Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

webcam no longer works, usb errors


  • Please log in to reply
14 replies to this topic

#1 bluffwood

bluffwood

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 20 January 2015 - 10:38 PM

win xp media center sp3

 

My first indication of a problem was my webcan no longer works. I dinked around trying to download drivers (the camera is obsolete). Then on a lark, I plugged the camera in another pc running xp, and it worked without any drivers.

 

I'm getting more errors on other usb devices "can't find driver" etc. And I'm wondering if I have a malware issue (as I'm also getting some popup msgs from within firefox).

 

For anti virus, I'm using avast free.

 

I'm wondering if my camera problems can go away if I find and deal with a malware.

 

Thanks for your help.usb_zps32277c0e.png


Edited by bluffwood, 20 January 2015 - 10:50 PM.


BC AdBot (Login to Remove)

 


#2 cptrosco

cptrosco

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Houston
  • Local time:11:53 AM

Posted 20 January 2015 - 11:38 PM

It is defiantly possible that you are infected, you are after all running XP. 
 
I would run the following programs and see what happens. 
 
1) Run Malwarebytes
2) Download EDit Removed from bleeping, I
3) When  has finished run adwcleaner (also from here), click scan, let it scan then click on clean, again it will reboot when complete. 
 
If that doesnt fix your issue there are many other programs out there that might catch something that those 3 haven't. You can double click on the unknown device, and see what the hardware ID is, then google that code and see what it is. Remember, always be safe when looking for drivers online, you might end up downloading another virus. Always try to goto the vendor for the drivers.

 

 

MOD Edit removed restricted tool instruction.


Edited by boopme, 21 January 2015 - 10:41 AM.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:53 PM

Posted 21 January 2015 - 11:06 AM

That recommended tool is not allowed to be run with supervision.

please run these..

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 11:37 AM

that tool needs supervision?  Combox fix?  Too late, it's running, and it found a rootkit.  I'm away from home, but will check it and report back here.



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:53 PM

Posted 21 January 2015 - 11:45 AM

Ok, if the machine crashes post here. If you get a log then post it here

Virus, Trojan, Spyware, and Malware Removal Logs


From the Blue Text above this forum..

Forum Rules

When posting your problem, do not run and post a ComboFix log. ComboFix is a tool that should only be run under the supervision of someone who has been trained in its use. Using it on your own can cause problems with your computer.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 02:27 PM

I have had some past history with combo fix, and it's saved me in the past. I know enough not to interrupt it.
After combofix rebooted the pc, network is working just fine (meaning combofix didn't break the net, as it suggested it might)
 
There is something about a rootkit in the combofix report.
 
Here is the report
 
ComboFix 15-01-18.01 - rob 01/21/2015   9:04.1.2 - x86
Running from: d:\decemberf\toburn\singles\ComboFix.exe
Command switches used :: /killall
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}


Mod Edit Log removed ..need to post as instructed above.


Edited by boopme, 21 January 2015 - 03:07 PM.


#7 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 02:56 PM

proceeding with the other recommendations:

 

MiniToolBox by Farbar  Version: 30-11-2014
Ran by rob (administrator) on 21-01-2015 at 14:54:53
Running from "D:\decemberf\toburn\singles"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: http=127.0.0.1:1113;https=127.0.0.1:1113;

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® PRO/1000 PL Network Connection = Local Area Connection (Connected)
TAP-Windows Adapter V9 = Local Area Connection 5 (Connected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 5"

set address name="Local Area Connection 5" source=static addr=169.254.123.133 mask=255.255.0.0
set dns name="Local Area Connection 5" source=static addr=none register=PRIMARY
set wins name="Local Area Connection 5" source=static addr=none

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



        Host Name . . . . . . . . . . . . : dellxps400

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : indy.rr.com



Ethernet adapter Local Area Connection 5:



        Connection-specific DNS Suffix  . :

        Description . . . . . . . . . . . : TAP-Windows Adapter V9

        Physical Address. . . . . . . . . : 00-FF-08-70-9C-4F

        Dhcp Enabled. . . . . . . . . . . : No

        IP Address. . . . . . . . . . . . : 169.254.123.85

        Subnet Mask . . . . . . . . . . . : 255.255.0.0

        Default Gateway . . . . . . . . . :

        NetBIOS over Tcpip. . . . . . . . : Disabled



Ethernet adapter Local Area Connection:



        Connection-specific DNS Suffix  . : indy.rr.com

        Description . . . . . . . . . . . : Intel® PRO/1000 PL Network Connection

        Physical Address. . . . . . . . . : 00-12-3F-78-E8-7C

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.111.102

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.111.254

        DHCP Server . . . . . . . . . . . : 192.168.111.254

        DNS Servers . . . . . . . . . . . : 192.168.111.254

        Lease Obtained. . . . . . . . . . : Wednesday, January 21, 2015 9:01:44 AM

        Lease Expires . . . . . . . . . . : Wednesday, January 28, 2015 9:01:44 AM

254.111.168.192.in-addr.arpa
    primary name server = localhost
    responsible mail addr = nobody.invalid
    serial  = 1
    refresh = 600 (10 mins)
    retry   = 1200 (20 mins)
    expire  = 604800 (7 days)
    default TTL = 10800 (3 hours)
Server:  UnKnown
Address:  192.168.111.254

Name:    google.com
Address:  216.58.216.110



Pinging google.com [216.58.216.110] with 32 bytes of data:



Reply from 216.58.216.110: bytes=32 time=15ms TTL=53

Reply from 216.58.216.110: bytes=32 time=15ms TTL=53



Ping statistics for 216.58.216.110:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 15ms, Maximum = 15ms, Average = 15ms

Server:  UnKnown
Address:  192.168.111.254

Name:    yahoo.com
Addresses:  98.138.253.109, 206.190.36.45, 98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=53ms TTL=46

Reply from 98.139.183.24: bytes=32 time=55ms TTL=46



Ping statistics for 98.139.183.24:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 53ms, Maximum = 55ms, Average = 54ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 ff 08 70 9c 4f ...... TAP-Windows Adapter V9
0x3 ...00 12 3f 78 e8 7c ...... Intel® PRO/1000 PL Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0  192.168.111.254  192.168.111.102      1
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      169.254.0.0      255.255.0.0   169.254.123.85  169.254.123.85      20
   169.254.123.85  255.255.255.255        127.0.0.1       127.0.0.1      30
  169.254.255.255  255.255.255.255   169.254.123.85  169.254.123.85      30
    192.168.111.0    255.255.255.0  192.168.111.102  192.168.111.102      20
  192.168.111.102  255.255.255.255        127.0.0.1       127.0.0.1      20
  192.168.111.255  255.255.255.255  192.168.111.102  192.168.111.102      20
        224.0.0.0        240.0.0.0   169.254.123.85  169.254.123.85      30
        224.0.0.0        240.0.0.0  192.168.111.102  192.168.111.102      20
  255.255.255.255  255.255.255.255   169.254.123.85  169.254.123.85      1
  255.255.255.255  255.255.255.255  192.168.111.102  192.168.111.102      1
Default Gateway:   192.168.111.254
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 23 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 24 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 25 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 26 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 27 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 28 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 29 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 30 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 31 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 32 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 33 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 34 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 35 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 36 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 37 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 38 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 39 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 40 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 41 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 42 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 43 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 44 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 45 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/21/2015 09:35:15 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The connection with the server was terminated abnormally

Error: (01/21/2015 09:34:43 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The connection with the server was terminated abnormally

Error: (01/20/2015 10:48:17 PM) (Source: Application Error) (User: )
Description: Faulting application plugin-container.exe, version 35.0.0.5486, faulting module mozalloc.dll, version 35.0.0.5486, fault address 0x00001425.
Processing media-specific event for [plugin-container.exe!ws!]

Error: (01/19/2015 10:55:47 PM) (Source: Application Error) (User: )
Description: Faulting application tomtomhomeruntime.exe, version 1.9.1.3443, faulting module 8-010-9369-1.dll, version 8010.9369.2.0, fault address 0x0016a2a2.
Processing media-specific event for [tomtomhomeruntime.exe!ws!]

Error: (01/14/2015 02:22:16 PM) (Source: Application Error) (User: )
Description: Faulting application plugin-container.exe, version 34.0.5.5443, faulting module mozalloc.dll, version 34.0.5.5443, fault address 0x00001425.
Processing media-specific event for [plugin-container.exe!ws!]

Error: (01/13/2015 04:42:00 PM) (Source: Application Error) (User: )
Description: Faulting application plugin-container.exe, version 34.0.5.5443, faulting module mozalloc.dll, version 34.0.5.5443, fault address 0x00001425.
Processing media-specific event for [plugin-container.exe!ws!]

Error: (01/13/2015 10:07:38 AM) (Source: Application Error) (User: )
Description: Faulting application plugin-container.exe, version 34.0.5.5443, faulting module mozalloc.dll, version 34.0.5.5443, fault address 0x00001425.
Processing media-specific event for [plugin-container.exe!ws!]

Error: (01/11/2015 05:32:56 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (01/11/2015 05:32:56 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (01/11/2015 05:32:56 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle


System errors:
=============
Error: (01/21/2015 10:03:42 AM) (Source: PlugPlayManager) (User: )
Description: The device Root\LEGACY_UNLOCKERDRIVER5\0000 disappeared from the system without first being prepared for removal.

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The QBIDPService service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The Print Spooler service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The CyberGhost 5 Client Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The QBCFMonitorService service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The Ati HotKey Poller service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The Java Quick Starter service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The BayerHealthcareService service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The SAS Core Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1000 milliseconds: Restart the service.

Error: (01/21/2015 08:46:34 AM) (Source: Service Control Manager) (User: )
Description: The Media Center Scheduler Service service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (12/07/2014 07:15:42 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6707.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 164693 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (11/26/2014 11:16:54 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 48759 seconds with 1020 seconds of active time.  This session ended with a crash.

Error: (04/06/2014 06:48:06 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1093816 seconds with 2520 seconds of active time.  This session ended with a crash.

