654CAA990A339C741255355295CD46E8 ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
16:08:54.0220 0x01f0  Avgmfx86 - ok
16:08:54.0220 0x01f0  [ 90FA3A4BB1039701D68FD1CC2ED3EE22, 5842AECBF76163BCAEE19DED708291DD8402E2D24DD48453E6067A9AE5BABB11 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
16:08:54.0236 0x01f0  Avgrkx86 - ok
16:08:54.0236 0x01f0  [ 14370FB29526F593C04FA48B5D69F7F0, EE5BBE674210AC3BC4103B6D43BABDCCCE681F3B0E93075F93CD453730C316B8 ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
16:08:54.0252 0x01f0  Avgtdix - ok
16:08:54.0299 0x01f0  [ D646FA5135A1CD795877AFE9D17FA9ED, 2F97FBCD7BD75727A77C17D75D2482AE819D5D2EB9760D96412F9C20AA7D9473 ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
16:08:54.0299 0x01f0  avgwd - ok
16:08:54.0345 0x01f0  [ D0692F7B8217E3B82D2BFAC535816117, D44E8889E8C1F463479937F130BDCF0321F65BA43442FE66BF6E3654177E3E8E ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
16:08:54.0345 0x01f0  b57w2k - ok
16:08:54.0392 0x01f0  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:08:54.0392 0x01f0  Beep - ok
16:08:54.0439 0x01f0  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
16:08:54.0455 0x01f0  BITS - ok
16:08:54.0580 0x01f0  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:08:54.0580 0x01f0  Bonjour Service - ok
16:08:54.0627 0x01f0  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
16:08:54.0627 0x01f0  Browser - ok
16:08:54.0736 0x01f0  catchme - ok
16:08:54.0767 0x01f0  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
16:08:54.0767 0x01f0  cbidf2k - ok
16:08:54.0767 0x01f0  cd20xrnt - ok
16:08:54.0783 0x01f0  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
16:08:54.0783 0x01f0  Cdaudio - ok
16:08:54.0814 0x01f0  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
16:08:54.0830 0x01f0  Cdfs - ok
16:08:54.0830 0x01f0  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:08:54.0845 0x01f0  Cdrom - ok
16:08:54.0845 0x01f0  cerc6 - ok
16:08:54.0845 0x01f0  Changer - ok
16:08:54.0861 0x01f0  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
16:08:54.0861 0x01f0  CiSvc - ok
16:08:54.0877 0x01f0  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
16:08:54.0877 0x01f0  ClipSrv - ok
16:08:54.0939 0x01f0  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:08:54.0939 0x01f0  clr_optimization_v2.0.50727_32 - ok
16:08:54.0970 0x01f0  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:08:55.0017 0x01f0  clr_optimization_v4.0.30319_32 - ok
16:08:55.0033 0x01f0  CmdIde - ok
16:08:55.0033 0x01f0  COMSysApp - ok
16:08:55.0033 0x01f0  Cpqarray - ok
16:08:55.0064 0x01f0  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
16:08:55.0064 0x01f0  CryptSvc - ok
16:08:55.0064 0x01f0  dac2w2k - ok
16:08:55.0064 0x01f0  dac960nt - ok
16:08:55.0111 0x01f0  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:08:55.0127 0x01f0  DcomLaunch - ok
16:08:55.0142 0x01f0  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
16:08:55.0142 0x01f0  Dhcp - ok
16:08:55.0142 0x01f0  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
16:08:55.0142 0x01f0  Disk - ok
16:08:55.0158 0x01f0  dmadmin - ok
16:08:55.0189 0x01f0  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
16:08:55.0220 0x01f0  dmboot - ok
16:08:55.0220 0x01f0  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
16:08:55.0236 0x01f0  dmio - ok
16:08:55.0252 0x01f0  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
16:08:55.0252 0x01f0  dmload - ok
16:08:55.0267 0x01f0  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
16:08:55.0267 0x01f0  dmserver - ok
16:08:55.0299 0x01f0  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
16:08:55.0314 0x01f0  DMusic - ok
16:08:55.0330 0x01f0  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:08:55.0330 0x01f0  Dnscache - ok
16:08:55.0345 0x01f0  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:08:55.0361 0x01f0  Dot3svc - ok
16:08:55.0361 0x01f0  dpti2o - ok
