jsky

Members
  • Content count

    11
  • Joined

  • Last visited

Community Reputation

0 Neutral

About jsky

  • Rank
    Member
  1. jsky

    Can't unistall ad-ware 9

    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 26-11-2014 01 Ran by Anna Marie Corrigan at 2014-11-29 11:38:28 Run:3 Running from C:\Users\Anna Marie Corrigan\Desktop Loaded Profile: Anna Marie Corrigan (Available profiles: Anna Marie Corrigan) Boot Mode: Normal ============================================== Content of fixlist: ***************** AV: Lavasoft Ad-Watch Live! Anti-Virus (Enabled - Up to date) {9FF26384-70D4-CE6B-3ECB-E759A6A40116} AS: Lavasoft Ad-Watch Live! (Enabled - Up to date) {24938260-56EE-C1E5-047B-DC2BDD234BAB} Ad-Aware (Version: 8.3.0 - Lavasoft) Hidden AdAwareUpdater (Version: 11.4.6792.0 - Lavasoft) Hidden Reboot: ***************** AV: Lavasoft Ad-Watch Live! Anti-Virus (Enabled - Up to date) {9FF26384-70D4-CE6B-3ECB-E759A6A40116} => Not found. Item might already be deleted. AS: Lavasoft Ad-Watch Live! (Enabled - Up to date) {24938260-56EE-C1E5-047B-DC2BDD234BAB} => Not found. Item might already be deleted. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ad-Aware\\SystemComponent => Value not found. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8EEFB640-A25D-448E-9F84-3CADF173CAE4}\\SystemComponent => value deleted successfully. The system needed a reboot. ==== End of Fixlog ====
  2. jsky

    Can't unistall ad-ware 9

    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 26-11-2014 01 Ran by Anna Marie Corrigan at 2014-11-29 09:34:04 Run:2 Running from C:\Users\Anna Marie Corrigan\Desktop Loaded Profiles: Anna Marie Corrigan & (Available profiles: Anna Marie Corrigan) Boot Mode: Normal ============================================== Content of fixlist: ***************** SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://toolbar.inbox...id=80352&lng=en DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab FF Plugin: [email protected]/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll No File FF Extension: FoodBuzz - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{2326C1C3-3E92-49da-A3FB-CB8AD8AD8F25} [2013-05-13] R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2013-02-18] (GFI Software) S3 Lavasoft Kernexplorer; C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [15232 2011-02-04] () R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [64288 2010-07-12] (Lavasoft AB) S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [95568 2010-05-31] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [385880 2010-05-31] (McAfee, Inc.) S3 SymIMMP; system32\DRIVERS\SymIM.sys [X] S0 nitbri; System32\drivers\tdttjcml.sys [X] AV: Lavasoft Ad-Watch Live! Anti-Virus (Enabled - Up to date) {9FF26384-70D4-CE6B-3ECB-E759A6A40116} AS: Lavasoft Ad-Watch Live! (Enabled - Up to date) {24938260-56EE-C1E5-047B-DC2BDD234BAB} Task: {CC402475-FD13-4E58-B60D-3DB038988F23} - \EPUpdater No Task File <==== ATTENTION Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File File: C:\ProgramData\lin37.pad ***************** "HKU\S-1-5-21-4069657085-2819306221-475852914-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}" => Key deleted successfully. "HKCR\CLSID\{C04B7D22-5AEC-4561-8F49-27F6269208F6}" => Key not found. "HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA}" => Key deleted successfully. "HKCR\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA}" => Key not found. "HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1" => Key deleted successfully. C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{2326C1C3-3E92-49da-A3FB-CB8AD8AD8F25} => Moved successfully. gfibto => Service stopped successfully. gfibto => Service deleted successfully. Lavasoft Kernexplorer => Service deleted successfully. Lbd => Service stopped successfully. Lbd => Service deleted successfully. mfeapfk => Service deleted successfully. mfehidk => Unable to stop service mfehidk => Service deleted successfully. SymIMMP => Service deleted successfully. nitbri => Service deleted successfully. AV: Lavasoft Ad-Watch Live! Anti-Virus (Enabled - Up to date) {9FF26384-70D4-CE6B-3ECB-E759A6A40116} => The item is protected. Make sure the software is uninstalled and its services are removed. AS: Lavasoft Ad-Watch Live! (Enabled - Up to date) {24938260-56EE-C1E5-047B-DC2BDD234BAB} => The item is protected. Make sure the software is uninstalled and its services are removed. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CC402475-FD13-4E58-B60D-3DB038988F23}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC402475-FD13-4E58-B60D-3DB038988F23}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater" => Key deleted successfully. HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} => value deleted successfully. "HKCR\CLSID\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}" => Key not found. HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => value deleted successfully. "HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}" => Key not found. HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => value deleted successfully. "HKCR\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}" => Key not found. HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{472734EA-242A-422B-ADF8-83D1E48CC825} => value deleted successfully. "HKCR\CLSID\{472734EA-242A-422B-ADF8-83D1E48CC825}" => Key not found. ========================= File: C:\ProgramData\lin37.pad ======================== MD5: Creation and modification date: 2013-07-23 04:43 - 2013-07-25 12:24 Size: 95023320 Attributes: ---AT Company Name: Internal Name: Original Name: Product Name: Description: File Version: Product Version: Copyright: ====== End Of File: ====== The system needed a reboot. ==== End of Fixlog ==== Yes i still see "scan with adware" when i right click a file
  3. jsky

    Can't unistall ad-ware 9

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-11-2014 Ran by Anna Marie Corrigan (administrator) on ANNAMARIECOR-PC on 25-11-2014 12:35:27 Running from C:\Users\Anna Marie Corrigan\Desktop Loaded Profile: Anna Marie Corrigan (Available profiles: Anna Marie Corrigan) Platform: Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86) OS Language: English (United States) Internet Explorer Version 9 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Sony Corporation) C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (WinZip Computing, S.L.) C:\Program Files\WinZip\WZQKPICK32.EXE (Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe (Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (TuneUp Software) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe (Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_223_ActiveX.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [synTPStart] => C:\Program Files\Synaptics\SynTP\SynTPStart.exe [102400 2007-09-15] (Synaptics, Inc.) HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2009-11-24] ( Hewlett-Packard Development Company, L.P.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM\...\Run: [Reader Application Helper] => C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2013-06-25] (Sony Corporation) HKLM\...\Run: [bCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-03-22] (Google Inc.) HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd) HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\MountPoints2: {1afac2ef-310b-11e4-8632-0016d4bb4263} - H:\VerizonSWUpgradeAssistantLauncher.exe HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\MountPoints2: {b5359c7d-5928-11e3-a9d1-0016d4bb4263} - H:\menu.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk ShortcutTarget: WinZip Quick Pick.lnk -> C:\Program Files\WinZip\WZQKPICK32.EXE (WinZip Computing, S.L.) CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms} SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {9B88CAE7-CD0A-4E79-9916-FB610CDD8C51} URL = http://search.yahoo.com/search?p={searchTerms}&ei=UTF-8&fr=freeze&type=W3i_DS,105,0_0,Search,20081253,0,0,0,0 SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://toolbar.inbox.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=80352&lng=en BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MI1933~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @sony.com/ReaderDesktop -> C:\Program Files\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 -> C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc) FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc) FF Plugin: @videolan.org/vlc,version=2.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: [email protected]/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll No File FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.) FF Extension: Torrent Finder Toolbar - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\[email protected] [2012-03-19] FF Extension: Microsoft .NET Framework Assistant - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-06-24] FF Extension: FoodBuzz - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{2326C1C3-3E92-49da-A3FB-CB8AD8AD8F25} [2013-05-13] FF Extension: NoScript - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-04-30] FF Extension: Adblock Plus - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-07-09] FF HKLM\...\FireFox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-19] Chrome: ======= CHR Profile: C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Docs) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-15] CHR Extension: (Google Drive) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-15] CHR Extension: (YouTube) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-15] CHR Extension: (Google Search) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-15] CHR Extension: (Google Wallet) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-15] CHR Extension: (Gmail) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-15] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation) S3 Sony SCSI Helper Service; C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2013-05-23] (Sony Corporation) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-05-13] (DT Soft Ltd) R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2013-02-18] (GFI Software) S3 Lavasoft Kernexplorer; C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [15232 2011-02-04] () R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [64288 2010-07-12] (Lavasoft AB) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-10-01] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2014-11-25] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-10-01] (Malwarebytes Corporation) S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [95568 2010-05-31] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [385880 2010-05-31] (McAfee, Inc.) S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation) S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [20080 2010-11-06] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2013-01-27] (Duplex Secure Ltd.) S3 WUSB54GSCv2.NTx86; C:\Windows\System32\DRIVERS\WUSB54GSCV2_X86.sys [238072 2008-01-08] () U3 atsg1uit; C:\Windows\system32\Drivers\atsg1uit.sys [0 ] (Microsoft Corporation) S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X] S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S0 nitbri; System32\drivers\tdttjcml.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] S3 SymIMMP; system32\DRIVERS\SymIM.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-25 12:35 - 2014-11-25 12:36 - 00016937 _____ () C:\Users\Anna Marie Corrigan\Desktop\FRST.txt 2014-11-25 11:11 - 2014-11-25 11:29 - 00000000 ____D () C:\AdwCleaner 2014-11-25 11:11 - 2014-11-25 11:12 - 02148864 _____ () C:\Users\Anna Marie Corrigan\Desktop\adwcleaner_4.102.exe 2014-11-25 00:05 - 2014-11-25 00:05 - 00004271 _____ () C:\Users\Anna Marie Corrigan\Desktop\RKreport_SCN_11252014_000308.log 2014-11-24 23:34 - 2014-11-24 23:34 - 04184008 _____ (Kaspersky Lab ZAO) C:\Users\Anna Marie Corrigan\Desktop\tdsskiller.exe 2014-11-24 23:23 - 2014-11-24 23:53 - 00034808 _____ () C:\Windows\system32\Drivers\TrueSight.sys 2014-11-24 23:23 - 2014-11-24 23:23 - 00000000 ____D () C:\ProgramData\RogueKiller 2014-11-24 23:19 - 2014-11-24 23:23 - 15196248 _____ () C:\Users\Anna Marie Corrigan\Desktop\RogueKiller.exe 2014-11-24 23:04 - 2014-11-24 23:06 - 01110016 _____ (Farbar) C:\Users\Anna Marie Corrigan\Desktop\FRST.exe 2014-11-24 14:10 - 2014-11-25 12:35 - 00000000 ____D () C:\FRST 2014-11-22 16:13 - 2014-11-22 16:13 - 00001057 _____ () C:\Users\Anna Marie Corrigan\Desktop\Revo Uninstaller.lnk 2014-11-22 16:13 - 2014-11-22 16:13 - 00000000 ____D () C:\Program Files\VS Revo Group 2014-11-22 15:58 - 2014-11-22 15:58 - 00000000 ____D () C:\Revo_Uninstaller_TSV3F769L 2014-11-22 15:58 - 2014-11-22 15:58 - 00000000 ____D () C:\Program Files\sweetpacks bundle uninstaller_Revo Uninstaller_3327473 2014-11-22 14:42 - 2014-11-22 17:11 - 01754248 _____ () C:\Users\Anna Marie Corrigan\Downloads\Adaware_Installer.exe 2014-11-22 12:44 - 2014-11-22 12:44 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft 2014-11-03 15:30 - 2014-11-25 11:33 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-11-03 15:29 - 2014-11-03 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2014-11-03 15:29 - 2014-11-03 15:29 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware 2014-11-03 15:29 - 2014-10-01 11:11 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-11-03 15:29 - 2014-10-01 11:11 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-25 12:06 - 2012-06-13 19:46 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-25 11:38 - 2006-11-02 05:33 - 00703286 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-25 11:31 - 2013-01-27 14:23 - 00024480 _____ () C:\Windows\PFRO.log 2014-11-25 11:31 - 2006-11-02 07:58 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-25 11:31 - 2006-11-02 07:45 - 00004832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-25 11:31 - 2006-11-02 07:45 - 00004832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-25 11:30 - 2006-11-02 07:58 - 00032538 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-11-25 11:07 - 2009-08-29 13:55 - 00000000 ____D () C:\Program Files\Java 2014-11-22 15:30 - 2006-11-02 07:49 - 01528208 _____ () C:\Windows\WindowsUpdate.log 2014-11-22 14:38 - 2010-07-23 20:51 - 00000000 __SHD () C:\Windows\ftpcache 2014-11-22 12:42 - 2010-07-23 13:37 - 00000000 ____D () C:\ProgramData\Lavasoft 2014-11-22 11:19 - 2010-07-26 22:49 - 00559851 _____ () C:\aaw7boot.log 2014-11-17 19:23 - 2011-04-25 11:49 - 00000064 _____ () C:\Windows\system32\rp_stats.dat 2014-11-17 19:23 - 2011-04-25 11:49 - 00000044 _____ () C:\Windows\system32\rp_rules.dat 2014-11-12 19:06 - 2012-06-13 19:46 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-11-12 19:06 - 2011-07-27 20:23 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-11-11 19:06 - 2009-03-27 22:44 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Roaming\vlc 2014-11-03 16:31 - 2010-07-22 20:04 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware 2014-11-03 16:23 - 2013-04-10 02:48 - 00006796 _____ () C:\Windows\setupact.log 2014-11-03 15:29 - 2012-02-17 10:45 - 00000899 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-11-03 15:29 - 2010-07-22 20:05 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Roaming\Malwarebytes 2014-11-03 15:29 - 2010-07-22 20:04 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-11-03 13:51 - 2010-07-27 14:55 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Roaming\BitTorrent 2014-11-01 13:23 - 2008-04-07 06:07 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Local\Adobe 2014-10-31 22:48 - 2008-03-23 08:39 - 00188416 _____ () C:\Users\Anna Marie Corrigan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini Files to move or delete: ==================== C:\ProgramData\lin37.pad Some content of TEMP: ==================== C:\Users\Anna Marie Corrigan\AppData\Local\Temp\dllnt_dump.dll C:\Users\Anna Marie Corrigan\AppData\Local\Temp\Quarantine.exe C:\Users\Anna Marie Corrigan\AppData\Local\Temp\sqlite3.dll C:\Users\Anna Marie Corrigan\AppData\Local\Temp\uninst1.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-25 11:37 ==================== End Of Log ============================
  4. jsky