Error: (01/17/2014 09:39:27 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 389 seconds with 300 seconds of active time.  This session ended with a crash.

Error: (05/24/2013 08:09:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 531275 seconds with 360 seconds of active time.  This session ended with a crash.

Error: (04/10/2013 07:58:13 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 225024 seconds with 420 seconds of active time.  This session ended with a crash.

Error: (03/05/2013 10:45:37 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 56851 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (07/23/2012 09:26:54 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 406 seconds with 240 seconds of active time.  This session ended with a crash.

Error: (04/04/2012 04:52:04 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 71528 seconds with 1440 seconds of active time.  This session ended with a crash.

Error: (01/11/2012 09:39:27 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 13678 seconds with 660 seconds of active time.  This session ended with a crash.



"Nero SoundTrax Help (Version: 4.0.15.0 - Nero AG) Hidden
=========================== Installed Programs ============================
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1 - )
Adobe Acrobat Connect Add-in (HKCU\...\Adobe Acrobat Connect Add-in) (Version:  - )
Adobe Connect Add-in (HKCU\...\Adobe Connect Add-in) (Version:  - )
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Photoshop 7.0.1 (HKLM\...\Adobe Photoshop 7.0.1) (Version: 7.0.1 - Adobe Systems, Inc.)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Advertising Center (Version: 0.0.0.1 - Nero AG) Hidden
AIM 7 (HKLM\...\AIM_7) (Version:  - )
Airlink101 MFP PS Utility (HKLM\...\{ECE9D6C8-2DE8-4505-920E-103FAF0AC9CF}) (Version:  - )
Allway Sync version 12.2.3 (HKLM\...\Allway Sync_is1) (Version:  - Botkind Inc)
Amazon Kindle (HKLM\...\Amazon Kindle) (Version:  - Amazon)
Apple Application Support (HKLM\...\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}) (Version: 2.3.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Art Explosion Publisher Pro (HKLM\...\{C62D7344-8709-4443-9C95-F90659CBC27F}) (Version: 1.00.0013 - Nova Development)
ATI - Software Uninstall Utility (HKLM\...\All ATI Software) (Version: 6.14.10.1014 - )
ATI Control Panel (HKLM\...\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}) (Version: 6.14.10.5183 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.23-060209a1-030546C-Dell - )
Audacity 1.2.6 (HKLM\...\Audacity_is1) (Version:  - )
Auslogics DiskDefrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.4.2.0 - Auslogics Labs Pty Ltd)
Avast Free Antivirus (HKLM\...\avast) (Version: 10.0.2208 - AVAST Software)
Avery Wizard 4.0 (HKLM\...\{7196E6BD-4B65-43F9-9D30-73A8E58D0E84}) (Version: 4.0.103 - Avery)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
ClearType Tuning Control Panel Applet (HKLM\...\{C9E4932C-8417-4E4C-A0E3-EE534810AB4D}) (Version: 1.01.0000 - Microsoft Corporation)
Conexant D850 56K V.9x DFVc Modem (HKLM\...\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1) (Version:  - )
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version:  - CyberGhost S.R.L.)
Dell Resource CD (HKLM\...\{FCD9CD52-7222-4672-94A0-A722BA702FD0}) (Version: 1.00.0000 - Dell Inc.)
Dell System Detect (HKCU\...\73f463568823ebbe) (Version: 5.12.0.3 - Dell)
DolbyFiles (Version: 2.0 - Nero AG) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.10.27 - Dropbox, Inc.)
Eudora (HKLM\...\{35F4CFB8-6366-4337-B192-E8296375CE92}) (Version: 7.0 - )
Extended Asian Language font pack for Adobe Reader XI (HKLM\...\{AC76BA86-7AD7-2530-0000-A00000000004}) (Version: 11.0.0 - Adobe Systems Incorporated)
Free AIFF To MP3 Converter (HKLM\...\{A3E98E9F-0627-4955-AB16-9F329B9E3194}) (Version: 1.0.0 - Convert Audio free)
Free M4A WAV to MP3 Audio Converter (HKLM\...\{FA17CBFC-5DB9-4901-9AB5-C27937E8DB3D}_is1) (Version:  - )
Free Studio version 2014 (HKLM\...\Free Studio_is1) (Version: 6.2.4.1230 - DVDVideoSoft Ltd.)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
GLUCOFACTS™ Deluxe (HKLM\...\{9F4EC465-8411-48C1-BD8F-B606BE4B6112}) (Version: 3.06.10 - Bayer HealthCare)
GLUCOFACTS™ Deluxe Smart Launch (HKLM\...\{D557DF24-61F6-4731-A3B9-626CA9387D42}) (Version: 1.22.01 - Bayer HealthCare)
Google Chrome (HKLM\...\{6438EBAC-5305-39A5-A93E-88CDFA6CE947}) (Version: 65.61.49249 - Google, Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
GoToMeeting 5.2.0.952 (HKCU\...\GoToMeeting) (Version: 5.2.0.952 - CitrixOnline)
High Definition Audio Driver Package - KB835221 (HKLM\...\KB835221WXP) (Version: 20040219.000000 - Microsoft Corporation)
IEEE 802.11g USB Wireless LAN Adapter (HKLM\...\{581CE7EA-A30D-0000-1211-088635773309}) (Version:  - )
ImagXpress (Version: 7.0.74.0 - Nero AG) Hidden
Intel® PRO Network Connections Drivers (HKLM\...\PROSet) (Version:  - )
iTunes (HKLM\...\{268278CF-FB69-4D98-B70E-BFEC1CDCA225}) (Version: 11.0.2.26 - Apple Inc.)
iWisoft Flash SWF to Video Converter 3.5 (HKLM\...\iWisoft Flash SWF to Video Converter_is1) (Version: 3.5.0 - www.flash-swf-converter.com)
Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java Auto Updater (Version: 2.1.71.14 - Oracle, Inc.) Hidden
KompoZer 0.8b3 (HKLM\...\{20aa4150-b5f4-11de-8a39-0800200c9a66}_is1) (Version:  - KompoZer)
KONICA MINOLTA magicolor 2400W (HKLM\...\KONICA MINOLTA magicolor 2400W) (Version:  - )
Macromedia FlashPaper 2 (HKLM\...\Macromedia FlashPaper 2_is1) (Version: 2.0.0 - Macromedia)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Menu Templates - Starter Kit (Version: 9.0.4.0 - Nero AG) Hidden
Microsoft .NET Framework 1.0 Hotfix (KB2572066) (HKLM\...\KB2572066) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB2604042) (HKLM\...\KB2604042) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB2656378) (HKLM\...\KB2656378) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2698035) (HKLM\...\KB2698035) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2742607) (HKLM\...\KB2742607) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2833951) (HKLM\...\KB2833951) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2904878) (HKLM\...\KB2904878) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Corporation (Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft LifeCam (HKLM\...\{BD71B413-9FEE-49BB-A6D1-2C0BFB99BDFE}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office XP Professional with FrontPage (HKLM\...\{90280409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (HKLM\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Movie Templates - Starter Kit (Version: 9.0.4.0 - Nero AG) Hidden
Mozilla Firefox 35.0 (x86 en-US) (HKLM\...\Mozilla Firefox 35.0 (x86 en-US)) (Version: 35.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 6.0 Parser (HKLM\...\{C3FFB7B4-F56A-4C85-8FB1-FAEC9D557732}) (Version: 6.10.1072.0 - Microsoft Corporation)
Music Manager (HKCU\...\MusicManager) (Version:  - Google, Inc.)
Musicmatch® Jukebox (HKLM\...\{85D3CC30-8859-481A-9654-FD9B74310BEF}) (Version: 10.00.4033 - )
MyDriveConnect 3.3.0.1812 (HKLM\...\MyDriveConnect) (Version: 3.3.0.1812 - TomTom)
Nero 9 (HKLM\...\{f7433ee6-14ef-43fe-badd-50e7fb1d1dfa}) (Version:  - Nero AG)
Nero BurningROM (Version: 9.0.0.0 - Nero AG) Hidden
Nero BurnRights (Version: 2.99.6.100 - Nero AG) Hidden
Nero ControlCenter (Version: 0.0.0.1 - Nero AG) Hidden
Nero ControlCenter (Version: 9.0.0.1 - Nero AG) Hidden
Nero CoverDesigner (Version: 4.0.5.100 - Nero AG) Hidden
Nero CoverDesigner Help (Version: 4.0.0.0 - Nero AG) Hidden
Nero Disc Copy Gadget (Version: 1.53.0.0 - Nero AG) Hidden
Nero Disc Copy Gadget Help (Version: 2.0.0.0 - Nero AG) Hidden
Nero DiscSpeed (Version: 4.99.5.105 - Nero AG) Hidden
Nero DriveSpeed (Version: 3.99.5.105 - Nero AG) Hidden
Nero Express (Version: 9.0.0.0 - Nero AG) Hidden
Nero InfoTool (Version: 5.99.5.105 - Nero AG) Hidden
Nero Installer (Version: 2.0.0.1 - Nero AG) Hidden
Nero Live (Version: 1.0.164.0 - Nero AG) Hidden
Nero Live Help (Version: 1.0.162.0 - Nero AG) Hidden
Nero PhotoSnap (Version: 1.53.2.0 - Nero AG) Hidden
Nero PhotoSnap Help (Version: 1.53.2.0 - Nero AG) Hidden
Nero Recode (Version: 3.53.0.0 - Nero AG) Hidden
Nero Recode Help (Version: 3.53.0.0 - Nero AG) Hidden
Nero Rescue Agent (Version: 1.99.0.1 - Nero AG) Hidden
Nero ShowTime (Version: 4.99.0.0 - Nero AG) Hidden
Nero StartSmart (Version: 9.0.9.100 - Nero AG) Hidden
Nero StartSmart Help (Version: 9.0.0.0 - Nero AG) Hidden
Nero Vision (Version: 6.0.0.100 - Nero AG) Hidden
Nero Vision (Version: 6.0.6.100 - Nero AG) Hidden
Nero WaveEditor (Version: 5.0.18.0 - Nero AG) Hidden
Nero WaveEditor Help (Version: 5.0.15.0 - Nero AG) Hidden
NeroBurningROM (Version: 9.0.9.100 - Nero AG) Hidden
NeroExpress (Version: 9.0.9.100 - Nero AG) Hidden
neroxml (Version: 1.0.0 - Nero AG) Hidden
Notepad++ (HKLM\...\Notepad++) (Version: 6.6.9 - Notepad++ Team)
Octoshape add-in for Adobe Flash Player (HKCU\...\Octoshape add-in for Adobe Flash Player) (Version:  - )
Pidgin (HKLM\...\Pidgin) (Version: 2.10.1 - )
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.3.0 - Prolific Technology INC)
QuickBooks (Version: 21.0.4014.904 - Intuit Inc.) Hidden
QuickBooks Premier Edition 2011 (HKLM\...\{11E0AC7D-6824-4F67-865F-EE1C13D28C38}) (Version: 21.0.4014.904 - Intuit Inc.)
QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
QuickTime for Windows (32-bit) (HKLM\...\QuickTime32) (Version:  - )
RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Secunia PSI (2.0.0.4003) (HKLM\...\Secunia PSI) (Version: 2.0.0.4003 - Secunia)
SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.4493.0 - SigmaTel)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.21 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Solid Mp4 to DVD Converter and Burner 1.2.7 (HKLM\...\{E82FBDF4-8C05-5611-B8D8-2331145ECA11}_is1) (Version:  - TopviewSoft, Inc.)
Sonic Encoders (HKLM\...\{9941F0AA-B903-4AF4-A055-83A9815CC011}) (Version: 1.00 - Sonic Solutions)
SoundTrax (Version: 4.0.18.0 - Nero AG) Hidden
Startup Delayer v3.0 (build 362) (HKLM\...\Startup Delayer) (Version: 3.0 (build 362) - r2 Studios)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.0.1136 - SUPERAntiSpyware.com)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 10 (HKLM\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
TomTom HOME (HKLM\...\{BB05590A-6602-43F3-A400-77EA0976BC0A}) (Version: 2.9.8 - TomTom)
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Ultra Defragmenter (HKLM\...\UltraDefrag) (Version: 6.0.2 - UltraDefrag Development Team)
Unlocker 1.9.1 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_PROPLUS_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2920789) 32-Bit Edition (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{9913305E-D4AC-4D26-B30F-799D529FB282}) (Version:  - Microsoft)
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7B9D2746-D03B-442B-A691-90B748E316B4}) (Version:  - Microsoft)
Update for Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB976662) (HKLM\...\KB976662-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Media Player 10 (KB913800) (HKLM\...\KB913800) (Version:  - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Update Rollup 2 for Windows XP Media Center Edition 2005 (HKLM\...\KB900325) (Version:  - Microsoft Corporation)
USB PC Camera Plus (HKLM\...\{ECD03DA7-5952-406A-8156-5F0C93618D1F}) (Version: 5.21.1.000 - Sonix)
Video Download Capture V4.8.2 (HKLM\...\{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1) (Version: 4.8.2 - Apowersoft)
Vimicro USB2.0 UVC PC Camera (HKLM\...\{71A51A91-E7D3-11DB-A386-005056C00008}) (Version: 2010.03.02 - Vimicro Corporation)
Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VSDC Free Video Editor version 1.2.5.3 (HKLM\...\VSDC Free Video Editor_is1) (Version: 1.2.5.3 - Flash-Integro LLC)
WebEx (HKLM\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Winamp (HKLM\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Automated Installation Kit (HKLM\...\{31E8F586-4EF7-4500-844D-BA8756474FF1}) (Version: 1.0.0.0 - Microsoft Corporation)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format Runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows XP Media Center Edition 2005 KB2502898 (HKLM\...\KB2502898) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB2619340 (HKLM\...\KB2619340) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB2628259 (HKLM\...\KB2628259) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB925766 (HKLM\...\KB925766) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB973768 (HKLM\...\KB973768) (Version:  - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)