16:08:55.0361 0x01f0  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
16:08:55.0361 0x01f0  drmkaud - ok
16:08:55.0361 0x01f0  EagleXNt - ok
16:08:55.0392 0x01f0  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
16:08:55.0392 0x01f0  EapHost - ok
16:08:55.0392 0x01f0  efavdrv - ok
16:08:55.0392 0x01f0  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
16:08:55.0392 0x01f0  ERSvc - ok
16:08:55.0424 0x01f0  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
16:08:55.0424 0x01f0  Eventlog - ok
16:08:55.0470 0x01f0  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
16:08:55.0486 0x01f0  EventSystem - ok
16:08:55.0517 0x01f0  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
16:08:55.0517 0x01f0  Fastfat - ok
16:08:55.0549 0x01f0  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:08:55.0564 0x01f0  FastUserSwitchingCompatibility - ok
16:08:55.0595 0x01f0  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
16:08:55.0595 0x01f0  Fdc - ok
16:08:55.0627 0x01f0  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
16:08:55.0627 0x01f0  Fips - ok
16:08:55.0627 0x01f0  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
16:08:55.0627 0x01f0  Flpydisk - ok
16:08:55.0674 0x01f0  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:08:55.0674 0x01f0  FltMgr - ok
16:08:55.0720 0x01f0  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:08:55.0720 0x01f0  FontCache3.0.0.0 - ok
16:08:55.0720 0x01f0  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:08:55.0736 0x01f0  Fs_Rec - ok
16:08:55.0736 0x01f0  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:08:55.0736 0x01f0  Ftdisk - ok
16:08:55.0752 0x01f0  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:08:55.0752 0x01f0  Gpc - ok
16:08:55.0830 0x01f0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
16:08:55.0830 0x01f0  gupdate - ok
16:08:55.0845 0x01f0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
16:08:55.0845 0x01f0  gupdatem - ok
16:08:55.0877 0x01f0  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:08:55.0892 0x01f0  HDAudBus - ok
16:08:55.0955 0x01f0  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:08:55.0955 0x01f0  helpsvc - ok
16:08:55.0986 0x01f0  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
16:08:55.0986 0x01f0  HidServ - ok
16:08:56.0017 0x01f0  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:08:56.0017 0x01f0  hidusb - ok
16:08:56.0064 0x01f0  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
16:08:56.0064 0x01f0  hkmsvc - ok
16:08:56.0064 0x01f0  hpn - ok
16:08:56.0111 0x01f0  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
16:08:56.0127 0x01f0  HTTP - ok
16:08:56.0158 0x01f0  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
16:08:56.0158 0x01f0  HTTPFilter - ok
16:08:56.0158 0x01f0  i2omgmt - ok
16:08:56.0158 0x01f0  i2omp - ok
16:08:56.0189 0x01f0  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\drivers\i8042prt.sys
16:08:56.0189 0x01f0  i8042prt - ok
16:08:56.0299 0x01f0  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:08:56.0330 0x01f0  idsvc - ok
16:08:56.0345 0x01f0  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
16:08:56.0345 0x01f0  Imapi - ok
16:08:56.0377 0x01f0  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
16:08:56.0392 0x01f0  ImapiService - ok
16:08:56.0392 0x01f0  ini910u - ok
16:08:56.0392 0x01f0  IntelIde - ok
16:08:56.0408 0x01f0  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:08:56.0408 0x01f0  intelppm - ok
16:08:56.0424 0x01f0  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:08:56.0424 0x01f0  Ip6Fw - ok
16:08:56.0455 0x01f0  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:08:56.0455 0x01f0  IpFilterDriver - ok
16:08:56.0455 0x01f0  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:08:56.0455 0x01f0  IpInIp - ok
16:08:56.0470 0x01f0  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:08:56.0486 0x01f0  IpNat - ok
16:08:56.0517 0x01f0  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:08:56.0517 0x01f0  IPSec - ok