    Can't unistall ad-ware 9

    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-11-2014 Ran by Anna Marie Corrigan at 2014-11-25 12:36:48 Running from C:\Users\Anna Marie Corrigan\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Lavasoft Ad-Watch Live! Anti-Virus (Enabled - Up to date) {9FF26384-70D4-CE6B-3ECB-E759A6A40116} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Lavasoft Ad-Watch Live! (Enabled - Up to date) {24938260-56EE-C1E5-047B-DC2BDD234BAB} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-zip v9.20 (HKLM\...\7-zip) (Version: v9.20 - TUGUU SL) <==== ATTENTION Ad-Aware (HKLM\...\Ad-Aware) (Version: - Lavasoft) Ad-Aware (Version: 8.3.0 - Lavasoft) Hidden Ad-Aware Antivirus (HKLM\...\{8EEFB640-A25D-448E-9F84-3CADF173CAE4}_AdAwareUpdater) (Version: 11.4.6792.0 - Lavasoft) AdAwareUpdater (Version: 11.4.6792.0 - Lavasoft) Hidden Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated) Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated) Adobe Reader 8.1.4 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81300000003}) (Version: 8.1.4 - Adobe Systems Incorporated) Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) BitTorrent (HKLM\...\BitTorrent) (Version: 7.7.2.28499 - BitTorrent Inc.) BitTorrent (HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\BitTorrent) (Version: 7.8.2.30182 - BitTorrent Inc.) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Compact Wireless-G USB Network Adapter with SpeedBooster Driver - WUSB54GSC (HKLM\...\{65563451-00B6-458C-9F9A-03A7757355A6}) (Version: 1.0 - Linksys, A Division of Cisco.) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.36.7.62 - Conexant) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd) DivX Setup (HKLM\...\DivX Setup.divx.com) (Version: 2.4.0.6 - DivX, LLC) Easy Media Player 1.1.12 (HKLM\...\Easy Media Player) (Version: 1.1.12 - Easy Media Player) Google Chrome (HKLM\...\Google Chrome) (Version: 29.0.1547.66 - Google Inc.) Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4601.54 - Google Inc.) Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (Version: 1.3.21.153 - Google Inc.) Hidden HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: - ) HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.14.1 - Hewlett-Packard Company) Impulse (HKLM\...\Impulse) (Version: - Stardock) Impulse (Version: 1.0 - Stardock Corporation) Hidden Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - ) iTunes (HKLM\...\{91FD46D2-4FB7-4A51-8637-556E1BE1DB7C}) (Version: 11.0.4.4 - Apple Inc.) Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden LG VZW United Drivers (HKLM\...\{AAAB3333-0F97-4A5D-B725-FFD7E7450FD9}) (Version: 2.14.1 - LG Electronics) Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Calculator Plus (HKLM\...\{83073C45-3003-4671-9A86-243AAADD915A}) (Version: 1.0.0 - Microsoft) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Reader (HKLM\...\{B6F7DBE7-2FE2-458F-A738-B10832746036}) (Version: - ) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML4 Parser (HKLM\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios) OpenOffice.org 3.4.1 (HKLM\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation) PeerBlock 1.1 (r518) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.1.0.518 - PeerBlock, LLC) QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.) Reader for PC (HKLM\...\{7FAEB610-D6B1-42CE-9EEA-6A5001C2E732}) (Version: 2.1.00.06250 - Sony Corporation) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden Star Defender 4 V1.20 (HKLM\...\Star Defender 4 V1.20) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.0.13.2 - Synaptics) TuneUp Utilities 2011 (HKLM\...\TuneUp Utilities 2011) (Version: 10.0.4010.20 - TuneUp Software) TuneUp Utilities 2011 (Version: 10.0.4010.20 - TuneUp Software) Hidden TuneUp Utilities Language Pack (en-US) (Version: 10.0.4010.20 - TuneUp Software) Hidden TuneUp Utilities Language Pack (en-US) (Version: 9.0.4700.23 - TuneUp Software) Hidden VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden Veetle TV 0.9.18 (HKLM\...\Veetle TV) (Version: 0.9.18 - Veetle, Inc) Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) VLC media player 2.0.3 (HKLM\...\VLC media player) (Version: 2.0.3 - VideoLAN) Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation) Windows Live Sync (HKLM\...\{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}) (Version: 14.0.8064.206 - Microsoft Corporation) WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DA}) (Version: 17.5.10480 - WinZip Computing, S.L. ) Xvid 1.2.2 final uninstall (HKLM\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi)) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{06EEE834-461C-42C2-8DCF-1502B527B1F9}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{3050F406-98B5-11CF-BB82-00AA00BDCE0B}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader.dll () CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{50D5107A-D278-4871-8989-F4CEAAF59CFC}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{5D02926A-212E-11D0-9DF9-00A0C922E6EC}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{8856F961-340A-11D0-A96B-00C04FD705A2}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{942BC614-676C-464E-B384-D3202AAA02DA}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{9D148291-B9C8-11D0-A4CC-0000F80149F6}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{ADB880A6-D8FF-11CF-9377-00AA003B7A11}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{FBF23B40-E3F0-101B-8488-00AA003E56F8}\InprocServer32 -> No File Path ==================== Restore Points ========================= 24-11-2014 22:10:42 Scheduled Checkpoint 25-11-2014 15:56:10 Revo Uninstaller's restore point - Ask Toolbar Updater 25-11-2014 16:01:22 Removed Java 6 Update 32 25-11-2014 16:02:35 Removed Java 7 Update 40 25-11-2014 16:05:10 Removed Java 7 Update 40 25-11-2014 16:07:25 Removed Java 6 Update 2 25-11-2014 16:36:30 Removed JavaFX 2.1.1 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 05:23 - 2006-09-18 16:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {18474602-F248-4D3F-BB3F-669C6AD18E2E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {260303F1-DC3D-4512-853F-D9F790960ED0} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {355C85AC-D7CD-45A8-939D-1CC65F88270C} - System32\Tasks\Microsoft\Windows\RestartManager\{7EF18381-C371-4bb4-91DE-1C849BCF561E} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {4D88F1F3-4D9B-4478-A5B0-7167CB11ED50} - System32\Tasks\Divx online update program => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-02-14] () Task: {4D912348-F64C-407D-ACB6-475C55D30029} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-19] (Microsoft Corporation) Task: {537A3CA0-84FD-4CF2-9232-ABDA0210E839} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-07] (Google Inc.) Task: {58894C27-4911-436E-A73B-E68ED07E248C} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2011-09-01] (Lavasoft Limited ) Task: {88E578B7-77B1-4841-AC47-F3188D74B870} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-07] (Google Inc.) Task: {AD715443-CDF2-4382-8F56-3BE75CB81358} - System32\Tasks\Microsoft\Windows\RestartManager\{34FDEC84-6303-4246-A7F5-CE12B5785939} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {B8CF7248-31AC-4F2D-A361-6DD2BF70A724} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated) Task: {CC402475-FD13-4E58-B60D-3DB038988F23} - \EPUpdater No Task File <==== ATTENTION Task: {DCAD4F1E-D1C5-46FC-9D4D-93D5E2903560} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe Task: {FDCAEAF8-07DF-459E-A6C3-0375BE183527} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011 => C:\Program Files\TuneUp Utilities 2011\OneClick.exe [2011-03-30] (TuneUp Software) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\User_Feed_Synchronization-{C3EE2A8D-CF33-45BF-9A29-BEA1DCBAA764}.job => C:\Windows\system32\msfeedssync.exe ==================== Loaded Modules (whitelisted) ============= 2010-01-30 01:41 - 2010-01-30 01:41 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-03-24 20:17 - 2010-03-24 20:17 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2013-06-25 17:23 - 2013-06-25 17:23 - 00880640 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\fsk.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00040264 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskMediaPlayers.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00239944 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\Fskin.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00026952 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskinLocalize.dll 2013-05-23 18:54 - 2013-05-23 18:54 - 00798720 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskSecurity.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00125256 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskDocumentViewer.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00016200 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskPower.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00024904 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskNetInterface.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00017224 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskMobileMediaDevice.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00015176 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskTimeHardware.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00034632 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ticket.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00018760 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ebookDeviceNotifier.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00092488 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ebookUsb.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00149832 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\readerAppHelper.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00178504 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\USBDetector.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-4069657085-2819306221-475852914-500 - Administrator - Disabled) Anna Marie Corrigan (S-1-5-21-4069657085-2819306221-475852914-1000 - Administrator - Enabled) => C:\Users\Anna Marie Corrigan Guest (S-1-5-21-4069657085-2819306221-475852914-501 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= Name: Microsoft ISATAP Adapter #2 Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Event log errors: ========================= Application errors: ================== Error: (11/25/2014 11:32:45 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program iexplore.exe version 9.0.8112.16464 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel. Process ID: c00 Start Time: 01d008cd4a8e14c4 Termination Time: 46 Error: (11/25/2014 10:56:06 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {7a39a13a-4646-495b-8505-645f46540778} Error: (11/24/2014 11:38:54 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/24/2014 11:38:53 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 04:17:58 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 04:17:57 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 04:14:32 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {adb3b733-a2fa-494f-8a41-0cf02e5e217d} Error: (11/22/2014 03:03:13 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 03:03:11 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 02:51:47 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service System errors: ============= Error: (11/25/2014 11:32:37 AM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: MBAMWebAccessControlBFE Error: (11/25/2014 11:32:37 AM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: MBAMWebAccessControlBFE Error: (11/25/2014 11:31:34 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: nitbri Error: (11/25/2014 11:31:34 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Computer Browser%%1060 Error: (11/25/2014 11:30:28 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: C:\Windows\System32\bcmihvsrv.dll Error: (11/25/2014 11:30:28 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: C:\Windows\System32\bcmihvsrv.dll Error: (11/25/2014 11:30:22 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: C:\Windows\System32\bcmihvsrv.dll Error: (11/25/2014 11:29:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Software Licensing11200001Restart the service Error: (11/25/2014 11:29:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: MBAMService1 Error: (11/25/2014 11:29:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: XAudioService1 Microsoft Office Sessions: ========================= Error: (11/25/2014 11:32:45 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: iexplore.exe9.0.8112.16464c0001d008cd4a8e14c446 Error: (11/25/2014 10:56:06 AM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005 Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {7a39a13a-4646-495b-8505-645f46540778} Error: (11/24/2014 11:38:54 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/24/2014 11:38:53 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 04:17:58 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 04:17:57 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 04:14:32 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005 Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {adb3b733-a2fa-494f-8a41-0cf02e5e217d} Error: (11/22/2014 03:03:13 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 03:03:11 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 02:51:47 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service CodeIntegrity Errors: =================================== Date: 2014-11-25 12:36:42.105 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:41.606 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:41.060 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:40.529 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:39.765 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:39.297 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:38.798 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:38.314 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:09.719 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-25 12:36:09.142 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel® Celeron® M CPU 440 @ 1.86GHz Percentage of memory in use: 46% Total physical RAM: 2037.38 MB Available physical RAM: 1083.52 MB Total Pagefile: 4330.09 MB Available Pagefile: 3329.27 MB Total Virtual: 2047.88 MB Available Virtual: 1915.84 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:68.99 GB) (Free:7.75 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (PRESARIO_RP) (Fixed) (Total:5.54 GB) (Free:0.02 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 74.5 GB) (Disk ID: 1754EEA6) Partition 1: (Active) - (Size=69 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=5.5 GB) - (Type=07 NTFS) ==================== End Of Log ============================
  5. jsky