========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 3070.09 MB
Available physical RAM: 2316.81 MB
Total Pagefile: 5981.8 MB
Available Pagefile: 5409.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.95 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:97.65 GB) (Free:25.5 GB) NTFS
3 Drive d: (New Volume) (Fixed) (Total:1765.3 GB) (Free:1585.62 GB) NTFS
4 Drive f: () (Network) (Total:367.95 GB) (Free:190.17 GB)

========================= Users: ========================================

User accounts for \\DELLXPS400

Administrator            ASPNET                   Guest                    
HelpAssistant            rob                      SUPPORT_388945a0         


**** End of log ****
 



#8 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 02:59 PM

14:58:08.0734 0x0ed4  TDSS rootkit removing tool 3.0.0.43 Jan 19 2015 18:43:19
14:58:14.0093 0x0ed4  ============================================================
14:58:14.0093 0x0ed4  Current date / time: 2015/01/21 14:58:14.0093
14:58:14.0093 0x0ed4  SystemInfo:
14:58:14.0093 0x0ed4  
14:58:14.0093 0x0ed4  OS Version: 5.1.2600 ServicePack: 3.0
14:58:14.0093 0x0ed4  Product type: Workstation
14:58:14.0093 0x0ed4  ComputerName: DELLXPS400
14:58:14.0093 0x0ed4  UserName: rob
14:58:14.0093 0x0ed4  Windows directory: C:\WINDOWS
14:58:14.0093 0x0ed4  System windows directory: C:\WINDOWS
14:58:14.0093 0x0ed4  Processor architecture: Intel x86
14:58:14.0093 0x0ed4  Number of processors: 2
14:58:14.0093 0x0ed4  Page size: 0x1000
14:58:14.0093 0x0ed4  Boot type: Normal boot
14:58:14.0093 0x0ed4  ============================================================
14:58:17.0093 0x0ed4  KLMD registered as C:\WINDOWS\system32\drivers\60921128.sys
14:58:17.0328 0x0ed4  System UUID: {000D78B1-AC9C-B682-F2A2-E406B9B7B36A}
14:58:18.0296 0x0ed4  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:58:18.0359 0x0ed4  ============================================================
14:58:18.0359 0x0ed4  \Device\Harddisk0\DR0:
14:58:18.0359 0x0ed4  MBR partitions:
14:58:18.0359 0x0ed4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1F608, BlocksNum 0xC34F2CC
14:58:18.0359 0x0ed4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC36E8D4, BlocksNum 0xDCA98BED
14:58:18.0359 0x0ed4  ============================================================
14:58:18.0390 0x0ed4  C: <-> \Device\Harddisk0\DR0\Partition1
14:58:18.0468 0x0ed4  D: <-> \Device\Harddisk0\DR0\Partition2
14:58:18.0468 0x0ed4  ============================================================
14:58:18.0468 0x0ed4  Initialize success
14:58:18.0468 0x0ed4  ============================================================
14:58:23.0000 0x1078  ============================================================
14:58:23.0000 0x1078  Scan started
14:58:23.0000 0x1078  Mode: Manual;
14:58:23.0000 0x1078  ============================================================
14:58:23.0000 0x1078  KSN ping started
14:58:25.0546 0x1078  KSN ping finished: true
14:58:27.0890 0x1078  ================ Scan system memory ========================
14:58:27.0906 0x1078  System memory - ok
14:58:27.0906 0x1078  ================ Scan services =============================
14:58:27.0968 0x1078  [ C0393EB99A6C72C6BEF9BFC4A72B33A6, 72BF029C6A37DE131FFD61C2374C8920556236218613E37B5F348AA89FA12E42 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
14:58:27.0968 0x1078  !SASCORE - ok
14:58:28.0125 0x1078  Abiosdsk - ok
14:58:28.0125 0x1078  abp480n5 - ok
14:58:28.0156 0x1078  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:58:28.0156 0x1078  ACPI - ok
14:58:28.0171 0x1078  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
14:58:28.0187 0x1078  ACPIEC - ok
14:58:28.0265 0x1078  [ CB1719E3EA00A0C114A8AD2655F43754, B38D21C4A7A83904CADEBA96A56AA5D1807C412A8E0BEFC889DF20D02941E570 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:58:28.0281 0x1078  AdobeFlashPlayerUpdateSvc - ok
14:58:28.0281 0x1078  adpu160m - ok
14:58:28.0312 0x1078  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
14:58:28.0312 0x1078  aec - ok
14:58:28.0328 0x1078  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
14:58:28.0359 0x1078  AFD - ok
14:58:28.0359 0x1078  Aha154x - ok
14:58:28.0359 0x1078  aic78u2 - ok
14:58:28.0375 0x1078  aic78xx - ok
14:58:28.0406 0x1078  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
14:58:28.0406 0x1078  Alerter - ok
14:58:28.0437 0x1078  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
14:58:28.0437 0x1078  ALG - ok
14:58:28.0437 0x1078  AliIde - ok
14:58:28.0437 0x1078  amsint - ok
14:58:28.0453 0x1078  [ C1C6EA3F8ACD2A9818C0A73A5F63B9B6, 739FFF33CBBC4F8E8613906760D36286AB249A5C4004BF000D76CABB48D35433 ] Apowersoft_AudioDevice C:\WINDOWS\system32\drivers\Apowersoft_AudioDevice.sys
14:58:28.0453 0x1078  Apowersoft_AudioDevice - ok
14:58:28.0484 0x1078  [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:58:28.0500 0x1078  Apple Mobile Device - ok
14:58:28.0531 0x1078  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
14:58:28.0546 0x1078  AppMgmt - ok
14:58:28.0546 0x1078  asc - ok
14:58:28.0562 0x1078  asc3350p - ok
14:58:28.0562 0x1078  asc3550 - ok
14:58:28.0625 0x1078  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:58:28.0625 0x1078  aspnet_state - ok
14:58:28.0671 0x1078  [ 9D23DE88C3B18BA87CD4587177CA6CEA, 46DBB867FC73E30320852F744F38B66906DD5B96C4EBB03F504CF33E867A8470 ] aswHwid         C:\WINDOWS\system32\drivers\aswHwid.sys
14:58:28.0671 0x1078  aswHwid - ok
14:58:28.0687 0x1078  [ 73A9014A9C4B19AA093DA05ED4246E27, F03C8433EB00229490BCD293CC97EF72452E156212D56C24BBA95C8E1B207D1A ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
14:58:28.0687 0x1078  aswMonFlt - ok
14:58:28.0703 0x1078  [ 0926775B8C3B32EE99921CCB0F85378E, 21A46B124B3E9F2569030E2DF591858B85AA640DDBB5C994B5C00A1E78C9EF67 ] aswRdr          C:\WINDOWS\system32\drivers\aswRdr.sys
14:58:28.0703 0x1078  aswRdr - ok
14:58:28.0734 0x1078  [ 6544697080421E62E97AAFBD0A8AA391, BB3F492BF828A147B82FDD1FC9EB9867D96DE0481554A59745D41C6BAB551700 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
14:58:28.0734 0x1078  aswRvrt - ok
14:58:28.0781 0x1078  [ E73CBE3420ECFA8FF7D0467E170E335D, B994342C92AE9167908B8CA3D03DC278E919C7073512461AFFD4C25E8D2D8D66 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
14:58:28.0796 0x1078  aswSnx - ok
14:58:28.0828 0x1078  [ 1624D5AD126B8AFE2B2E85E5B8364EB6, AB97A74C1CA9921F7753D98516D7E11750D5D3ACD143C83273B0B295625440A0 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
14:58:28.0843 0x1078  aswSP - ok
14:58:28.0859 0x1078  [ 4C0ECF1AFA6992904814C74B99DD36F9, AA0D9BA7FE829888C636EC9D72E8E2D987A1C3FF092F95A38EC607CEE25A91F8 ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
14:58:28.0875 0x1078  aswTdi - ok
14:58:28.0890 0x1078  [ 0EFBC2962B156E8AC267F96D4D93EF06, 8A69672CE8B68A0A683D583287473BFAB7CF8B9771C22E398607CF2A151C7124 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
14:58:28.0890 0x1078  aswVmm - ok
14:58:28.0921 0x1078  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:58:28.0921 0x1078  AsyncMac - ok
14:58:28.0953 0x1078  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
14:58:28.0968 0x1078  atapi - ok
14:58:28.0968 0x1078  Atdisk - ok
14:58:29.0031 0x1078  [ 40F02B8460AC817EA0CEA2E0CAB4C2ED, 5BA087383FA12B31B241E464BFFE7E0FCA8D2DEA12DBBE2F2C39E9A14496BBFF ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
14:58:29.0046 0x1078  Ati HotKey Poller - ok
14:58:29.0109 0x1078  [ A7DD7088E2C987DBCB3F4D6D56F723BD, AA28E1B02BC03CD5E4059ADD69EC8E16CFC08CC309A91AAC67D3AFA4B439A870 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
14:58:29.0156 0x1078  ati2mtag - ok
14:58:29.0203 0x1078  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:58:29.0203 0x1078  Atmarpc - ok
14:58:29.0218 0x1078  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
14:58:29.0218 0x1078  AudioSrv - ok
14:58:29.0234 0x1078  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
14:58:29.0250 0x1078  audstub - ok
14:58:29.0281 0x1078  [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
14:58:29.0281 0x1078  avast! Antivirus - ok
14:58:29.0312 0x1078  [ 23F9898F30F0868BAAE7594C7A94F986, D0C7DD73EA70FD6EAC452F2E83D4F963CFA7032E524122096924501C11010E6F ] BayerHealthcareService C:\Program Files\Bayer HealthCare SmartLaunch\bin\BayerHCService.exe
14:58:29.0312 0x1078  BayerHealthcareService - ok
14:58:29.0343 0x1078  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:58:29.0343 0x1078  Beep - ok
14:58:29.0375 0x1078  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
14:58:29.0406 0x1078  BITS - ok
14:58:29.0437 0x1078  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:58:29.0453 0x1078  Bonjour Service - ok
14:58:29.0484 0x1078  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
14:58:29.0484 0x1078  Browser - ok
14:58:29.0484 0x1078  catchme - ok
14:58:29.0531 0x1078  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
14:58:29.0531 0x1078  cbidf2k - ok
14:58:29.0578 0x1078  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:58:29.0578 0x1078  CCDECODE - ok
14:58:29.0593 0x1078  cd20xrnt - ok
14:58:29.0609 0x1078  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
14:58:29.0609 0x1078  Cdaudio - ok
14:58:29.0625 0x1078  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
14:58:29.0625 0x1078  Cdfs - ok
14:58:29.0640 0x1078  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:58:29.0640 0x1078  Cdrom - ok