16:08:56.0549 0x01f0  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
16:08:56.0549 0x01f0  IRENUM - ok
16:08:56.0564 0x01f0  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:08:56.0564 0x01f0  isapnp - ok
16:08:56.0674 0x01f0  [ 80A79264302910C7C24BA7E44267EFEF, 6080C233478350C8E07515D20D2D60C3758C4A65432B04E8C8B816248621A3EF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
16:08:56.0689 0x01f0  JavaQuickStarterService - ok
16:08:56.0720 0x01f0  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:08:56.0720 0x01f0  Kbdclass - ok
16:08:56.0720 0x01f0  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:08:56.0720 0x01f0  kbdhid - ok
16:08:56.0736 0x01f0  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
16:08:56.0752 0x01f0  kmixer - ok
16:08:56.0767 0x01f0  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
16:08:56.0767 0x01f0  KSecDD - ok
16:08:56.0799 0x01f0  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
16:08:56.0814 0x01f0  LanmanServer - ok
16:08:56.0845 0x01f0  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:08:56.0845 0x01f0  lanmanworkstation - ok
16:08:56.0845 0x01f0  lbrtfdc - ok
16:08:56.0877 0x01f0  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
16:08:56.0877 0x01f0  LmHosts - ok
16:08:56.0892 0x01f0  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
16:08:56.0892 0x01f0  Messenger - ok
16:08:56.0924 0x01f0  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
16:08:56.0924 0x01f0  mnmdd - ok
16:08:56.0939 0x01f0  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
16:08:56.0939 0x01f0  mnmsrvc - ok
16:08:56.0955 0x01f0  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
16:08:56.0955 0x01f0  Modem - ok
16:08:56.0970 0x01f0  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:08:56.0970 0x01f0  Mouclass - ok
16:08:56.0986 0x01f0  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:08:56.0986 0x01f0  mouhid - ok
16:08:56.0986 0x01f0  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
16:08:57.0002 0x01f0  MountMgr - ok
16:08:57.0049 0x01f0  [ 3B9398E0146855B1DC0E3D9769C80F01, DF69DB5CA30A5577648635C27DD468AF98515D07DF379B3FFDCC6B40744EDE66 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:08:57.0049 0x01f0  MozillaMaintenance - ok
16:08:57.0049 0x01f0  mraid35x - ok
16:08:57.0049 0x01f0  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:08:57.0064 0x01f0  MRxDAV - ok
16:08:57.0111 0x01f0  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:08:57.0127 0x01f0  MRxSmb - ok
16:08:57.0158 0x01f0  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
16:08:57.0158 0x01f0  MSDTC - ok
16:08:57.0158 0x01f0  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
16:08:57.0158 0x01f0  Msfs - ok
16:08:57.0174 0x01f0  MSIServer - ok
16:08:57.0189 0x01f0  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:08:57.0189 0x01f0  MSKSSRV - ok
16:08:57.0205 0x01f0  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:08:57.0205 0x01f0  MSPCLOCK - ok
16:08:57.0205 0x01f0  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
16:08:57.0205 0x01f0  MSPQM - ok
16:08:57.0236 0x01f0  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:08:57.0236 0x01f0  mssmbios - ok
16:08:57.0252 0x01f0  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
16:08:57.0252 0x01f0  Mup - ok
16:08:57.0283 0x01f0  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
16:08:57.0299 0x01f0  napagent - ok
16:08:57.0314 0x01f0  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
16:08:57.0330 0x01f0  NDIS - ok
16:08:57.0330 0x01f0  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:08:57.0345 0x01f0  NdisTapi - ok
16:08:57.0377 0x01f0  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:08:57.0377 0x01f0  Ndisuio - ok
16:08:57.0377 0x01f0  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:08:57.0377 0x01f0  NdisWan - ok
16:08:57.0392 0x01f0  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