    Can't unistall ad-ware 9

    ok all java and everything else is removed # AdwCleaner v4.102 - Report created 25/11/2014 at 11:29:40 # Updated 23/11/2014 by Xplode # Database : 2014-11-25.1 [Live] # Operating System : Windows Vista Home Basic Service Pack 2 (32 bits) # Username : Anna Marie Corrigan - ANNAMARIECOR-PC # Running from : C:\Users\Anna Marie Corrigan\Desktop\adwcleaner_4.102.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\apn Folder Deleted : C:\ProgramData\Ask Folder Deleted : C:\ProgramData\Babylon Folder Deleted : C:\ProgramData\Trymedia Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freeze.com Folder Deleted : C:\Users\Anna Marie Corrigan\AppData\Local\Bundled software uninstaller Folder Deleted : C:\Users\Anna Marie Corrigan\AppData\Local\Conduit Folder Deleted : C:\Users\Anna Marie Corrigan\AppData\LocalLow\Conduit Folder Deleted : C:\Users\Anna Marie Corrigan\AppData\Roaming\Babylon Folder Deleted : C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} File Deleted : C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\searchplugins\Askcom.xml File Deleted : C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\searchplugins\askcomsearch.xml File Deleted : C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\user.js ***** [ Scheduled Tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\geggofhlfbcmanadhknllmlajiafopoh Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine Key Deleted : HKLM\SOFTWARE\Classes\d Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore.1 Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091 Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415C-8A37-763AE183E7E4} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F90EC8E7-A559-4F35-96FF-0860662701E7} Value Deleted : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1] Key Deleted : HKCU\Software\BI Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\Freeze.com Key Deleted : HKCU\Software\IM Key Deleted : HKCU\Software\ImInstaller Key Deleted : HKCU\Software\SweetIM Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKCU\Software\AppDataLow\Software\FocusInteractive Key Deleted : HKLM\SOFTWARE\Babylon Key Deleted : HKLM\SOFTWARE\Conduit Key Deleted : HKLM\SOFTWARE\dt soft\daemon tools toolbar Key Deleted : HKLM\SOFTWARE\Freeze.com Key Deleted : HKLM\SOFTWARE\SweetIM Key Deleted : HKLM\SOFTWARE\Uniblue Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta.com ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16464 -\\ Mozilla Firefox v [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.CTID", "CT2504091"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.CurrentServerDate", "17-10-2010"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.DialogsAlignMode", "LTR"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.DownloadReferralCookieData", ""); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.EMailNotifierPollDate", "Sun Oct 17 2010 09:02:05 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FeedLastCount129079840422964131", 0); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FeedPollDate128891351169457140", "Sun Oct 17 2010 09:02:05 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FeedPollDate129079840422964131", "Sun Oct 17 2010 09:02:05 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FeedTTL128891351169457140", 40); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FirstServerDate", "17-10-2010"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FirstTime", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FirstTimeFF3", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FirstTimeSettingsDone", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.FixPageNotFoundErrors", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.GroupingServerCheckInterval", 1440); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.Initialize", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.InitializeCommonPrefs", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.InstallationAndCookieDataSentCount", 1); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.InstallationType", "UnknownIntegration"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.InstalledDate", "Sun Oct 17 2010 09:02:05 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.IsGrouping", false); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.IsMulticommunity", false); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.IsOpenThankYouPage", false); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.IsOpenUninstallPage", false); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.LanguagePackLastCheckTime", "Sun Oct 17 2010 09:02:06 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.LanguagePackReloadIntervalMM", 1440); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.LastLogin_2.7.2.0", "Sun Oct 17 2010 09:02:05 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.LatestVersion", "2.6.0.14"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.Locale", "en-us"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.LoginCache", 4); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.MCDetectTooltipHeight", "83"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.MCDetectTooltipWidth", "295"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.SearchFromAddressBarIsInit", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.SearchInNewTabEnabled", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.SearchInNewTabIntervalMM", 1440); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.SearchInNewTabLastCheckTime", "Sun Oct 17 2010 09:02:06 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.SettingsCheckIntervalMin", 120); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.SettingsLastCheckTime", "Sun Oct 17 2010 09:02:04 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.SettingsLastUpdate", "1286395440"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.ThirdPartyComponentsInterval", 504); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.ThirdPartyComponentsLastCheck", "Sun Oct 17 2010 09:02:04 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.ThirdPartyComponentsLastUpdate", "1246790578"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.UserID", "UN40051794522283486"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.alertChannelId", "897164"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.clientLogIsEnabled", false); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.myStuffEnabled", true); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.myStuffPublihserMinWidth", 400); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CT2504091.myStuffServiceIntervalMM", 1440); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2504091"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2504091"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 60); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun Oct 17 2010 09:02:05 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.locale", "en"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Oct 17 2010 09:02:04 GMT-0400 (Eastern Daylight Time)"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1283688156"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.alert.userId", "{95217f19-b4af-46c3-9ec5-1a8cb0fd3103}"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("TorrentFinderToolbar.form.sitelist", "TFTB_slist = [[369,'Kick Torrents',,,],[23,'Torrent Reactor',,,],[314,'torrentHound',,,],[323,'Vertor - Verified torrents',,,],[21,'SUMO Torrent',,[...] [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine", "Ask.com"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultengine", "Ask.com"); [qfu2ovgf.default\prefs.js] - Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", ""); -\\ Google Chrome v29.0.1547.66 [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : dhdepfaagokllfmhfbcfmocaeigmoebo [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : fbmimoidopbghbcmdmpkjaffffmcbmbg [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : hphibigbodkkohoglgfkddblldpfohjl [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : kdcnnmifdmlmjffdgeieikcokcogpbej [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : kincjchfokkeneeofpeefomkikfkiedl [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : kkkeikdkpjenmoiicggnnodbkebafgpc [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : pgmfkblbflahhponhjmkcnpjinenhlnc [C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : geggofhlfbcmanadhknllmlajiafopoh ************************* AdwCleaner[R0].txt - [15880 octets] - [25/11/2014 11:12:10] AdwCleaner[s0].txt - [16752 octets] - [25/11/2014 11:29:40] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [16813 octets] ##########
  6. jsky