14:58:29.0656 0x1078  [ 08D4BD3F12DFF3A11E4F2C09745DA0FA, 99A19D3B43F5B21A3E23B9A91D9443ED2710C14B954C769B837626181FC4F630 ] CGVPNCliService C:\Program Files\CyberGhost 5\Service.exe
14:58:29.0671 0x1078  CGVPNCliService - ok
14:58:29.0671 0x1078  Changer - ok
14:58:29.0687 0x1078  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
14:58:29.0703 0x1078  CiSvc - ok
14:58:29.0718 0x1078  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
14:58:29.0718 0x1078  ClipSrv - ok
14:58:29.0750 0x1078  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:58:29.0750 0x1078  clr_optimization_v2.0.50727_32 - ok
14:58:29.0750 0x1078  CmdIde - ok
14:58:29.0765 0x1078  COMSysApp - ok
14:58:29.0796 0x1078  [ CD08B9D9091B8BABB1D3317AF771F179, F9197551C45A2D9111531678352A8775A1E116BB4235314EE29193BE7D7AAB0A ] CouponPrinterService C:\Program Files\Coupons\CouponPrinterService.exe
14:58:29.0796 0x1078  CouponPrinterService - ok
14:58:29.0812 0x1078  Cpqarray - ok
14:58:29.0828 0x1078  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
14:58:29.0828 0x1078  CryptSvc - ok
14:58:29.0828 0x1078  dac2w2k - ok
14:58:29.0843 0x1078  dac960nt - ok
14:58:29.0875 0x1078  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
14:58:29.0890 0x1078  DcomLaunch - ok
14:58:29.0906 0x1078  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
14:58:29.0921 0x1078  Dhcp - ok
14:58:29.0921 0x1078  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
14:58:29.0937 0x1078  Disk - ok
14:58:29.0937 0x1078  dmadmin - ok
14:58:30.0000 0x1078  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
14:58:30.0015 0x1078  dmboot - ok
14:58:30.0046 0x1078  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
14:58:30.0046 0x1078  dmio - ok
14:58:30.0078 0x1078  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
14:58:30.0093 0x1078  dmload - ok
14:58:30.0109 0x1078  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
14:58:30.0109 0x1078  dmserver - ok
14:58:30.0125 0x1078  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
14:58:30.0125 0x1078  DMusic - ok
14:58:30.0156 0x1078  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
14:58:30.0156 0x1078  Dnscache - ok
14:58:30.0203 0x1078  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:58:30.0218 0x1078  Dot3svc - ok
14:58:30.0218 0x1078  dpti2o - ok
14:58:30.0250 0x1078  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
14:58:30.0250 0x1078  drmkaud - ok
14:58:30.0265 0x1078  [ 0849EACDC01487573ADD86F5E470806C, 73024B29C48A6E0B3FC82CAC4EFF1AA216949B772918C0BAEA06DA4F2D012F52 ] e1express       C:\WINDOWS\system32\DRIVERS\e1e5132.sys
14:58:30.0281 0x1078  e1express - ok
14:58:30.0328 0x1078  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
14:58:30.0328 0x1078  EapHost - ok
14:58:30.0437 0x1078  [ 5D1347AA5AE6E2F77D7F4F8372D95AC9, F3CA10753B7D76C87A71A0FEDB5EACE77E2E10E8DD44BEE7C66BCE17BD3EFD71 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
14:58:30.0531 0x1078  ehRecvr - ok
14:58:30.0562 0x1078  [ A53243709439AC2A4C216B817F8D7411, AF4624EEA9B165DE873B7D104D1EA3BE9A14BBC5B4CABE26544F90B78689EEF9 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
14:58:30.0562 0x1078  ehSched - ok
14:58:30.0578 0x1078  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
14:58:30.0578 0x1078  ERSvc - ok
14:58:30.0593 0x1078  esgiguard - ok
14:58:30.0609 0x1078  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
14:58:30.0625 0x1078  Eventlog - ok
14:58:30.0656 0x1078  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
14:58:30.0656 0x1078  EventSystem - ok
14:58:30.0671 0x1078  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
14:58:30.0671 0x1078  Fastfat - ok
14:58:30.0687 0x1078  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
14:58:30.0703 0x1078  FastUserSwitchingCompatibility - ok
14:58:30.0718 0x1078  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
14:58:30.0734 0x1078  Fdc - ok
14:58:30.0734 0x1078  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
14:58:30.0750 0x1078  Fips - ok
14:58:30.0750 0x1078  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
14:58:30.0765 0x1078  Flpydisk - ok
14:58:30.0781 0x1078  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
14:58:30.0781 0x1078  FltMgr - ok
14:58:30.0828 0x1078  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:58:30.0843 0x1078  FontCache3.0.0.0 - ok
14:58:30.0843 0x1078  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:58:30.0843 0x1078  Fs_Rec - ok
14:58:30.0859 0x1078  [ 47B9CF937AC479046DA289BD5A769CE9, 7DB8B264181478621E3B4123BCA44438F6AFC645AED3EB4161C3FDF036D9AFCB ] FTDIBUS         C:\WINDOWS\system32\drivers\ftdibus.sys
14:58:30.0875 0x1078  FTDIBUS - ok
14:58:30.0875 0x1078  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:58:30.0890 0x1078  Ftdisk - ok
14:58:30.0890 0x1078  [ 216B9A2191676034999785C7F94FA5D6, 4500C7E2C4FF5E5A6BA1F3514347148065291D6D972799E100B1F7A81B0E49F8 ] FTSER2K         C:\WINDOWS\system32\drivers\ftser2k.sys
14:58:30.0906 0x1078  FTSER2K - ok
14:58:30.0906 0x1078  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:58:30.0906 0x1078  Gpc - ok
14:58:30.0937 0x1078  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
14:58:30.0953 0x1078  gupdate - ok
14:58:30.0953 0x1078  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
14:58:30.0953 0x1078  gupdatem - ok
14:58:30.0968 0x1078  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:58:30.0968 0x1078  HDAudBus - ok
14:58:31.0031 0x1078  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:58:31.0031 0x1078  helpsvc - ok
14:58:31.0031 0x1078  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
14:58:31.0046 0x1078  HidServ - ok
14:58:31.0062 0x1078  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:58:31.0062 0x1078  hidusb - ok
14:58:31.0093 0x1078  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
14:58:31.0093 0x1078  hkmsvc - ok
14:58:31.0109 0x1078  hpn - ok
14:58:31.0140 0x1078  [ 77E4FF0B73BC0AEAAF39BF0C8104231F, A5D35FCD9E52003D990EB97DF1634DE9B516647C8DAAD3152550CD875DBBDA82 ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
14:58:31.0156 0x1078  HSFHWBS2 - ok
14:58:31.0203 0x1078  [ 60E1604729A15EF4A3B05F298427B3B1, 139DE473F645A300DD436B4AA8359A23FCE3BB9688B6B597E89F8ADBC36A71B9 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
14:58:31.0234 0x1078  HSF_DP - ok
14:58:31.0265 0x1078  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
14:58:31.0281 0x1078  HTTP - ok
14:58:31.0296 0x1078  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
14:58:31.0312 0x1078  HTTPFilter - ok
14:58:31.0312 0x1078  i2omgmt - ok
14:58:31.0312 0x1078  i2omp - ok
14:58:31.0328 0x1078  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\drivers\i8042prt.sys
14:58:31.0328 0x1078  i8042prt - ok
14:58:31.0421 0x1078  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:58:31.0437 0x1078  idsvc - ok
14:58:31.0453 0x1078  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
14:58:31.0453 0x1078  Imapi - ok
14:58:31.0515 0x1078  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
14:58:31.0515 0x1078  ImapiService - ok
14:58:31.0531 0x1078  ini910u - ok
14:58:31.0546 0x1078  IntelIde - ok
14:58:31.0546 0x1078  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:58:31.0546 0x1078  intelppm - ok
14:58:31.0562 0x1078  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
14:58:31.0578 0x1078  Ip6Fw - ok
14:58:31.0609 0x1078  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:58:31.0609 0x1078  IpFilterDriver - ok
14:58:31.0625 0x1078  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:58:31.0625 0x1078  IpInIp - ok
14:58:31.0656 0x1078  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:58:31.0671 0x1078  IpNat - ok
14:58:31.0703 0x1078  [ E46B17060D3962A384AE484094614788, 9E8EF45C72A01FA586FF028B62F6675114CC9CBBCE172A789EDA754AE3F79121 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:58:31.0718 0x1078  iPod Service - ok
14:58:31.0734 0x1078  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:58:31.0750 0x1078  IPSec - ok
14:58:31.0765 0x1078  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
14:58:31.0765 0x1078  IRENUM - ok
14:58:31.0796 0x1078  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:58:31.0796 0x1078  isapnp - ok
14:58:31.0843 0x1078  [ DBDB1A25291B2D18C614F5CA963156A8, C8EA730A6A5BCBE7952AAA22F212C244014F206D2F4A274E29384C09F1F10A66 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
14:58:31.0859 0x1078  JavaQuickStarterService - ok
14:58:31.0875 0x1078  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:58:31.0875 0x1078  Kbdclass - ok
14:58:31.0890 0x1078  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:58:31.0890 0x1078  kbdhid - ok
14:58:31.0906 0x1078  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
14:58:31.0921 0x1078  kmixer - ok
14:58:31.0937 0x1078  [ 566C5FD480FDBCE3BA5CF9FBCFFAEA9A, 573681387B27FB2C8DC6612474B9BB8631F6CD3CED29AEBF91992606875724D2 ] KMWDFILTER      C:\WINDOWS\system32\DRIVERS\KMWDFILTER.sys
14:58:31.0953 0x1078  KMWDFILTER - ok
14:58:31.0984 0x1078  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
14:58:32.0000 0x1078  KSecDD - ok
14:58:32.0031 0x1078  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
14:58:32.0046 0x1078  lanmanserver - ok
14:58:32.0078 0x1078  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
14:58:32.0093 0x1078  lanmanworkstation - ok
14:58:32.0093 0x1078  lbrtfdc - ok
14:58:32.0109 0x1078  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