16:08:57.0392 0x01f0  NDProxy - ok
16:08:57.0408 0x01f0  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
16:08:57.0424 0x01f0  NetBIOS - ok
16:08:57.0439 0x01f0  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
16:08:57.0439 0x01f0  NetBT - ok
16:08:57.0470 0x01f0  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
16:08:57.0470 0x01f0  NetDDE - ok
16:08:57.0486 0x01f0  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
16:08:57.0486 0x01f0  NetDDEdsdm - ok
16:08:57.0502 0x01f0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
16:08:57.0502 0x01f0  Netlogon - ok
16:08:57.0517 0x01f0  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
16:08:57.0533 0x01f0  Netman - ok
16:08:57.0564 0x01f0  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:08:57.0580 0x01f0  NetTcpPortSharing - ok
16:08:57.0595 0x01f0  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
16:08:57.0611 0x01f0  Nla - ok
16:08:57.0611 0x01f0  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
16:08:57.0611 0x01f0  Npfs - ok
16:08:57.0674 0x01f0  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
16:08:57.0689 0x01f0  Ntfs - ok
16:08:57.0689 0x01f0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
16:08:57.0689 0x01f0  NtLmSsp - ok
16:08:57.0736 0x01f0  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
16:08:57.0752 0x01f0  NtmsSvc - ok
16:08:57.0799 0x01f0  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
16:08:57.0799 0x01f0  Null - ok
16:08:58.0345 0x01f0  [ D2F256F9879DDCE59EFA361CBDC34F96, 28EAFDE7C7DAF8F033B6CE70A00A974F44FE4370B86BE39D0DC58FF2741D1E45 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:08:58.0877 0x01f0  nv - ok
16:08:58.0924 0x01f0  [ F6590528F487FA8BDC6F53D8DFA1F7D3, 4558AD843B4CF737BC60DA9766806A21ED69791FFA985FD94C334398958055E4 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
16:08:58.0939 0x01f0  NVSvc - ok
16:08:59.0064 0x01f0  [ 3F7FDF38D5F9E59B7ADF1C9E90CAEB1F, 997BEDC453394C0A3F30051F003557FE9719314B3948E2870D6B028E51C26C79 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:08:59.0111 0x01f0  nvUpdatusService - ok
16:08:59.0142 0x01f0  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:08:59.0142 0x01f0  NwlnkFlt - ok
16:08:59.0142 0x01f0  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:08:59.0158 0x01f0  NwlnkFwd - ok
16:08:59.0174 0x01f0  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
16:08:59.0174 0x01f0  Parport - ok
16:08:59.0189 0x01f0  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
16:08:59.0189 0x01f0  PartMgr - ok
16:08:59.0220 0x01f0  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
16:08:59.0220 0x01f0  ParVdm - ok
16:08:59.0252 0x01f0  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
16:08:59.0252 0x01f0  PCI - ok
16:08:59.0252 0x01f0  PCIDump - ok
16:08:59.0252 0x01f0  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
16:08:59.0252 0x01f0  PCIIde - ok
16:08:59.0283 0x01f0  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
16:08:59.0283 0x01f0  Pcmcia - ok
16:08:59.0283 0x01f0  PDCOMP - ok
16:08:59.0283 0x01f0  PDFRAME - ok
16:08:59.0283 0x01f0  PDRELI - ok
16:08:59.0299 0x01f0  PDRFRAME - ok
16:08:59.0299 0x01f0  perc2 - ok
16:08:59.0299 0x01f0  perc2hib - ok
16:08:59.0314 0x01f0  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
16:08:59.0314 0x01f0  PlugPlay - ok
16:08:59.0330 0x01f0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
16:08:59.0330 0x01f0  PolicyAgent - ok
16:08:59.0345 0x01f0  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:08:59.0345 0x01f0  PptpMiniport - ok
16:08:59.0345 0x01f0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:08:59.0345 0x01f0  ProtectedStorage - ok
16:08:59.0361 0x01f0  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
16:08:59.0361 0x01f0  PSched - ok
16:08:59.0361 0x01f0  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:08:59.0361 0x01f0  Ptilink - ok