    Can't unistall ad-ware 9

    i had to use revo unistaller to remove the ask toolbar updater program but I have removed everything now and just need to run AdwCleaner. I have one question though, I also have a JavaFX2.1.1 listed in the control manager and was wondering if you would like it removed also. Incase I haven't said so yet, thank you for all the help so far!
  7. jsky

    Can't unistall ad-ware 9

    unfortunately I don't have a windows cd to use for reinstalling vista. I followed the 3 steps you suggested and here are the results. Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 23-11-2014 Ran by Anna Marie Corrigan at 2014-11-24 23:07:07 Run:1 Running from C:\Users\Anna Marie Corrigan\Desktop Loaded Profile: Anna Marie Corrigan (Available profiles: Anna Marie Corrigan) Boot Mode: Normal ============================================== Content of fixlist: ***************** Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll" Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll" Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) cmd: netsh winsock reset HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] fastprox.dll ATTENTION! ====> ZeroAccess? HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...409d6c4515e9\InprocServer32: [Default-shell32] shell32.dll ATTENTION! ====> ZeroAccess? ZeroAccess: C:\$Recycle.Bin\S-1-5-21-4069657085-2819306221-475852914-1000\$ff24043d55f85ce9a20a8337d9b4b888 ZeroAccess: C:\$Recycle.Bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888 AlternateDataStreams: C:\ProgramData\TEMP:667565EE AlternateDataStreams: C:\ProgramData\TEMP:A8ADE5D8 AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2 HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Classes\.exe: => <===== ATTENTION! EmptyTemp: ***************** Winsock: Catalog5 entry 000000000001\\LibraryPath was set successfully to %SystemRoot%\system32\NLAapi.dll Winsock: Catalog5 entry 000000000005\\LibraryPath was set successfully to %SystemRoot%\System32\mswsock.dll "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000007" => Key deleted successfully. ========= netsh winsock reset ========= Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 11003 Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ========= End of CMD: ========= HKLM\Software\Classes\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InprocServer32\\Default => Value was restored successfully. "HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}" => Key deleted successfully. ZeroAccess: => Error: No automatic fix found for this entry. C:\$Recycle.Bin\S-1-5-21-4069657085-2819306221-475852914-1000\$ff24043d55f85ce9a20a8337d9b4b888 => Directory moved successfully. ZeroAccess: => Error: No automatic fix found for this entry. C:\$Recycle.Bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888 => Deleted successfully. C:\ProgramData\TEMP => ":667565EE" ADS removed successfully. C:\ProgramData\TEMP => ":A8ADE5D8" ADS removed successfully. C:\ProgramData\TEMP => ":DFC5A2B2" ADS removed successfully. "HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Classes\.exe" => Key deleted successfully. EmptyTemp: => Removed 3.3 GB temporary data. The system needed a reboot. ==== End of Fixlog ==== RogueKiller V10.0.8.0 [Nov 20 2014] by Adlice Software mail : http://www.adlice.com/contact/ Feedback : http://forum.adlice.com Website : http://www.adlice.com/softwares/roguekiller/ Blog : http://www.adlice.com Operating System : Windows Vista (6.0.6002 Service Pack 2) 32 bits version Started in : Normal mode User : Anna Marie Corrigan [Administrator] Mode : Scan -- Date : 11/25/2014 00:03:08 ¤¤¤ Processes : 0 ¤¤¤ ¤¤¤ Registry : 14 ¤¤¤ [PUP] HKEY_CLASSES_ROOT\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6} -> Found [PUP] HKEY_CLASSES_ROOT\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B} -> Found [PUP] HKEY_CLASSES_ROOT\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} -> Found [PUP] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\BackupStack (C:\Program Files\MyPC Backup\BackupStack.exe) -> Found [PUP] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\BackupStack (C:\Program Files\MyPC Backup\BackupStack.exe) -> Found [PUP] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\BackupStack (C:\Program Files\MyPC Backup\BackupStack.exe) -> Found [PUM.HomePage] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.yahoo.com/ -> Found [PUM.HomePage] HKEY_USERS\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.yahoo.com/ -> Found [PUM.SearchPage] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Search Page : http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com -> Found [PUM.SearchPage] HKEY_USERS\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main | Search Page : http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com -> Found [PUM.DesktopIcons] HKEY_USERS\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {645FF040-5081-101B-9F08-00AA002F954E} : 1 -> Found [PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Found [PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Found [PUM.DesktopIcons] HKEY_USERS\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {645FF040-5081-101B-9F08-00AA002F954E} : 1 -> Found ¤¤¤ Tasks : 0 ¤¤¤ ¤¤¤ Files : 0 ¤¤¤ ¤¤¤ Hosts File : 2 ¤¤¤ [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost [C:\Windows\System32\drivers\etc\hosts] ::1 localhost ¤¤¤ Antirootkit : 7 (Driver: Loaded) ¤¤¤ [iRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x845981f8 [iRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x845981f8 [iRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x845981f8 [iRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x845981f8 [iRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x845981f8 [iRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x845981f8 [iRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x845981f8 ¤¤¤ Web browsers : 1 ¤¤¤ [PUM.HomePage][FIREFX:Config] qfu2ovgf.default : user_pref("browser.startup.homepage", "http://www.yahoo.com/"); -> Found ¤¤¤ MBR Check : ¤¤¤ +++++ PhysicalDrive0: ST980812AS ATA Device +++++ --- User --- [MBR] 3add797e27a0ae390af6b2504d40f3ad [bSP] d58d49f5036cc06a4f77d04fde6187c7 : HP MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 70645 MB 1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 144681390 | Size: 5671 MB User = LL1 ... OK User = LL2 ... OK ============================================ RKreport_DEL_11242014_233251.log - RKreport_SCN_11242014_233057.log 23:34:58.0268 0x0e1c TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34 23:35:12.0888 0x0e1c ============================================================ 23:35:12.0888 0x0e1c Current date / time: 2014/11/24 23:35:12.0888 23:35:12.0888 0x0e1c SystemInfo: 23:35:12.0888 0x0e1c 23:35:12.0888 0x0e1c OS Version: 6.0.6002 ServicePack: 2.0 23:35:12.0888 0x0e1c Product type: Workstation 23:35:12.0888 0x0e1c ComputerName: ANNAMARIECOR-PC 23:35:12.0888 0x0e1c UserName: Anna Marie Corrigan 23:35:12.0888 0x0e1c Windows directory: C:\Windows 23:35:12.0888 0x0e1c System windows directory: C:\Windows 23:35:12.0888 0x0e1c Processor architecture: Intel x86 23:35:12.0888 0x0e1c Number of processors: 1 23:35:12.0888 0x0e1c Page size: 0x1000 23:35:12.0888 0x0e1c Boot type: Normal boot 23:35:12.0888 0x0e1c ============================================================ 23:35:13.0693 0x0e1c KLMD registered as C:\Windows\system32\drivers\45637094.sys 23:35:13.0943 0x0e1c System UUID: {5D09D506-16F0-E4F1-91AD-779A685F3AFA} 23:35:14.0803 0x0e1c Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 ( 74.53 Gb ), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 23:35:14.0803 0x0e1c ============================================================ 23:35:14.0803 0x0e1c \Device\Harddisk0\DR0: 23:35:14.0803 0x0e1c MBR partitions: 23:35:14.0803 0x0e1c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x89FA96F 23:35:14.0803 0x0e1c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x89FA9AE, BlocksNum 0xB13B13 23:35:14.0803 0x0e1c ============================================================ 23:35:14.0823 0x0e1c C: <-> \Device\Harddisk0\DR0\Partition1 23:35:14.0873 0x0e1c D: <-> \Device\Harddisk0\DR0\Partition2 23:35:14.0873 0x0e1c ============================================================ 23:35:14.0873 0x0e1c Initialize success 23:35:14.0873 0x0e1c ============================================================ 23:35:23.0522 0x0f9c ============================================================ 23:35:23.0522 0x0f9c Scan started 23:35:23.0522 0x0f9c Mode: Manual; 23:35:23.0522 0x0f9c ============================================================ 23:35:23.0522 0x0f9c KSN ping started 23:35:26.0170 0x0f9c KSN ping finished: true 23:35:26.0778 0x0f9c ================ Scan system memory ======================== 23:35:26.0778 0x0f9c System memory - ok 23:35:26.0794 0x0f9c ================ Scan services ============================= 23:35:26.0965 0x0f9c [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys 23:35:26.0981 0x0f9c ACPI - ok 23:35:27.0074 0x0f9c [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 23:35:27.0074 0x0f9c AdobeFlashPlayerUpdateSvc - ok 23:35:27.0137 0x0f9c [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 23:35:27.0152 0x0f9c adp94xx - ok 23:35:27.0192 0x0f9c [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys 23:35:27.0202 0x0f9c adpahci - ok 23:35:27.0232 0x0f9c [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 