14:58:32.0109 0x1078  LmHosts - ok
14:58:32.0140 0x1078  [ 8E2E9CCD873ABF180F48BCAEEEBE347D, 35DBBB8E63B480151EA5701D9DB7C90642FA2391D044DB400D3644F3E21BB0C1 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
14:58:32.0140 0x1078  MBAMSwissArmy - ok
14:58:32.0171 0x1078  [ DF0A511F38F16016BF658FCA0090CB87, 6D2F6360A4E1D369607F2F394B4A8C6EE8EEE9FA46A67394769E9C0044529B6C ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe
14:58:32.0187 0x1078  McrdSvc - ok
14:58:32.0203 0x1078  [ EEAEA6514BA7C9D273B5E87C4E1AAB30, 3B724C6A8867B1B7A45D832150E0CFAC1004D3B972A2A7BFDD2ADDDB2488BB1E ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
14:58:32.0218 0x1078  mdmxsdk - ok
14:58:32.0234 0x1078  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
14:58:32.0234 0x1078  Messenger - ok
14:58:32.0296 0x1078  [ B7521F69C0A9B29D356157229376FB21, A77C89BDC181038DD0F9A8AC0F7164B10EF9C54B0C57D8BAB8BC27932EBF890B ] MHN             C:\WINDOWS\System32\mhn.dll
14:58:32.0296 0x1078  MHN - ok
14:58:32.0312 0x1078  [ 7F2F1D2815A6449D346FCCCBC569FBD6, 1C5A321CE95CE4D9AA2CB5A00E9B7E711521A6BBB25D36F7F49A397C361585C6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
14:58:32.0312 0x1078  MHNDRV - ok
14:58:32.0343 0x1078  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
14:58:32.0343 0x1078  mnmdd - ok
14:58:32.0406 0x1078  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
14:58:32.0406 0x1078  mnmsrvc - ok
14:58:32.0406 0x1078  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
14:58:32.0421 0x1078  Modem - ok
14:58:32.0437 0x1078  [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
14:58:32.0437 0x1078  MODEMCSA - ok
14:58:32.0453 0x1078  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:58:32.0453 0x1078  Mouclass - ok
14:58:32.0468 0x1078  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:58:32.0468 0x1078  mouhid - ok
14:58:32.0484 0x1078  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
14:58:32.0484 0x1078  MountMgr - ok
14:58:32.0515 0x1078  [ 9E587AFE2AD4873C809F1E0C598AB435, 0B0ECFF265120BCBAC37CF9B53B18462725AB991D00B90DBEE8DD9375121DA4F ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:58:32.0515 0x1078  MozillaMaintenance - ok
14:58:32.0531 0x1078  mraid35x - ok
14:58:32.0546 0x1078  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:58:32.0562 0x1078  MRxDAV - ok
14:58:32.0578 0x1078  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:58:32.0609 0x1078  MRxSmb - ok
14:58:32.0640 0x1078  [ B03E3F64B70F8031E65EB26DA23DE91A, 73184B4A75C1EA5D10B9D78A9E705432551DE15231F10C5A31021896D0938D80 ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS32.exe
14:58:32.0640 0x1078  MSCamSvc - ok
14:58:32.0671 0x1078  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
14:58:32.0671 0x1078  MSDTC - ok
14:58:32.0703 0x1078  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
14:58:32.0718 0x1078  Msfs - ok
14:58:32.0718 0x1078  MSIServer - ok
14:58:32.0734 0x1078  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:58:32.0734 0x1078  MSKSSRV - ok
14:58:32.0750 0x1078  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:58:32.0750 0x1078  MSPCLOCK - ok
14:58:32.0765 0x1078  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
14:58:32.0765 0x1078  MSPQM - ok
14:58:32.0765 0x1078  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:58:32.0781 0x1078  mssmbios - ok
14:58:32.0812 0x1078  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
14:58:32.0812 0x1078  MSTEE - ok
14:58:32.0828 0x1078  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
14:58:32.0843 0x1078  Mup - ok
14:58:32.0875 0x1078  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:58:32.0890 0x1078  NABTSFEC - ok
14:58:32.0937 0x1078  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
14:58:32.0953 0x1078  napagent - ok
14:58:32.0984 0x1078  [ C087DD7FA47C4A43683DF764FBFA30A7, 5DB4FD088A12DCE1F423C45BEE88BF93E72D6E6EE97005F577ED2A1132EFC495 ] Nbf             C:\WINDOWS\system32\DRIVERS\nbf.sys
14:58:32.0984 0x1078  Nbf - ok
14:58:33.0000 0x1078  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
14:58:33.0000 0x1078  NDIS - ok
14:58:33.0015 0x1078  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:58:33.0031 0x1078  NdisIP - ok
14:58:33.0062 0x1078  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:58:33.0062 0x1078  NdisTapi - ok
14:58:33.0078 0x1078  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:58:33.0078 0x1078  Ndisuio - ok
14:58:33.0093 0x1078  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:58:33.0093 0x1078  NdisWan - ok
14:58:33.0125 0x1078  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
14:58:33.0125 0x1078  NDProxy - ok
14:58:33.0203 0x1078  [ 07A623D0892A91B9E6285C5723E2EDF1, 975A8653A9568BE693E2FB779ED4E5FD2C0C92B4D7A52E22DDC4E51AD28CB902 ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
14:58:33.0218 0x1078  Nero BackItUp Scheduler 4.0 - ok
14:58:33.0234 0x1078  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
14:58:33.0234 0x1078  NetBIOS - ok
14:58:33.0250 0x1078  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
14:58:33.0250 0x1078  NetBT - ok
14:58:33.0281 0x1078  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
14:58:33.0296 0x1078  NetDDE - ok
14:58:33.0296 0x1078  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
14:58:33.0312 0x1078  NetDDEdsdm - ok
14:58:33.0312 0x1078  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
14:58:33.0328 0x1078  Netlogon - ok
14:58:33.0359 0x1078  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
14:58:33.0359 0x1078  Netman - ok
14:58:33.0406 0x1078  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:58:33.0421 0x1078  NetTcpPortSharing - ok
14:58:33.0453 0x1078  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
14:58:33.0468 0x1078  Nla - ok
14:58:33.0468 0x1078  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
14:58:33.0484 0x1078  Npfs - ok
14:58:33.0515 0x1078  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
14:58:33.0531 0x1078  Ntfs - ok
14:58:33.0531 0x1078  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
14:58:33.0546 0x1078  NtLmSsp - ok
14:58:33.0578 0x1078  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
14:58:33.0593 0x1078  NtmsSvc - ok
14:58:33.0609 0x1078  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
14:58:33.0609 0x1078  Null - ok
14:58:33.0640 0x1078  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:58:33.0656 0x1078  NwlnkFlt - ok
14:58:33.0656 0x1078  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:58:33.0656 0x1078  NwlnkFwd - ok
14:58:33.0718 0x1078  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:58:33.0734 0x1078  odserv - ok
14:58:33.0765 0x1078  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:58:33.0765 0x1078  ose - ok
14:58:33.0781 0x1078  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
14:58:33.0781 0x1078  Parport - ok
14:58:33.0796 0x1078  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
14:58:33.0796 0x1078  PartMgr - ok
14:58:33.0859 0x1078  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
14:58:33.0859 0x1078  ParVdm - ok
14:58:33.0890 0x1078  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
14:58:33.0890 0x1078  PCI - ok
14:58:33.0890 0x1078  PCIDump - ok
14:58:33.0906 0x1078  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
14:58:33.0906 0x1078  PCIIde - ok
14:58:33.0953 0x1078  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
14:58:33.0953 0x1078  Pcmcia - ok
14:58:33.0953 0x1078  PDCOMP - ok
14:58:33.0968 0x1078  PDFRAME - ok
14:58:33.0968 0x1078  PDRELI - ok
14:58:33.0968 0x1078  PDRFRAME - ok
14:58:33.0984 0x1078  perc2 - ok
14:58:33.0984 0x1078  perc2hib - ok
14:58:34.0031 0x1078  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
14:58:34.0046 0x1078  PlugPlay - ok
14:58:34.0062 0x1078  [ 75CF9DE0A67AF916ED591743DFB69694, E35E611427E1F50DB564DB0B15D6BB587108AF6BA80E779B14404A16E111B665 ] Pml Driver HPZ12 C:\WINDOWS\system32\hpzipm12.dll
14:58:34.0078 0x1078  Pml Driver HPZ12 - ok
14:58:34.0078 0x1078  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
14:58:34.0093 0x1078  PolicyAgent - ok
14:58:34.0109 0x1078  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:58:34.0109 0x1078  PptpMiniport - ok
14:58:34.0109 0x1078  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
14:58:34.0125 0x1078  ProtectedStorage - ok
14:58:34.0125 0x1078  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
14:58:34.0125 0x1078  PSched - ok
14:58:34.0140 0x1078  [ D24DFD16A1E2A76034DF5AA18125C35D, BB1F2BB3EB69DE742AA8ED33DCB572888BC473182E0F7DA860CB57903C9924A6 ] PSI             C:\WINDOWS\system32\DRIVERS\psi_mf.sys
14:58:34.0156 0x1078  PSI - ok
14:58:34.0171 0x1078  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:58:34.0171 0x1078  Ptilink - ok
14:58:34.0187 0x1078  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
14:58:34.0187 0x1078  PxHelp20 - ok
14:58:34.0234 0x1078  [ 119B221670D50C82BF203B673778F2D3, FC096329405669B06239FED869CDD585566A19F54F5484987EF4FE1C51921080 ] QBCFMonitorService C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
14:58:34.0234 0x1078  QBCFMonitorService - ok
14:58:34.0250 0x1078  [ 6BEE1814470DC12FA20C53DFC3C97EBB, 91E8C22E54A090966E9B96395392B2C03A32DB1AF8DB2289E2EA9460F0A76C0F ] QBFCService     C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
14:58:34.0250 0x1078  QBFCService - ok