16:08:59.0470 0x01f0  [ D04E7F0671AC569A38525C6F04D96E18, 9E259E1CA7E1C5B8DD079719A4E3B3F7AEEB3D2E1751420B9DFDD9F65EA60DFD ] QBCFMonitorService C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
16:08:59.0470 0x01f0  QBCFMonitorService - ok
16:08:59.0517 0x01f0  [ 6BEE1814470DC12FA20C53DFC3C97EBB, 91E8C22E54A090966E9B96395392B2C03A32DB1AF8DB2289E2EA9460F0A76C0F ] QBFCService     C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
16:08:59.0533 0x01f0  QBFCService - ok
16:08:59.0611 0x01f0  [ A0EC711150D3E41539FE0542F7954341, 882CAAB466CCC2CB67772CD8324E81E5F85F94D0D3A1D29D6E5C5EF6BB3FFE81 ] QBVSS           C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
16:08:59.0674 0x01f0  QBVSS - ok
16:08:59.0674 0x01f0  ql1080 - ok
16:08:59.0674 0x01f0  Ql10wnt - ok
16:08:59.0674 0x01f0  ql12160 - ok
16:08:59.0674 0x01f0  ql1240 - ok
16:08:59.0689 0x01f0  ql1280 - ok
16:08:59.0720 0x01f0  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:08:59.0720 0x01f0  RasAcd - ok
16:08:59.0752 0x01f0  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
16:08:59.0752 0x01f0  RasAuto - ok
16:08:59.0752 0x01f0  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:08:59.0752 0x01f0  Rasl2tp - ok
16:08:59.0783 0x01f0  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
16:08:59.0799 0x01f0  RasMan - ok
16:08:59.0799 0x01f0  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:08:59.0799 0x01f0  RasPppoe - ok
16:08:59.0799 0x01f0  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
16:08:59.0799 0x01f0  Raspti - ok
16:08:59.0830 0x01f0  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:08:59.0830 0x01f0  Rdbss - ok
16:08:59.0830 0x01f0  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:08:59.0830 0x01f0  RDPCDD - ok
16:08:59.0861 0x01f0  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:08:59.0861 0x01f0  rdpdr - ok
16:08:59.0892 0x01f0  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
16:08:59.0892 0x01f0  RDPWD - ok
16:08:59.0924 0x01f0  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
16:08:59.0924 0x01f0  RDSessMgr - ok
16:08:59.0955 0x01f0  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
16:08:59.0955 0x01f0  redbook - ok
16:08:59.0986 0x01f0  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
16:08:59.0986 0x01f0  RemoteAccess - ok
16:09:00.0017 0x01f0  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
16:09:00.0017 0x01f0  RemoteRegistry - ok
16:09:00.0033 0x01f0  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
16:09:00.0033 0x01f0  RpcLocator - ok
16:09:00.0064 0x01f0  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll
16:09:00.0080 0x01f0  RpcSs - ok
16:09:00.0095 0x01f0  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
16:09:00.0111 0x01f0  RSVP - ok
16:09:00.0127 0x01f0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
16:09:00.0127 0x01f0  SamSs - ok
16:09:00.0158 0x01f0  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
16:09:00.0158 0x01f0  SCardSvr - ok
16:09:00.0189 0x01f0  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
16:09:00.0205 0x01f0  Schedule - ok
16:09:00.0220 0x01f0  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:09:00.0220 0x01f0  Secdrv - ok
16:09:00.0220 0x01f0  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
16:09:00.0236 0x01f0  seclogon - ok
16:09:00.0236 0x01f0  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
16:09:00.0236 0x01f0  SENS - ok
16:09:00.0252 0x01f0  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
16:09:00.0252 0x01f0  serenum - ok
16:09:00.0267 0x01f0  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
16:09:00.0267 0x01f0  Serial - ok
16:09:00.0267 0x01f0  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
16:09:00.0283 0x01f0  Sfloppy - ok
16:09:00.0299 0x01f0  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
16:09:00.0299 0x01f0  SharedAccess - ok
16:09:00.0314 0x01f0  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:09:00.0330 0x01f0  ShellHWDetection - ok
16:09:00.0330 0x01f0  Simbad - ok