23:35:27.0242 0x0f9c adpu160m - ok 23:35:27.0272 0x0f9c [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 23:35:27.0282 0x0f9c adpu320 - ok 23:35:27.0332 0x0f9c [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 23:35:27.0332 0x0f9c AeLookupSvc - ok 23:35:27.0392 0x0f9c [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys 23:35:27.0402 0x0f9c AFD - ok 23:35:27.0442 0x0f9c [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys 23:35:27.0442 0x0f9c agp440 - ok 23:35:27.0472 0x0f9c [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys 23:35:27.0472 0x0f9c aic78xx - ok 23:35:27.0512 0x0f9c [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe 23:35:27.0512 0x0f9c ALG - ok 23:35:27.0562 0x0f9c [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys 23:35:27.0562 0x0f9c aliide - ok 23:35:27.0592 0x0f9c [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys 23:35:27.0592 0x0f9c amdagp - ok 23:35:27.0622 0x0f9c [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys 23:35:27.0622 0x0f9c amdide - ok 23:35:27.0642 0x0f9c [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys 23:35:27.0652 0x0f9c AmdK7 - ok 23:35:27.0692 0x0f9c [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 23:35:27.0692 0x0f9c AmdK8 - ok 23:35:27.0732 0x0f9c [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll 23:35:27.0742 0x0f9c Appinfo - ok 23:35:27.0842 0x0f9c [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 23:35:27.0842 0x0f9c Apple Mobile Device - ok 23:35:27.0892 0x0f9c [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys 23:35:27.0892 0x0f9c arc - ok 23:35:27.0932 0x0f9c [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys 23:35:27.0932 0x0f9c arcsas - ok 23:35:27.0982 0x0f9c [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 23:35:27.0982 0x0f9c AsyncMac - ok 23:35:28.0022 0x0f9c [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys 23:35:28.0022 0x0f9c atapi - ok 23:35:28.0102 0x0f9c [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 23:35:28.0132 0x0f9c AudioEndpointBuilder - ok 23:35:28.0162 0x0f9c [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll 23:35:28.0172 0x0f9c Audiosrv - ok 23:35:28.0262 0x0f9c [ CB992840482C8CF9CD00376B23BE13B3, 7F7A2E94E4B4A214AF904A38C7FFD93F9490C60E207B2FAC03A0615439898D2E ] BackupStack C:\Program Files\MyPC Backup\BackupStack.exe 23:35:28.0262 0x0f9c BackupStack - ok 23:35:28.0382 0x0f9c [ 34A0A6386256080F52C74076C6157026, F3B7753958C4F990DA0619EA1095C0531D996593FDBB364E915FBBC7B53B8EE1 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys 23:35:28.0432 0x0f9c BCM43XV - ok 23:35:28.0542 0x0f9c [ 34A0A6386256080F52C74076C6157026, F3B7753958C4F990DA0619EA1095C0531D996593FDBB364E915FBBC7B53B8EE1 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys 23:35:28.0592 0x0f9c BCM43XX - ok 23:35:28.0622 0x0f9c [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys 23:35:28.0622 0x0f9c Beep - ok 23:35:28.0642 0x0f9c blbdrive - ok 23:35:28.0712 0x0f9c [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 23:35:28.0752 0x0f9c Bonjour Service - ok 23:35:28.0792 0x0f9c [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 23:35:28.0792 0x0f9c bowser - ok 23:35:28.0842 0x0f9c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 23:35:28.0842 0x0f9c BrFiltLo - ok 23:35:28.0882 0x0f9c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 23:35:28.0882 0x0f9c BrFiltUp - ok 23:35:28.0912 0x0f9c [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll 23:35:28.0922 0x0f9c Browser - ok 23:35:28.0952 0x0f9c [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys 23:35:28.0952 0x0f9c Brserid - ok 23:35:28.0982 0x0f9c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 23:35:28.0982 0x0f9c BrSerWdm - ok 23:35:29.0002 0x0f9c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 23:35:29.0012 0x0f9c BrUsbMdm - ok 23:35:29.0032 0x0f9c [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 23:35:29.0042 0x0f9c BrUsbSer - ok 23:35:29.0072 0x0f9c [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 23:35:29.0072 0x0f9c BTHMODEM - ok 23:35:29.0112 0x0f9c [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 23:35:29.0112 0x0f9c cdfs - ok 23:35:29.0152 0x0f9c [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 23:35:29.0152 0x0f9c cdrom - ok 23:35:29.0182 0x0f9c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll 23:35:29.0192 0x0f9c CertPropSvc - ok 23:35:29.0232 0x0f9c [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys 23:35:29.0232 0x0f9c circlass - ok 23:35:29.0292 0x0f9c [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys 23:35:29.0302 0x0f9c CLFS - ok 23:35:29.0382 0x0f9c [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 23:35:29.0392 0x0f9c clr_optimization_v2.0.50727_32 - ok 23:35:29.0452 0x0f9c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 23:35:29.0472 0x0f9c clr_optimization_v4.0.30319_32 - ok 23:35:29.0522 0x0f9c [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 23:35:29.0522 0x0f9c CmBatt - ok 23:35:29.0542 0x0f9c [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys 23:35:29.0542 0x0f9c cmdide - ok 23:35:29.0582 0x0f9c [ B6E7991E3D6146C04C85CD31AF22A381, 808393C7C5E59F273D03C62745A2AF759F588C102EDB6A2B8DD94C9A6AAF3F10 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys 23:35:29.0592 0x0f9c CnxtHdAudService - ok 23:35:29.0662 0x0f9c [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe 23:35:29.0672 0x0f9c Com4QLBEx - ok 23:35:29.0712 0x0f9c [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 23:35:29.0712 0x0f9c Compbatt - ok 23:35:29.0742 0x0f9c COMSysApp - ok 23:35:29.0762 0x0f9c [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 23:35:29.0762 0x0f9c crcdisk - ok 23:35:29.0792 0x0f9c [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys 23:35:29.0792 0x0f9c Crusoe - ok 23:35:29.0842 0x0f9c [ F1E8C34892336D33EDDCDFE44E474F64, 5CC8E0368D4D16CFDDBD0C826B08F1D93DF3C7C310026C6C91AFDC0CD752E77C ] CryptSvc C:\Windows\system32\cryptsvc.dll 23:35:29.0842 0x0f9c CryptSvc - ok 23:35:29.0922 0x0f9c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll 23:35:29.0952 0x0f9c DcomLaunch - ok 23:35:29.0982 0x0f9c [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 23:35:29.0982 0x0f9c DfsC - ok 23:35:30.0142 0x0f9c [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe 23:35:30.0222 0x0f9c DFSR - ok 23:35:30.0312 0x0f9c [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll 23:35:30.0332 0x0f9c Dhcp - ok 23:35:30.0362 0x0f9c [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys 23:35:30.0372 0x0f9c disk - ok 23:35:30.0432 0x0f9c [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll 23:35:30.0442 0x0f9c Dnscache - ok 23:35:30.0482 0x0f9c [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll 23:35:30.0492 0x0f9c dot3svc - ok 23:35:30.0532 0x0f9c [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll 23:35:30.0542 0x0f9c DPS - ok 23:35:30.0582 0x0f9c [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 23:35:30.0582 0x0f9c drmkaud - ok 23:35:30.0644 0x0f9c [ 687AF6BB383885FF6A64071B189A7F3E, 1C751B8DD27F63E88D0223A8434CED7589AC00EC6275938C59D1B954F0354F78 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys 23:35:30.0659 0x0f9c dtsoftbus01 - ok 23:35:30.0737 0x0f9c [ C68AC676B0EF30CFBB1080ADCE49EB1F, 62A808F2BB22507B66AE825315BBB655776AFEFD9E7DE33795DD308ACE87F0CD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 23:35:30.0753 0x0f9c DXGKrnl - ok 23:35:30.0815 0x0f9c [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys 23:35:30.0815 0x0f9c E1G60 - ok 23:35:30.0862 0x0f9c [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll 23:35:30.0862 0x0f9c EapHost - ok 23:35:30.0909 0x0f9c [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys 23:35:30.0924 0x0f9c Ecache - ok 23:35:30.0971 0x0f9c [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys 23:35:30.0971 0x0f9c elxstor - ok 23:35:31.0027 0x0f9c [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll 23:35:31.0067 0x0f9c EMDMgmt - ok 23:35:31.0147 0x0f9c [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll 23:35:31.0177 0x0f9c EventSystem - ok 23:35:31.0227 0x0f9c [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys 23:35:31.0227 0x0f9c exfat - ok 23:35:31.0297 0x0f9c [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys 23:35:31.0297 0x0f9c fastfat - ok 23:35:31.0357 0x0f9c [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys 23:35:31.0357 0x0f9c fdc - ok 23:35:31.0397 0x0f9c [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll 23:35:31.0397 0x0f9c fdPHost - ok 23:35:31.0417 0x0770 Object required for P2P: [ D51145F6B0CE987850F13A61DAD5E531 ] AdobeFlashPlayerUpdateSvc 23:35:31.0457 0x0f9c [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll 23:35:31.0457 0x0f9c FDResPub - ok 23:35:31.0497 0x0f9c [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 23:35:31.0497 0x0f9c FileInfo - ok 23:35:31.0547 0x0f9c [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 23:35:31.0547 0x0f9c Filetrace - ok 23:35:31.0587 0x0f9c [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 23:35:31.0587 0x0f9c flpydisk - ok 23:35:31.0637 0x0f9c [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 23:35:31.0647 0x0f9c FltMgr - ok 23:35:31.0707 0x0f9c [ 8CE364388C8ECA59B14B539179276D44, AD37AD512412A1A0955218A3DA0D6FBE1E30F373153CAF5912EFC076D348FED8 ] FontCache C:\Windows\system32\FntCache.dll 23:35:31.0757 0x0f9c FontCache - ok 23:35:31.0827 0x0f9c [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 23:35:31.0827 0x0f9c FontCache3.0.0.0 - ok 23:35:31.0867 0x0f9c [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 23:35:31.0867 0x0f9c fssfltr - ok 23:35:32.0037 0x0f9c [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe 23:35:32.0147 0x0f9c fsssvc - ok 23:35:32.0187 0x0f9c [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 23:35:32.0187 0x0f9c Fs_Rec - ok 23:35:32.0227 0x0f9c [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 23:35:32.0237 0x0f9c gagp30kx - ok 23:35:32.0267 0x0f9c [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 23:35:32.0267 0x0f9c GEARAspiWDM - ok 23:35:32.0297 0x0f9c [ 483924F92E55A5F9423201EC635E2CED, FEDAC3616709F081A0FA48E2BF521CBCC35E11E523EBADDEACA7308AD14338B3 ] gfibto C:\Windows\system32\drivers\gfibto.sys 23:35:32.0297 0x0f9c gfibto - ok 23:35:32.0367 0x0f9c [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll 23:35:32.0397 0x0f9c gpsvc - ok 23:35:32.0487 0x0f9c [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 23:35:32.0497 0x0f9c gupdate - ok 23:35:32.0537 0x0f9c [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 23:35:32.0537 0x0f9c gupdatem - ok 23:35:32.0587 0x0f9c [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 23:35:32.0597 0x0f9c gusvc - ok 23:35:32.0637 0x0f9c [ 93AEE3434935FC2F805FEFD8DC5ED1B4, EF4A76725B76FFB9EA14E6274A1FDE8482DA907A9B967E3D7EDD365BF132AD42 ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys 23:35:32.0637 0x0f9c HBtnKey - ok 23:35:32.0687 0x0f9c [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 23:35:32.0697 0x0f9c HdAudAddService - ok 23:35:32.0757 0x0f9c [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 23:35:32.0777 0x0f9c HDAudBus - ok 23:35:32.0817 0x0f9c [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys 23:35:32.0817 0x0f9c HidBth - ok 23:35:32.0847 0x0f9c [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys 23:35:32.0847 0x0f9c HidIr - ok 23:35:32.0927 0x0f9c [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll 23:35:32.0927 0x0f9c hidserv - ok 23:35:32.0957 0x0f9c [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 23:35:32.0957 0x0f9c HidUsb - ok 23:35:32.0997 0x0f9c [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll 23:35:33.0007 0x0f9c hkmsvc - ok 23:35:33.0052 0x0f9c [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 23:35:33.0052 0x0f9c HpCISSs - ok 23:35:33.0099 0x0f9c [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys 23:35:33.0099 0x0f9c HpqKbFiltr - ok 23:35:33.0146 0x0f9c [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe 23:35:33.0162 0x0f9c hpqwmiex - ok 23:35:33.0208 0x0f9c [ 46D67209550973257601A533E2AC5785, 3C0D97781947BA8532344AA5D9F3B684761B5B3263A0A294F4593E76EE41DB0C ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS 23:35:33.0224 0x0f9c HSFHWAZL - ok 23:35:33.0302 0x0f9c [ 1882827F41DEE51C70E24C567C35BFB5, C3508BDB045F0CB2205733D9F0CF7A2BEE03C4E4A8690B7D305EBEE887E588C6 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys 23:35:33.0333 0x0f9c HSF_DPV - ok 23:35:33.0396 0x0f9c [ A44DDF3BA83E4664BF4DE9220097578C, 1EF22D06F6954F8E46241E8D7F231DC4BC2F78D898A9515D95BDEB4A0D372194 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys 23:35:33.0396 0x0f9c HSXHWAZL - ok 23:35:33.0458 0x0f9c [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys 23:35:33.0474 0x0f9c HTTP - ok 23:35:33.0520 0x0f9c [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys 23:35:33.0520 0x0f9c i2omp - ok 23:35:33.0552 0x0f9c [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 23:35:33.0552 0x0f9c i8042prt - ok 23:35:33.0723 0x0f9c [ 9378D57E2B96C0A185D844770AD49948, AED244DDF125C867091D0A926B275EC1C60C89844C69595B1D1FC586F60F118A ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys 23:35:33.0801 0x0f9c ialm - ok 23:35:33.0910 0x0f9c [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 23:35:33.0910 0x0f9c iaStorV - ok 23:35:33.0988 0x0f9c [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 23:35:33.0988 0x0f9c IDriverT - ok 23:35:34.0082 0x0f9c [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 23:35:34.0144 0x0f9c idsvc - ok 23:35:34.0300 0x0f9c [ 9378D57E2B96C0A185D844770AD49948, AED244DDF125C867091D0A926B275EC1C60C89844C69595B1D1FC586F60F118A ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys 23:35:34.0378 0x0f9c igfx - ok 23:35:34.0472 0x0f9c [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys 23:35:34.0472 0x0f9c iirsp - ok 23:35:34.0488 0x0770 Object send P2P result: true 23:35:34.0534 0x0f9c [ 9908D8A397B76CD8D31D0D383C5773C9, FFA6996BE9F11A81CB63C849C2400EB44A07706D1EEB7A3502D4110DAC3684A2 ] IKEEXT C:\Windows\System32\ikeext.dll 23:35:34.0566 0x0f9c IKEEXT - ok 23:35:34.0612 0x0f9c [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys 23:35:34.0612 0x0f9c intelide - ok 23:35:34.0644 0x0f9c [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 23:35:34.0659 0x0f9c intelppm - ok 23:35:34.0690 0x0f9c [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 23:35:34.0706 0x0f9c IPBusEnum - ok 23:35:34.0737 0x0f9c [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 23:35:34.0753 0x0f9c IpFilterDriver - ok 23:35:34.0768 0x0f9c IpInIp - ok 23:35:34.0800 0x0f9c [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 23:35:34.0815 0x0f9c IPMIDRV - ok 23:35:34.0878 0x0f9c [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 23:35:34.0878 0x0f9c IPNAT - ok 23:35:34.0956 0x0f9c [ FE56897B27ED266F9C4E7D90A0B5DA47, 6B39D25FAFBA886ACF3ABC0A2946E053914B80C3F4769AD36279126C5D4970B6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 23:35:34.0971 0x0f9c iPod Service - ok 23:35:35.0018 0x0f9c [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys 23:35:35.0018 0x0f9c IRENUM - ok 23:35:35.0049 0x0f9c [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys 23:35:35.0049 0x0f9c isapnp - ok 23:35:35.0096 0x0f9c [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 23:35:35.0096 0x0f9c iScsiPrt - ok 23:35:35.0127 0x0f9c [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 23:35:35.0127 0x0f9c iteatapi - ok 23:35:35.0158 0x0f9c [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys 23:35:35.0174 0x0f9c iteraid - ok 23:35:35.0221 0x0f9c [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 23:35:35.0236 0x0f9c kbdclass - ok 23:35:35.0268 0x0f9c [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 23:35:35.0268 0x0f9c kbdhid - ok 23:35:35.0314 0x0f9c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe 23:35:35.0314 0x0f9c KeyIso - ok 23:35:35.0361 0x0f9c [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 23:35:35.0377 0x0f9c KSecDD - ok 23:35:35.0439 0x0f9c [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll 23:35:35.0470 0x0f9c KtmRm - ok 23:35:35.0517 0x0f9c [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll 23:35:35.0517 0x0f9c LanmanServer - ok 23:35:35.0564 0x0f9c [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 23:35:35.0580 0x0f9c LanmanWorkstation - ok 23:35:35.0642 0x0f9c [ 6C4A3804510AD8E0F0C07B5BE3D44DDB, 5DB7EC4716B2F05C6C3930EE5AB500ABF602D7E26D26117723A293022AB2BEDE ] Lavasoft Kernexplorer C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys 23:35:35.0642 0x0f9c Lavasoft Kernexplorer - ok 23:35:35.0689 0x0f9c [ B7C19EC8B0DD7EFA58AD41FFEB8B8CDA, F309A747575F1AD38813C788A2AAF41126660BBCD2B369493FC598F3435B50E7 ] Lbd C:\Windows\system32\DRIVERS\Lbd.sys 23:35:35.0689 0x0f9c Lbd - ok 23:35:35.0736 0x0f9c [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 23:35:35.0736 0x0f9c lltdio - ok 23:35:35.0782 0x0f9c [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll 23:35:35.0814 0x0f9c lltdsvc - ok 23:35:35.0845 0x0f9c [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll 23:35:35.0860 0x0f9c lmhosts - ok 23:35:35.0892 0x0f9c [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 23:35:35.0907 0x0f9c LSI_FC - ok 23:35:35.0938 0x0f9c [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 23:35:35.0938 0x0f9c LSI_SAS - ok 23:35:35.0985 0x0f9c [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 23:35:35.0985 0x0f9c LSI_SCSI - ok 23:35:36.0032 0x0f9c [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys 23:35:36.0032 0x0f9c luafv - ok 23:35:36.0079 0x0f9c [ D2DED3C333A5D9CB3F4C244B0F0DD877, 5C1D6C2520C24B12AC99B4B1AB8A0C41052B78CEC2E8B52807057B09A03AD81F ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 23:35:36.0079 0x0f9c MBAMProtector - ok 23:35:36.0250 0x0f9c [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe 23:35:36.0360 0x0f9c MBAMScheduler - ok 23:35:36.0453 0x0f9c [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe 23:35:36.0484 0x0f9c MBAMService - ok 23:35:36.0562 0x0f9c [ 8E2E9CCD873ABF180F48BCAEEEBE347D, 35DBBB8E63B480151EA5701D9DB7C90642FA2391D044DB400D3644F3E21BB0C1 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys 23:35:36.0562 0x0f9c MBAMSwissArmy - ok 23:35:36.0609 0x0f9c [ F341782DC4C0DC1261DFCC0CBA40962C, FD32475602BEB557020972FEF3EA4AEED7225566C05344E5B2CEE9C64733DCCB ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys 23:35:36.0625 0x0f9c MBAMWebAccessControl - ok 23:35:36.0656 0x0f9c [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys 23:35:36.0656 0x0f9c mdmxsdk - ok 23:35:36.0703 0x0f9c [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys 23:35:36.0703 0x0f9c megasas - ok 23:35:36.0765 0x0f9c [ B77E959E1C50D3E3A9D9EF423BE62E09, 03BC07178E8251C6BD5EE04074555847CC712F28467F77D87AB44FA0BD5F501F ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys 23:35:36.0765 