14:58:34.0312 0x1078  [ 78AFB70DBE365BD6140E6740792AC3EA, 32DBFDA80C62B6752BB17F5A3843314ED33F8B77760B5691F910AD632EE5DD0F ] QBVSS           C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
14:58:34.0343 0x1078  QBVSS - ok
14:58:34.0359 0x1078  ql1080 - ok
14:58:34.0359 0x1078  Ql10wnt - ok
14:58:34.0375 0x1078  ql12160 - ok
14:58:34.0375 0x1078  ql1240 - ok
14:58:34.0390 0x1078  ql1280 - ok
14:58:34.0390 0x1078  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:58:34.0390 0x1078  RasAcd - ok
14:58:34.0421 0x1078  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
14:58:34.0437 0x1078  RasAuto - ok
14:58:34.0437 0x1078  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:58:34.0453 0x1078  Rasl2tp - ok
14:58:34.0500 0x1078  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
14:58:34.0515 0x1078  RasMan - ok
14:58:34.0515 0x1078  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:58:34.0531 0x1078  RasPppoe - ok
14:58:34.0531 0x1078  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
14:58:34.0531 0x1078  Raspti - ok
14:58:34.0562 0x1078  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:58:34.0562 0x1078  Rdbss - ok
14:58:34.0578 0x1078  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:58:34.0578 0x1078  RDPCDD - ok
14:58:34.0609 0x1078  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:58:34.0609 0x1078  rdpdr - ok
14:58:34.0656 0x1078  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
14:58:34.0671 0x1078  RDPWD - ok
14:58:34.0687 0x1078  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
14:58:34.0703 0x1078  RDSessMgr - ok
14:58:34.0750 0x1078  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
14:58:34.0765 0x1078  RealNetworks Downloader Resolver Service - ok
14:58:34.0796 0x1078  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
14:58:34.0796 0x1078  redbook - ok
14:58:34.0828 0x1078  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
14:58:34.0843 0x1078  RemoteAccess - ok
14:58:34.0859 0x1078  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
14:58:34.0875 0x1078  RemoteRegistry - ok
14:58:34.0890 0x1078  [ 14299757A7174DD7F3AFCC489CE45C9A, D38079CE5F49F17F9B92E306E859CD14AE796E9FBF78B34A698B99C2F5C0DB4B ] ROOTUSB         C:\WINDOWS\system32\Drivers\ROOTUSB.sys
14:58:34.0890 0x1078  ROOTUSB - ok
14:58:34.0921 0x1078  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
14:58:34.0937 0x1078  RpcLocator - ok
14:58:34.0984 0x1078  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll
14:58:35.0000 0x1078  RpcSs - ok
14:58:35.0046 0x1078  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
14:58:35.0062 0x1078  RSVP - ok
14:58:35.0093 0x1078  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
14:58:35.0093 0x1078  SamSs - ok
14:58:35.0109 0x1078  [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
14:58:35.0109 0x1078  SASDIFSV - ok
14:58:35.0109 0x1078  [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
14:58:35.0125 0x1078  SASKUTIL - ok
14:58:35.0140 0x1078  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
14:58:35.0156 0x1078  SCardSvr - ok
14:58:35.0187 0x1078  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
14:58:35.0203 0x1078  Schedule - ok
14:58:35.0234 0x1078  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:58:35.0234 0x1078  Secdrv - ok
14:58:35.0265 0x1078  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
14:58:35.0265 0x1078  seclogon - ok
14:58:35.0343 0x1078  [ 5B66DB4877BBAC9F7493AA8D84421E49, D1FCE833A9140E5EC3106373A6FF42335A9A20EBBE020E757B55F032DA0FA7AE ] Secunia PSI Agent C:\Program Files\Secunia\PSI\PSIA.exe
14:58:35.0359 0x1078  Secunia PSI Agent - ok
14:58:35.0390 0x1078  [ 0E88FDF474F2CDD370A4A6CE77D018F0, D01DA8FF7ADB073E4EECDBDF4F5FE595D6AC70F8C57AFC9ED5C51486CFCECC50 ] Secunia Update Agent C:\Program Files\Secunia\PSI\sua.exe
14:58:35.0406 0x1078  Secunia Update Agent - ok
14:58:35.0421 0x1078  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
14:58:35.0437 0x1078  SENS - ok
14:58:35.0468 0x1078  [ B4664C1EE39A5B7FC112F4077F8D21A5, DFA123125EBB71531362CC540F39BD51C8B3DFDF9F3BD6679742774FF336324B ] Ser2pl          C:\WINDOWS\system32\DRIVERS\ser2pl.sys
14:58:35.0484 0x1078  Ser2pl - ok
14:58:35.0484 0x1078  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] Serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
14:58:35.0484 0x1078  Serenum - ok
14:58:35.0500 0x1078  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
14:58:35.0500 0x1078  Serial - ok
14:58:35.0531 0x1078  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
14:58:35.0531 0x1078  Sfloppy - ok
14:58:35.0562 0x1078  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
14:58:35.0578 0x1078  SharedAccess - ok
14:58:35.0593 0x1078  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:58:35.0609 0x1078  ShellHWDetection - ok
14:58:35.0625 0x1078  Simbad - ok
14:58:35.0671 0x1078  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
14:58:35.0687 0x1078  SkypeUpdate - ok
14:58:35.0718 0x1078  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:58:35.0718 0x1078  SLIP - ok
14:58:35.0718 0x1078  Sparrow - ok
14:58:35.0750 0x1078  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
14:58:35.0750 0x1078  splitter - ok
14:58:35.0765 0x1078  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
14:58:35.0781 0x1078  Spooler - ok
14:58:35.0796 0x1078  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
14:58:35.0812 0x1078  sr - ok
14:58:35.0828 0x1078  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
14:58:35.0843 0x1078  srservice - ok
14:58:35.0890 0x1078  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
14:58:35.0890 0x1078  Srv - ok
14:58:35.0906 0x1078  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
14:58:35.0921 0x1078  SSDPSRV - ok
14:58:35.0953 0x1078  [ 09349E4BB1FECFB4C8FE04E5E5BC78CD, 9CC73A608FC11994E51A35E1F728D7CD7D12E5C7E8EE4CC4D731B9CCBFA5DB06 ] stdriver        C:\WINDOWS\system32\DRIVERS\stdriverx86.sys
14:58:35.0953 0x1078  stdriver - ok
14:58:35.0984 0x1078  [ 352B663A81402BE7CD7BD4EA27C9998C, 19F61CBEEE53E46CA619A74A574597C87FF74612DF80EB5E9360D9D6927FFCD6 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
14:58:35.0984 0x1078  STHDA - ok
14:58:36.0015 0x1078  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
14:58:36.0031 0x1078  stisvc - ok
14:58:36.0062 0x1078  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:58:36.0078 0x1078  streamip - ok
14:58:36.0078 0x1078  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
14:58:36.0078 0x1078  swenum - ok
14:58:36.0109 0x1078  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
14:58:36.0109 0x1078  swmidi - ok
14:58:36.0109 0x1078  SwPrv - ok
14:58:36.0125 0x1078  symc810 - ok
14:58:36.0125 0x1078  symc8xx - ok
14:58:36.0140 0x1078  sym_hi - ok
14:58:36.0140 0x1078  sym_u3 - ok
14:58:36.0156 0x1078  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
14:58:36.0156 0x1078  sysaudio - ok
14:58:36.0187 0x1078  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
14:58:36.0203 0x1078  SysmonLog - ok
14:58:36.0250 0x1078  [ 432D9D823C4C26B6070C41BAD4404CE4, 741B41F7467D312AF4CC733EA31F647FBCD06985CBB6A14117E8A87A6F7B06F5 ] tap0901         C:\WINDOWS\system32\DRIVERS\tap0901.sys
14:58:36.0250 0x1078  tap0901 - ok
14:58:36.0281 0x1078  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
14:58:36.0296 0x1078  TapiSrv - ok
14:58:36.0328 0x1078  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:58:36.0328 0x1078  Tcpip - ok
14:58:36.0343 0x1078  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
14:58:36.0359 0x1078  TDPIPE - ok
14:58:36.0375 0x1078  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
14:58:36.0375 0x1078  TDTCP - ok
14:58:36.0625 0x1078  [ C0C121B537DA3AD87481C0502CACE462, E0FC2AC71B60C796DCD03217A510C47425FB7783713FCCC477130E69715D2B8D ] TeamViewer      C:\Program Files\TeamViewer\TeamViewer_Service.exe
14:58:36.0750 0x1078  TeamViewer - ok
14:58:36.0765 0x1078  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
14:58:36.0781 0x1078  TermDD - ok
14:58:36.0796 0x1078  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
14:58:36.0812 0x1078  TermService - ok
14:58:36.0843 0x1078  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
14:58:36.0859 0x1078  Themes - ok
14:58:36.0921 0x1078  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
14:58:36.0937 0x1078  TlntSvr - ok
14:58:37.0000 0x1078  [ 3B43F4F67F3C539C3BBF40A552A12B5E, 565593B9AD01CA02205FC53F6B8A8955CB26901397C3581C3C514F01B69B86BD ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
14:58:37.0015 0x1078  TomTomHOMEService - ok
14:58:37.0015 0x1078  TosIde - ok
14:58:37.0031 0x1078  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
14:58:37.0046 0x1078  TrkWks - ok
14:58:37.0062 0x1078  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
14:58:37.0062 0x1078  Udfs - ok
14:58:37.0078 0x1078  ultra - ok
14:58:37.0109 0x1078  [ 9651E5D850B6F6BD7C77C70AA06F02BF, 746B9948BD77FE332991C08959908B5E613CE4A358B00BB67B3F8AB13FFD27C8 ] UMWdf           C:\WINDOWS\system32\wdfmgr.exe
14:58:37.0125 0x1078  UMWdf - ok
14:58:37.0140 0x1078  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
14:58:37.0156 0x1078  Update - ok
14:58:37.0171 0x1078  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
14:58:37.0187 0x1078  upnphost - ok
14:58:37.0203 0x1078  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
14:58:37.0218 0x1078  UPS - ok
14:58:37.0250 0x1078  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
14:58:37.0265 0x1078  usbaudio - ok