16:09:00.0330 0x01f0  Sparrow - ok
16:09:00.0377 0x01f0  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
16:09:00.0377 0x01f0  splitter - ok
16:09:00.0392 0x01f0  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
16:09:00.0392 0x01f0  Spooler - ok
16:09:00.0424 0x01f0  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
16:09:00.0424 0x01f0  sr - ok
16:09:00.0439 0x01f0  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
16:09:00.0439 0x01f0  srservice - ok
16:09:00.0470 0x01f0  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
16:09:00.0486 0x01f0  Srv - ok
16:09:00.0549 0x01f0  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
16:09:00.0549 0x01f0  SSDPSRV - ok
16:09:00.0595 0x01f0  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
16:09:00.0611 0x01f0  stisvc - ok
16:09:00.0627 0x01f0  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
16:09:00.0627 0x01f0  swenum - ok
16:09:00.0658 0x01f0  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
16:09:00.0658 0x01f0  swmidi - ok
16:09:00.0658 0x01f0  SwPrv - ok
16:09:00.0658 0x01f0  symc810 - ok
16:09:00.0658 0x01f0  symc8xx - ok
16:09:00.0658 0x01f0  sym_hi - ok
16:09:00.0674 0x01f0  sym_u3 - ok
16:09:00.0674 0x01f0  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
16:09:00.0674 0x01f0  sysaudio - ok
16:09:00.0720 0x01f0  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
16:09:00.0720 0x01f0  SysmonLog - ok
16:09:00.0767 0x01f0  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:09:00.0767 0x01f0  TapiSrv - ok
16:09:00.0799 0x01f0  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:09:00.0814 0x01f0  Tcpip - ok
16:09:00.0830 0x01f0  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
16:09:00.0830 0x01f0  TDPIPE - ok
16:09:00.0845 0x01f0  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
16:09:00.0845 0x01f0  TDTCP - ok
16:09:00.0877 0x01f0  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
16:09:00.0877 0x01f0  TermDD - ok
16:09:00.0908 0x01f0  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
16:09:00.0924 0x01f0  TermService - ok
16:09:00.0939 0x01f0  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
16:09:00.0939 0x01f0  Themes - ok
16:09:00.0970 0x01f0  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
16:09:00.0970 0x01f0  TlntSvr - ok
16:09:00.0970 0x01f0  TosIde - ok
16:09:01.0002 0x01f0  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
16:09:01.0017 0x01f0  TrkWks - ok
16:09:01.0033 0x01f0  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
16:09:01.0033 0x01f0  Udfs - ok
16:09:01.0033 0x01f0  ultra - ok
16:09:01.0080 0x01f0  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
16:09:01.0095 0x01f0  Update - ok
16:09:01.0127 0x01f0  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:09:01.0127 0x01f0  upnphost - ok
16:09:01.0142 0x01f0  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
16:09:01.0142 0x01f0  UPS - ok
16:09:01.0174 0x01f0  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:09:01.0174 0x01f0  usbccgp - ok
16:09:01.0189 0x01f0  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:09:01.0189 0x01f0  usbehci - ok
16:09:01.0205 0x01f0  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:09:01.0205 0x01f0  usbhub - ok
16:09:01.0236 0x01f0  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:09:01.0236 0x01f0  USBSTOR - ok
16:09:01.0252 0x01f0  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:09:01.0252 0x01f0  usbuhci - ok
16:09:01.0267 0x01f0  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
16:09:01.0267 0x01f0  VgaSave - ok
16:09:01.0267 0x01f0  ViaIde - ok
16:09:01.0283 0x01f0  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
16:09:01.0283 0x01f0  VolSnap - ok
16:09:01.0314 0x01f0  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
16:09:01.0330 0x01f0  VSS - ok
16:09:01.0361 0x01f0  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
16:09:01.0361 0x01f0  W32Time - ok