14:58:37.0312 0x1078  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:58:37.0312 0x1078  usbccgp - ok
14:58:37.0312 0x1078  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:58:37.0328 0x1078  usbehci - ok
14:58:37.0343 0x1078  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:58:37.0343 0x1078  usbhub - ok
14:58:37.0390 0x1078  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:58:37.0390 0x1078  usbprint - ok
14:58:37.0406 0x1078  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:58:37.0406 0x1078  usbstor - ok
14:58:37.0421 0x1078  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:58:37.0421 0x1078  usbuhci - ok
14:58:37.0453 0x1078  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
14:58:37.0468 0x1078  usbvideo - ok
14:58:37.0500 0x1078  [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E, CFA47A71403419CA7C94333B4F7766DFC97C5DCDBC3AD1B106044B93C979A5C5 ] usb_rndisx      C:\WINDOWS\system32\DRIVERS\usb8023x.sys
14:58:37.0500 0x1078  usb_rndisx - ok
14:58:37.0515 0x1078  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
14:58:37.0515 0x1078  VgaSave - ok
14:58:37.0515 0x1078  ViaIde - ok
14:58:37.0562 0x1078  [ 06C1099EDAD876A9898B0DBE5BED0271, DD65FBF56075D9D8944E2FA3012E0FA58D6B9F7221F4ABA80F451A0C3393CF65 ] VMUVC           C:\WINDOWS\system32\Drivers\VMUVC.sys
14:58:37.0578 0x1078  VMUVC - ok
14:58:37.0578 0x1078  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
14:58:37.0593 0x1078  VolSnap - ok
14:58:37.0625 0x1078  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
14:58:37.0656 0x1078  VSS - ok
14:58:37.0671 0x1078  [ 4BA0A808440D5D9B791CC6CFA1D492AF, D41B6628A7604E35199577A22E1E54E474E18B1AC24D89E04911B368D6562083 ] vusbbus         C:\WINDOWS\system32\DRIVERS\vusbbus.sys
14:58:37.0671 0x1078  vusbbus - ok
14:58:37.0687 0x1078  [ D3EE7CC6B0C29083A874DB9D890BCEB5, 6F75CFCD91F45C6559D65315EC4B9D73F7AD278C632B733B47382F23F6DDD9B1 ] vvftUVC         C:\WINDOWS\system32\drivers\vvftUVC.sys
14:58:37.0703 0x1078  vvftUVC - ok
14:58:37.0734 0x1078  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
14:58:37.0750 0x1078  W32Time - ok
14:58:37.0765 0x1078  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:58:37.0765 0x1078  Wanarp - ok
14:58:37.0765 0x1078  WDICA - ok
14:58:37.0781 0x1078  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
14:58:37.0796 0x1078  wdmaud - ok
14:58:37.0796 0x1078  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
14:58:37.0812 0x1078  WebClient - ok
14:58:37.0828 0x1078  [ F9AD3A5E3FD7E0BDB18B8202B0FDD4E4, A6020D41FEA0CC76D0C3CA3A88F3E9493022CD5A549E18B02D69A482B579F339 ] WimFltr         C:\WINDOWS\system32\DRIVERS\wimfltr.sys
14:58:37.0843 0x1078  WimFltr - ok
14:58:37.0890 0x1078  [ F59ED5A43B988A18EF582BB07B2327A7, E870821C9C4E31D3B05049FBA5D81358F9C30E6A67F600D4EA3A5736CA344028 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
14:58:37.0906 0x1078  winachsf - ok
14:58:37.0953 0x1078  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
14:58:37.0953 0x1078  winmgmt - ok
14:58:38.0000 0x1078  [ B9715B9C18BC6C8F4B66733D208CC9F7, 1F1298810AB5BA0B669091481ECC6D545B4ADBB2D80C8EFB257439E3818A9A84 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
14:58:38.0015 0x1078  WmdmPmSN - ok
14:58:38.0046 0x1078  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
14:58:38.0078 0x1078  Wmi - ok
14:58:38.0093 0x1078  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:58:38.0093 0x1078  WmiApSrv - ok
14:58:38.0125 0x1078  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:58:38.0140 0x1078  WS2IFSL - ok
14:58:38.0171 0x1078  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
14:58:38.0187 0x1078  wscsvc - ok
14:58:38.0203 0x1078  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:58:38.0203 0x1078  WSTCODEC - ok
14:58:38.0250 0x1078  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
14:58:38.0265 0x1078  wuauserv - ok
14:58:38.0281 0x1078  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
14:58:38.0312 0x1078  WZCSVC - ok
14:58:38.0359 0x1078  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
14:58:38.0375 0x1078  xmlprov - ok
14:58:38.0453 0x1078  [ 154FE6A5A608CD725266877901E883C2, 777E81249A210AFD84057A7005882151BFB814971E2D3FF9EE84B1AB1F575A06 ] ZD1211BU(SMC)   C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys
14:58:38.0468 0x1078  ZD1211BU(SMC) - ok
14:58:38.0515 0x1078  [ 00AE175B903D45ED4A62384D3315DC2A, FAAAD00B96DDCDEB396D479F89207A0EEC374871C6340AACDDB95BF289D6330C ] ZDPSp50         C:\WINDOWS\system32\Drivers\ZDPSp50.sys
14:58:38.0515 0x1078  ZDPSp50 - ok
14:58:38.0546 0x1078  ================ Scan global ===============================
14:58:38.0546 0x1078  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
14:58:38.0593 0x1078  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
14:58:38.0625 0x1078  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
14:58:38.0656 0x1078  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
14:58:38.0671 0x1078  [ Global ] - ok
14:58:38.0671 0x1078  ================ Scan MBR ==================================
14:58:38.0671 0x1078  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
14:58:38.0843 0x1078  \Device\Harddisk0\DR0 - ok
14:58:38.0843 0x1078  ================ Scan VBR ==================================
14:58:38.0843 0x1078  [ E74EF71D543CA7F4DDB18CEAB960E29B ] \Device\Harddisk0\DR0\Partition1
14:58:38.0921 0x1078  \Device\Harddisk0\DR0\Partition1 - ok
14:58:38.0921 0x1078  [ 14A76457F30D62BB443CE0C5B4FB4335 ] \Device\Harddisk0\DR0\Partition2
14:58:39.0031 0x1078  \Device\Harddisk0\DR0\Partition2 - ok
14:58:39.0031 0x1078  ================ Scan generic autorun ======================
14:58:39.0078 0x1078  [ 7A21E06385E748E9CB0252F1BBC493F1, ACBEC5E2CB462DA458914D0CCB405A8AE92F6F478C1C46CE0FA4F49E65EBB711 ] C:\WINDOWS\ehome\ehtray.exe
14:58:39.0078 0x1078  ehTray - ok
14:58:39.0140 0x1078  [ DAC3F5F1A61DC00ECF5D855C6A7E9DDB, C128A6829DD0DA5EC8FE781A132C90A18E9EA07D8782CFA22527355E802FA06F ] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
14:58:39.0156 0x1078  ATIPTA - ok
14:58:39.0390 0x1078  [ 312C7978F0A42DB0475CE31D884DCE88, 53DBEF2473F39754BB1BC352DB9A32607FD3A2E2DC5E7AA6AE821CABEC00CCD1 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
14:58:39.0546 0x1078  AvastUI.exe - ok
14:58:39.0640 0x1078  [ F6158734F1E24C6C510155CF0D363911, 320900BA90AF14E254CFAFA70FB15A0E77506217E47A406FA1ED821D0206FE29 ] C:\Program Files\Real\RealPlayer\update\realsched.exe
14:58:39.0656 0x1078  TkBellExe - ok
14:58:39.0812 0x1078  [ E435FC466E7FEF98C56681C1A4BA41A5, DCD01CBFF9308D6175565F04A881A91F8FE9293CCE6D9902571C8F486096859E ] C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe
14:58:39.0843 0x1078  StartupDelayer - ok
14:58:39.0890 0x1078  [ 14D6542607ACD4B2D1DDB1A36E0D8813, 3A270600549E8E7988D5AF3486C0F504269B9573393D87BF87BDB2287BF007B2 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
14:58:39.0906 0x1078  SunJavaUpdateSched - ok
14:58:39.0921 0x1078  [ 3E183703B13B06BBFE58B14A9B8CED92, 700F545761DD29534E2E084A9E918C69E086253821461084A400F153A63ABD7C ] C:\WINDOWS\tsnpstd3.exe
14:58:39.0937 0x1078  tsnpstd3 - ok
14:58:39.0984 0x1078  [ 66CD0BEC783DCEA93C4BEDB0CC288425, 1FAFBE40A1047F36BCE643CAF61014E07E09CFE4B317F370F7506D59ED6127B9 ] C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe
14:58:40.0015 0x1078  OpenDNS Updater - ok
14:58:40.0125 0x1078  [ BE0186C2984A1A04E84FF94EE07ACA0C, FDDDAE41ED5A7CAA4F2FEDCF1288F24FA91E1D229D363A4DE28B50DF66EBE7D9 ] C:\Program Files\MyDrive Connect\MyDriveConnect.exe
14:58:40.0171 0x1078  MyDriveConnect.exe - ok
14:58:40.0500 0x1078  [ 691AD8C4642F35692B8F57FCC1E2150F, C6DEC6FA5497DA396F184C08C6EB0A09815A8C340C4913A9C79F87D0F40510ED ] C:\Documents and Settings\rob\Local Settings\Application Data\Programs\Google\MusicManager\MusicManager.exe
14:58:40.0671 0x1078  MusicManager - ok
14:58:40.0718 0x1078  [ B00DC457F1E921FCB9974B44CA25A829, 0EF202DFCCE98CFB1F96AE0576D35BC650BB05A327798207358EE6345D3F608C ] C:\Program Files\CyberGhost 5\CyberGhost.EXE
14:58:40.0734 0x1078  CyberGhost - ok
14:58:40.0765 0x1078  [ 4EA63B2AF94A69E5D89D25D45BF8C8D8, D666BC52A093643F21D99C55928851DDE5862DD47FA56C845019B31C6066D7B7 ] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
14:58:40.0765 0x1078  TomTomHOME.exe - ok
14:58:40.0843 0x1078  [ 3A8D9280D4BC24ABDD2E28CA58609FBF, 8282409D4F0B72313C9765CD6D78CE6D40CFDD485163E8ADDF7651B9A99B8908 ] C:\Documents and Settings\rob\Local Settings\Apps\2.0\Z64W2PNX.N9D\VE6TBDLY.0LA\dell..tion_e30b47f5d4a30e9e_0005.000c_1df9a4898fae00de\DellSystemDetect.exe
14:58:40.0843 0x1078  DellSystemDetect - ok
14:58:40.0859 0x1078  [ 135416B144B1441428C998B19ED660BB, F302E585213E0C87EC087B13A9AFD1D09B6921F95C4B68EBDFA6CCE83E3E9D7C ] C:\AdwCleaner\AdwCleaner[S0].txt
14:58:40.0875 0x1078  Report - ok
14:58:40.0875 0x1078  Waiting for KSN requests completion. In queue: 206
14:58:41.0875 0x1078  Waiting for KSN requests completion. In queue: 206
14:58:42.0875 0x1078  Waiting for KSN requests completion. In queue: 206
14:58:43.0906 0x1078  AV detected via SS1: avast! Antivirus, 5.0.167774368, enabled, updated
14:58:43.0906 0x1078  Win FW state via NFM: enabled
14:58:46.0390 0x1078  ============================================================
14:58:46.0390 0x1078  Scan finished
14:58:46.0390 0x1078  ============================================================
14:58:46.0390 0x1014  Detected object count: 0
14:58:46.0390 0x1014  Actual detected object count: 0
 



#9 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 03:10 PM

# AdwCleaner v4.108 - Report created 21/01/2015 at 15:04:57
# Updated 17/01/2015 by Xplode
# Database : 2015-01-18.1 [Live]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : rob - DELLXPS400
# Running from : D:\decemberf\toburn\singles\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : CouponPrinterService

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Start Menu\Programs\Coupons
Folder Deleted : C:\Program Files\Coupons

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Search Extensions
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\RocketTab

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v35.0 (x86 en-US)


-\\ Google Chrome v39.0.2171.99


*************************

AdwCleaner[R0].txt - [4810 octets] - [30/01/2014 11:17:58]
AdwCleaner[R1].txt - [8456 octets] - [05/03/2014 18:18:51]
AdwCleaner[R2].txt - [6267 octets] - [03/09/2014 07:57:17]
AdwCleaner[R3].txt - [1529 octets] - [21/01/2015 15:00:52]
AdwCleaner[S0].txt - [4664 octets] - [30/01/2014 11:19:40]
AdwCleaner[S1].txt - [8679 octets] - [05/03/2014 18:21:26]
AdwCleaner[S2].txt - [5870 octets] - [03/09/2014 08:09:48]
AdwCleaner[S3].txt - [1380 octets] - [21/01/2015 15:04:57]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1440 octets] ##########
 



#10 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 03:22 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Microsoft Windows XP x86
Ran by rob on Wed 01/21/2015 at 15:12:52.34
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1482476501-1770027372-839522115-1003\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\update lucky leap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\util lucky leap



~~~ Files

Successfully deleted: [File] "C:\WINDOWS\couponprinter.ocx"



~~~ Folders



~~~ FireFox

Emptied folder: C:\Documents and Settings\rob\Application Data\mozilla\firefox\profiles\43htojm9.default-1414667486375\minidumps [35 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 01/21/2015 at 15:21:29.23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:53 PM

Posted 21 January 2015 - 03:40 PM

Let me know how it's running after ESET.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 04:16 PM

I will.  ESET is 35% done, and found a bunch of conduit and a yontoo pup. Seems I can never get completely rid of conduit. Although I never see it as a hijack search engine site anymore.



#13 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 07:19 PM

C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\apn\APN-Stub\W3IV6-G\APNIC.dll.vir    a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\SoundTap\soundtap.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\SoundTap\soundtapsetup_v2.26.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
C:\Documents and Settings\rob\My Documents\Downloads\ccsetup411.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Documents and Settings\rob\My Documents\Downloads\FreeStudio.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Documents and Settings\rob\My Documents\Downloads\avery wizard\Avery Wizard 4.01 - US 20111209.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\System Volume Information\_restore{D0CED8A5-26E5-46B2-8CDD-53FDF5913685}\RP1345\A0355257.exe    a variant of Win32/Toolbar.Conduit.H potentially unwanted application    deleted - quarantined
D:\decemberf\toburn\singles\FreeYouTubeToMP3Converter.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
 


okay...



#14 bluffwood

bluffwood
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2015 - 07:29 PM

plugging in the webcam, i get no webcam. but unknown device on dev mgr http://s156.photobucket.com/user/bluffwood/media/devicemgr_zpsbappzkv6.png.html



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:53 PM

Posted 21 January 2015 - 09:36 PM

Ok, looks clean..
Ak about that in XP up top as I know there are a couple tricks to fix that. I just don't know them anymore.


After that's fixed...

Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can re-infect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state. The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup
  • to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically. Vista and Windows 7 users can refer to these links:
  • Create a New Restore Point in Vista
  • Create a New Restore Point in Windows 7 (alternate method)
  • Disk Cleanup in Vista
  • Disk Cleanup in Windows 7
  • ◾Reboot and see how it is.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users