16:09:01.0377 0x01f0  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:09:01.0377 0x01f0  Wanarp - ok
16:09:01.0377 0x01f0  WDICA - ok
16:09:01.0392 0x01f0  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
16:09:01.0408 0x01f0  wdmaud - ok
16:09:01.0408 0x01f0  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:09:01.0408 0x01f0  WebClient - ok
16:09:01.0486 0x01f0  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:09:01.0486 0x01f0  winmgmt - ok
16:09:01.0533 0x01f0  [ 051B1BDECD6DEE18C771B5D5EC7F044D, E9D4870C7E4E6119B274CF788D564BE9C48EA63790F5D6A2E987EB6DF7C93200 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
16:09:01.0533 0x01f0  WmdmPmSN - ok
16:09:01.0580 0x01f0  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
16:09:01.0595 0x01f0  Wmi - ok
16:09:01.0611 0x01f0  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:09:01.0611 0x01f0  WmiApSrv - ok
16:09:01.0814 0x01f0  [ 6BAB4DC65515A098505F8B3D01FB6FE5, 52AA14777920753A8AF76072216A266F5D0036F112F671E7104E1F4C04AE499E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
16:09:01.0845 0x01f0  WMPNetworkSvc - ok
16:09:01.0877 0x01f0  [ C60DC16D4E406810FAD54B98DC92D5EC, 43E7DF323BBD7C889CAD078176E239319A40EE4BEBC7BD753012B94CF5E48551 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
16:09:01.0877 0x01f0  WpdUsb - ok
16:09:01.0970 0x01f0  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:09:01.0986 0x01f0  WPFFontCache_v0400 - ok
16:09:02.0017 0x01f0  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:09:02.0017 0x01f0  WS2IFSL - ok
16:09:02.0049 0x01f0  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
16:09:02.0064 0x01f0  wscsvc - ok
16:09:02.0095 0x01f0  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
16:09:02.0095 0x01f0  wuauserv - ok
16:09:02.0127 0x01f0  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:09:02.0127 0x01f0  WudfPf - ok
16:09:02.0127 0x01f0  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:09:02.0142 0x01f0  WudfRd - ok
16:09:02.0142 0x01f0  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
16:09:02.0158 0x01f0  WudfSvc - ok
16:09:02.0189 0x01f0  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
16:09:02.0205 0x01f0  WZCSVC - ok
16:09:02.0236 0x01f0  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
16:09:02.0236 0x01f0  xmlprov - ok
16:09:02.0236 0x01f0  ================ Scan global ===============================
16:09:02.0283 0x01f0  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
16:09:02.0330 0x01f0  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
16:09:02.0345 0x01f0  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
16:09:02.0377 0x01f0  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
16:09:02.0377 0x01f0  [ Global ] - ok
16:09:02.0377 0x01f0  ================ Scan MBR ==================================
16:09:02.0408 0x01f0  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
16:09:02.0533 0x01f0  \Device\Harddisk0\DR0 - ok
16:09:02.0549 0x01f0  [ C5F17EA99EB07D435830E830F0BC8E2D ] \Device\Harddisk1\DR2
16:09:02.0549 0x01f0  \Device\Harddisk1\DR2 - ok
16:09:02.0549 0x01f0  ================ Scan VBR ==================================
16:09:02.0549 0x01f0  [ 3C64B2681E6AD8EF783081CAE3823E01 ] \Device\Harddisk0\DR0\Partition1
16:09:02.0549 0x01f0  \Device\Harddisk0\DR0\Partition1 - ok
16:09:02.0549 0x01f0  Waiting for KSN requests completion. In queue: 144
16:09:03.0549 0x01f0  Waiting for KSN requests completion. In queue: 144
16:09:04.0549 0x01f0  Waiting for KSN requests completion. In queue: 144
16:09:05.0595 0x01f0  AV detected via SS1: AVG AntiVirus Free Edition 2013, 2013.0, enabled, updated
16:09:05.0611 0x01f0  Win FW state via NFM: enabled
16:09:18.0595 0x01f0  ============================================================
16:09:18.0595 0x01f0  Scan finished
16:09:18.0595 0x01f0  ============================================================
16:09:18.0595 0x01b0  Detected object count: 0
16:09:18.0595 0x01b0  Actual detected object count: 0


#5 Uprightman

Uprightman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 02 January 2014 - 05:21 PM

# AdwCleaner v3.016 - Report created 26/12/2013 at 09:52:26
# Updated 23/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Philip - PHILIP-ACF5D5BE
# Running from : C:\Documents and Settings\Philip\My Documents\Downloads\adwcleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Documents and Settings\All Users\Application Data\NCH Software
Folder Deleted : C:\Program Files\Bench
Folder Deleted : C:\Program Files\NCH Software
Folder Deleted : C:\Documents and Settings\Philip\Application Data\NCH Software
File Deleted : C:\Documents and Settings\Philip\Application Data\Mozilla\Firefox\Profiles\0evfv4bp.default\user.js
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\NCH Software
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\NCH Software
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
 
-\\ Mozilla Firefox v24.0 (en-US)
 
[ File : C:\Documents and Settings\Philip\Application Data\Mozilla\Firefox\Profiles\0evfv4bp.default\prefs.js ]
 
Line Deleted : user_pref("extensions.enabledAddons", "trackerblock%40privacychoice.org:2.2,%7B3d7eb24f-2740-49df-8937-200b1cc08f8a%7D:1.5.17,%7B4DC70064-89E2-4a55-8FC6-E8CDEAE3618C%7D:0.7.7,%7B15312e9a-4905-48da-aae[...]
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=E6F80290-9D16-4866-84E8-FE6093F109B7&n=77fcbf8e&p2=^ASY^xdm026^YY^us&si=290733");
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.initialized", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.installation.contextKey", "");
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.installation.installDate", "2013052814");
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.installation.partnerId", "^ASY^xdm026^YY^us");
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.installation.partnerSubId", "290733");
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.installation.success", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.installation.toolbarId", "E6F80290-9D16-4866-84E8-FE6093F109B7");
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.lastActivePing", "1369768202301");
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.options.defaultSearch", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.options.homePageEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.options.keywordEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.options.tabEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._7oMembers_.weather.location", "76701");
Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "vacationxplorer@mindspark.com");
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Documents and Settings\Philip\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]
 
Deleted : icon_url
 
*************************
 
AdwCleaner[R0].txt - [4064 octets] - [26/12/2013 09:50:48]
AdwCleaner[S0].txt - [3925 octets] - [26/12/2013 09:52:26]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3985 octets] ##########
# AdwCleaner v3.016 - Report created 02/01/2014 at 16:15:17
# Updated 23/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Philip - PHILIP-ACF5D5BE
# Running from : C:\Documents and Settings\Philip\My Documents\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Documents and Settings\All Users\Application Data\ParetoLogic
Folder Deleted : C:\Documents and Settings\Philip\Local Settings\Application Data\toolbarcleaner
Folder Deleted : C:\Documents and Settings\Philip\Start Menu\Programs\ParetoLogic
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\NCH Software
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\NCH Software
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Anti-phishing Domain Advisor
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
 
-\\ Mozilla Firefox v26.0 (en-US)
 
[ File : C:\Documents and Settings\Philip\Application Data\Mozilla\Firefox\Profiles\0evfv4bp.default\prefs.js ]
 
Line Deleted : user_pref("extensions.bootstrappedAddons", "{\"gmailnoads@mywebber.com\":{\"version\":\"4.1\",\"type\":\"extension\",\"descriptor\":\"C:\\\\Documents and Settings\\\\Philip\\\\Application Data\\\\Mozi[...]
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Documents and Settings\Philip\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]
 
Deleted : homepage
Deleted : search_url
Deleted : urls_to_restore_on_startup
 
*************************
 
AdwCleaner[R0].txt - [5830 octets] - [26/12/2013 09:50:48]
AdwCleaner[R1].txt - [2294 octets] - [02/01/2014 16:13:51]
AdwCleaner[S0].txt - [6258 octets] - [26/12/2013 09:52:26]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6318 octets] ##########


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:56 AM

Posted 02 January 2014 - 08:39 PM

I see Nokojohn and I posted at the same time.
Did you do the uninstall section of his reply as that is where to remove the add ons and/or extentions are.

Do that and this and let us know.

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Uprightman

Uprightman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 03 January 2014 - 09:12 AM

There isnt an uninstall option on the extension. It says installed by enterprise policy under the enabled box and the box is grayed out.



#8 Uprightman

Uprightman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 03 January 2014 - 09:18 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Microsoft Windows XP x86
Ran by Philip on Fri 01/03/2014 at  8:13:20.07
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 01/03/2014 at  8:16:41.96
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:56 AM

Posted 03 January 2014 - 12:27 PM

Is that happening in Chrome?

It may be easiest to just uninstall and reinstall Chrome.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Uprightman

Uprightman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 03 January 2014 - 12:46 PM

Yes in crome. I uninstalled crome and then searched for and deleted every crome and deal slider file I could find. Reinstalled and its still there.



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:56 AM

Posted 03 January 2014 - 02:03 PM

Ugh, then we need to get a deeper look to find its hooks.

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Uprightman

Uprightman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 03 January 2014 - 03:25 PM

Ok,thx



#13 hamluis

hamluis

    Moderator


  • Moderator
  • 56,299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:02:56 AM

Posted 03 January 2014 - 07:44 PM

Reference:  http://www.bleepingcomputer.com/forums/t/519527/crome-infected-with-deal-slider/#entry3249559 /

 

Now that you have properly posted a malware log topic, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on, the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.

Louis






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users