0x0f9c mfeapfk - ok 23:35:36.0796 0x0f9c [ E7ECF7872BF8F2897AE5A696D908C2F7, ED0B11F0A261BF30039BE506EFC472083FEA6EBEC334036545AB359DFA8E6A4B ] mfehidk C:\Windows\system32\drivers\mfehidk.sys 23:35:36.0812 0x0f9c mfehidk - ok 23:35:36.0890 0x0f9c Microsoft SharePoint Workspace Audit Service - ok 23:35:36.0921 0x0f9c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll 23:35:36.0937 0x0f9c MMCSS - ok 23:35:36.0968 0x0f9c [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys 23:35:36.0984 0x0f9c Modem - ok 23:35:37.0015 0x0f9c [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 23:35:37.0015 0x0f9c monitor - ok 23:35:37.0046 0x0f9c [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 23:35:37.0046 0x0f9c mouclass - ok 23:35:37.0062 0x0f9c [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 23:35:37.0077 0x0f9c mouhid - ok 23:35:37.0124 0x0f9c [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 23:35:37.0124 0x0f9c MountMgr - ok 23:35:37.0171 0x0f9c [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys 23:35:37.0171 0x0f9c mpio - ok 23:35:37.0218 0x0f9c [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 23:35:37.0233 0x0f9c mpsdrv - ok 23:35:37.0264 0x0f9c [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 23:35:37.0264 0x0f9c Mraid35x - ok 23:35:37.0327 0x0f9c [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 23:35:37.0327 0x0f9c MRxDAV - ok 23:35:37.0374 0x0f9c [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 23:35:37.0374 0x0f9c mrxsmb - ok 23:35:37.0420 0x0f9c [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 23:35:37.0436 0x0f9c mrxsmb10 - ok 23:35:37.0452 0x0f9c [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 23:35:37.0452 0x0f9c mrxsmb20 - ok 23:35:37.0498 0x0f9c [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci C:\Windows\system32\drivers\msahci.sys 23:35:37.0498 0x0f9c msahci - ok 23:35:37.0545 0x0f9c [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys 23:35:37.0561 0x0f9c msdsm - ok 23:35:37.0608 0x0f9c [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe 23:35:37.0623 0x0f9c MSDTC - ok 23:35:37.0654 0x0f9c [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys 23:35:37.0654 0x0f9c Msfs - ok 23:35:37.0686 0x0f9c [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 23:35:37.0686 0x0f9c msisadrv - ok 23:35:37.0732 0x0f9c [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 23:35:37.0732 0x0f9c MSiSCSI - ok 23:35:37.0748 0x0f9c msiserver - ok 23:35:37.0795 0x0f9c [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 23:35:37.0795 0x0f9c MSKSSRV - ok 23:35:37.0810 0x0f9c [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 23:35:37.0810 0x0f9c MSPCLOCK - ok 23:35:37.0842 0x0f9c [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 23:35:37.0842 0x0f9c MSPQM - ok 23:35:37.0888 0x0f9c [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 23:35:37.0904 0x0f9c MsRPC - ok 23:35:37.0951 0x0f9c [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 23:35:37.0951 0x0f9c mssmbios - ok 23:35:37.0982 0x0f9c [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 23:35:37.0982 0x0f9c MSTEE - ok 23:35:38.0013 0x0f9c [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys 23:35:38.0013 0x0f9c Mup - ok 23:35:38.0060 0x0f9c [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll 23:35:38.0076 0x0f9c napagent - ok 23:35:38.0138 0x0f9c [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 23:35:38.0138 0x0f9c NativeWifiP - ok 23:35:38.0200 0x0f9c [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys 23:35:38.0216 0x0f9c NDIS - ok 23:35:38.0263 0x0f9c [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 23:35:38.0263 0x0f9c NdisTapi - ok 23:35:38.0294 0x0f9c [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 23:35:38.0294 0x0f9c Ndisuio - ok 23:35:38.0341 0x0f9c [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 23:35:38.0341 0x0f9c NdisWan - ok 23:35:38.0372 0x0f9c [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 23:35:38.0372 0x0f9c NDProxy - ok 23:35:38.0403 0x0f9c [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 23:35:38.0403 0x0f9c NetBIOS - ok 23:35:38.0450 0x0f9c [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys 23:35:38.0466 0x0f9c netbt - ok 23:35:38.0481 0x0f9c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe 23:35:38.0481 0x0f9c Netlogon - ok 23:35:38.0528 0x0f9c [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll 23:35:38.0559 0x0f9c Netman - ok 23:35:38.0606 0x0f9c [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll 23:35:38.0622 0x0f9c netprofm - ok 23:35:38.0653 0x0f9c [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 23:35:38.0668 0x0f9c NetTcpPortSharing - ok 23:35:38.0700 0x0f9c [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 23:35:38.0715 0x0f9c nfrd960 - ok 23:35:38.0715 0x0f9c nitbri - ok 23:35:38.0778 0x0f9c [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll 23:35:38.0793 0x0f9c NlaSvc - ok 23:35:38.0824 0x0f9c [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys 23:35:38.0840 0x0f9c Npfs - ok 23:35:38.0871 0x0f9c [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll 23:35:38.0871 0x0f9c nsi - ok 23:35:38.0902 0x0f9c [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 23:35:38.0902 0x0f9c nsiproxy - ok 23:35:38.0996 0x0f9c [ 6A4A98CEE84CF9E99564510DDA4BAA47, 18C3D8C0F12761D3B7FC43D9413CF4C4CEBF8CA9BEC521381F40D241B35EA779 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 23:35:39.0074 0x0f9c Ntfs - ok 23:35:39.0121 0x0f9c [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys 23:35:39.0121 0x0f9c ntrigdigi - ok 23:35:39.0168 0x0f9c [ CF7E041663119E09D2E118521ADA9300, 0BDDEDA787CCBE34D515945717AF972143A3684F6D37F87B639D6A5371F381CC ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys 23:35:39.0168 0x0f9c NuidFltr - ok 23:35:39.0214 0x0f9c [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys 23:35:39.0214 0x0f9c Null - ok 23:35:39.0246 0x0f9c [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys 23:35:39.0261 0x0f9c nvraid - ok 23:35:39.0277 0x0f9c [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys 23:35:39.0292 0x0f9c nvstor - ok 23:35:39.0324 0x0f9c [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 23:35:39.0339 0x0f9c nv_agp - ok 23:35:39.0355 0x0f9c NwlnkFlt - ok 23:35:39.0370 0x0f9c NwlnkFwd - ok 23:35:39.0402 0x0f9c [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 23:35:39.0402 0x0f9c ohci1394 - ok 23:35:39.0448 0x0f9c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 23:35:39.0464 0x0f9c ose - ok 23:35:39.0768 0x0f9c [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 23:35:40.0098 0x0f9c osppsvc - ok 23:35:40.0238 0x0f9c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll 23:35:40.0278 0x0f9c p2pimsvc - ok 23:35:40.0338 0x0f9c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll 23:35:40.0358 0x0f9c p2psvc - ok 23:35:40.0418 0x0f9c [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys 23:35:40.0418 0x0f9c Parport - ok 23:35:40.0468 0x0f9c [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys 23:35:40.0468 0x0f9c partmgr - ok 23:35:40.0498 0x0f9c [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys 23:35:40.0498 0x0f9c Parvdm - ok 23:35:40.0588 0x0f9c [ 2F6E885C432927A186C2E352C8A1CBF4, BA42A2BA0069EAD47D91B752CDC3945BD0C7E4E42B8D19C83593DDB76A97EE2D ] pbfilter C:\Program Files\PeerBlock\pbfilter.sys 23:35:40.0588 0x0f9c pbfilter - ok 23:35:40.0628 0x0f9c [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll 23:35:40.0628 0x0f9c PcaSvc - ok 23:35:40.0678 0x0f9c [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys 23:35:40.0688 0x0f9c pci - ok 23:35:40.0728 0x0f9c [ 3B1901E401473E03EB8C874271E50C26, 3C7931F419E29FDD0155D8D05D97289430A2852FCB3DBAD1B338FE2241458E72 ] pciide C:\Windows\system32\drivers\pciide.sys 23:35:40.0728 0x0f9c pciide - ok 23:35:40.0778 0x0f9c [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 23:35:40.0788 0x0f9c pcmcia - ok 23:35:40.0868 0x0f9c [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 23:35:40.0908 0x0f9c PEAUTH - ok 23:35:41.0058 0x0f9c [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll 23:35:41.0158 0x0f9c pla - ok 23:35:41.0198 0x0f9c [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll 23:35:41.0218 0x0f9c PlugPlay - ok 23:35:41.0278 0x0f9c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 23:35:41.0308 0x0f9c PNRPAutoReg - ok 23:35:41.0378 0x0f9c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll 23:35:41.0408 0x0f9c PNRPsvc - ok 23:35:41.0468 0x0f9c [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 23:35:41.0498 0x0f9c PolicyAgent - ok 23:35:41.0558 0x0f9c [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 23:35:41.0558 0x0f9c PptpMiniport - ok 23:35:41.0598 0x0f9c [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys 23:35:41.0598 0x0f9c Processor - ok 23:35:41.0638 0x0f9c [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll 23:35:41.0648 0x0f9c ProfSvc - ok 23:35:41.0678 0x0f9c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe 23:35:41.0678 0x0f9c ProtectedStorage - ok 23:35:41.0708 0x0f9c [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys 23:35:41.0708 0x0f9c PSched - ok 23:35:41.0800 0x0f9c [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys 23:35:41.0832 0x0f9c ql2300 - ok 23:35:41.0878 0x0f9c [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 23:35:41.0878 0x0f9c ql40xx - ok 23:35:41.0925 0x0f9c [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll 23:35:41.0941 0x0f9c QWAVE - ok 23:35:41.0972 0x0f9c [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 23:35:41.0972 0x0f9c QWAVEdrv - ok 23:35:42.0019 0x0f9c [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 23:35:42.0019 0x0f9c RasAcd - ok 23:35:42.0066 0x0f9c [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll 23:35:42.0066 0x0f9c RasAuto - ok 23:35:42.0112 0x0f9c [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 23:35:42.0112 0x0f9c Rasl2tp - ok 23:35:42.0159 0x0f9c [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll 23:35:42.0175 0x0f9c RasMan - ok 23:35:42.0206 0x0f9c [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 23:35:42.0206 0x0f9c RasPppoe - ok 23:35:42.0237 0x0f9c [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 23:35:42.0237 0x0f9c RasSstp - ok 23:35:42.0284 0x0f9c [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 23:35:42.0300 0x0f9c rdbss - ok 23:35:42.0331 0x0f9c [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 23:35:42.0331 0x0f9c RDPCDD - ok 23:35:42.0409 0x0f9c [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 23:35:42.0409 0x0f9c rdpdr - ok 23:35:42.0440 0x0f9c [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 23:35:42.0440 0x0f9c RDPENCDD - ok 23:35:42.0487 0x0f9c [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 23:35:42.0502 0x0f9c RDPWD - ok 23:35:42.0549 0x0f9c [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll 23:35:42.0549 0x0f9c RemoteAccess - ok 23:35:42.0596 0x0f9c [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll 23:35:42.0612 0x0f9c RemoteRegistry - ok 23:35:42.0643 0x0f9c [ 0F6756EF8BDA6DFA7BE50465C83132BB, 1AE76B66F04A2AE99CD1A1368D4998C8081E89578A37D7D535D8CBCAA6136AE0 ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys 23:35:42.0658 0x0f9c RimUsb - ok 23:35:42.0690 0x0f9c [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe 23:35:42.0690 0x0f9c RpcLocator - ok 23:35:42.0752 0x0f9c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll 23:35:42.0768 0x0f9c RpcSs - ok 23:35:42.0813 0x0f9c [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 23:35:42.0813 0x0f9c rspndr - ok 23:35:42.0843 0x0f9c [ 166911EADA13CD34DD8F8C667707BE94, D586FFDDDA7EA152B868EC4D556022AC48395569FEB1ECBB9C436D425EC7A5B0 ] RTL8023xp C:\Windows\system32\DRIVERS\Rtnicxp.sys 23:35:42.0853 0x0f9c RTL8023xp - ok 23:35:42.0873 0x0f9c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe 23:35:42.0873 0x0f9c SamSs - ok 23:35:42.0923 0x0f9c [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 23:35:42.0933 0x0f9c sbp2port - ok 23:35:42.0973 0x0f9c [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll 23:35:42.0983 0x0f9c SCardSvr - ok 23:35:43.0053 0x0f9c [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll 23:35:43.0093 0x0f9c Schedule - ok 23:35:43.0113 0x0f9c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll 23:35:43.0113 0x0f9c SCPolicySvc - ok 23:35:43.0153 0x0f9c [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll 23:35:43.0163 0x0f9c SDRSVC - ok 23:35:43.0243 0x0f9c [ 16A252022535B680046F6E34E136D378, 31BCDAA742FDEC9E062C61E78D9E72A7ACBF77D5FEEE76933D0D378787F88E53 ] SeaPort C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 23:35:43.0253 0x0f9c SeaPort - ok 23:35:43.0293 0x0f9c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys 23:35:43.0293 0x0f9c secdrv - ok 23:35:43.0333 0x0f9c [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll 23:35:43.0333 0x0f9c seclogon - ok 23:35:43.0373 0x0f9c [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll 23:35:43.0373 0x0f9c SENS - ok 23:35:43.0403 0x0f9c [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys 23:35:43.0403 0x0f9c Serenum - ok 23:35:43.0433 0x0f9c [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys 23:35:43.0443 0x0f9c Serial - ok 23:35:43.0483 0x0f9c [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys 23:35:43.0483 0x0f9c sermouse - ok 23:35:43.0543 0x0f9c [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll 23:35:43.0553 0x0f9c SessionEnv - ok 23:35:43.0593 0x0f9c [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 23:35:43.0593 0x0f9c sffdisk - ok 23:35:43.0623 0x0f9c [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 23:35:43.0623 0x0f9c sffp_mmc - ok 23:35:43.0643 0x0f9c [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 23:35:43.0643 0x0f9c sffp_sd - ok 23:35:43.0673 0x0f9c [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 23:35:43.0673 0x0f9c sfloppy - ok 23:35:43.0733 0x0f9c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 23:35:43.0753 0x0f9c ShellHWDetection - ok 23:35:43.0783 0x0f9c [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp C:\Windows\system32\drivers\sisagp.sys 23:35:43.0783 0x0f9c sisagp - ok 23:35:43.0823 0x0f9c [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 23:35:43.0823 0x0f9c SiSRaid2 - ok 23:35:43.0863 0x0f9c [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 23:35:43.0863 0x0f9c SiSRaid4 - ok 23:35:44.0103 0x0f9c [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe 23:35:44.0223 0x0f9c slsvc - ok 23:35:44.0323 0x0f9c [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll 23:35:44.0333 0x0f9c SLUINotify - ok 23:35:44.0383 0x0f9c [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys 23:35:44.0383 0x0f9c Smb - ok 23:35:44.0433 0x0f9c [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 23:35:44.0433 0x0f9c SNMPTRAP - ok 23:35:44.0503 0x0f9c [ 3BB48F7E33C2B76184DDF233000C09CD, D1AAE5B0425047CA0C2D376D3E59324D35A90DF9074CD442DFD0ED6E434D3C84 ] Sony SCSI Helper Service C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe 23:35:44.0503 0x0f9c Sony SCSI Helper Service - ok 23:35:44.0543 0x0f9c [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys 23:35:44.0543 0x0f9c spldr - ok 23:35:44.0583 0x0f9c [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe 23:35:44.0583 0x0f9c Spooler - ok 23:35:44.0653 0x0f9c [ 68103A2B441BBF3908EBB587F0704D6C, 0EE921D3D3D88AD0380923429E82B58078F53D7A9D53458AA33FEDF376EF1212 ] sptd C:\Windows\System32\Drivers\sptd.sys 23:35:44.0663 0x0f9c sptd - ok 23:35:44.0713 0x0f9c [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys 23:35:44.0723 0x0f9c srv - ok 23:35:44.0773 0x0f9c [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 23:35:44.0783 0x0f9c srv2 - ok 23:35:44.0803 0x0f9c [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 23:35:44.0813 0x0f9c srvnet - ok 23:35:44.0860 0x0f9c [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 23:35:44.0860 0x0f9c SSDPSRV - ok 23:35:44.0907 0x0f9c [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll 23:35:44.0922 0x0f9c SstpSvc - ok 23:35:44.0985 0x0f9c [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll 23:35:45.0015 0x0f9c stisvc - ok 23:35:45.0045 0x0f9c [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys 23:35:45.0045 0x0f9c swenum - ok 23:35:45.0085 0x0f9c [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll 23:35:45.0105 0x0f9c swprv - ok 23:35:45.0155 0x0f9c [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 23:35:45.0155 0x0f9c Symc8xx - ok 23:35:45.0165 0x0f9c SymIMMP - ok 23:35:45.0205 0x0f9c [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 23:35:45.0205 0x0f9c Sym_hi - ok 23:35:45.0235 0x0f9c [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 23:35:45.0235 0x0f9c Sym_u3 - ok 23:35:45.0295 0x0f9c [ 3D6316279C3540AA268BF025F4621EF3, 042C268DD1A98BC91721DAB31F20AEC06EF086EF8AED2BB05CF138106ED0C7DB ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 23:35:45.0295 0x0f9c SynTP - ok 23:35:45.0355 0x0f9c [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll 23:35:45.0405 0x0f9c SysMain - ok 23:35:45.0445 0x0f9c [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll 23:35:45.0445 0x0f9c TabletInputService - ok 23:35:45.0495 0x0f9c [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll 23:35:45.0515 0x0f9c TapiSrv - ok 23:35:45.0555 0x0f9c [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll 23:35:45.0555 0x0f9c TBS - ok 23:35:45.0645 0x0f9c [ 74E2D020C47BB2B2FCCBA29A518A7EB4, F08063AFBEA6FE01F81C27957E6C27F549AF02A9E555F8750D54A37104153BED ] Tcpip C:\Windows\system32\drivers\tcpip.sys 23:35:45.0675 0x0f9c Tcpip - ok 23:35:45.0765 0x0f9c [ 74E2D020C47BB2B2FCCBA29A518A7EB4, F08063AFBEA6FE01F81C27957E6C27F549AF02A9E555F8750D54A37104153BED ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 23:35:45.0795 0x0f9c Tcpip6 - ok 23:35:45.0835 0x0f9c [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 23:35:45.0835 0x0f9c tcpipreg - ok 23:35:45.0885 0x0f9c [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 23:35:45.0885 0x0f9c TDPIPE - ok 23:35:45.0925 0x0f9c [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 23:35:45.0925 0x0f9c TDTCP - ok 23:35:45.0955 0x0f9c [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 23:35:45.0965 0x0f9c tdx - ok 23:35:46.0005 0x0f9c [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 23:35:46.0015 0x0f9c TermDD - ok 23:35:46.0065 0x0f9c [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll 23:35:46.0095 0x0f9c TermService - ok 23:35:46.0135 0x0f9c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll 23:35:46.0145 0x0f9c Themes - ok 23:35:46.0175 0x0f9c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll 23:35:46.0185 0x0f9c THREADORDER - ok 23:35:46.0215 0x0f9c [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll 23:35:46.0225 0x0f9c TrkWks - ok 23:35:46.0275 0x0f9c [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 23:35:46.0275 0x0f9c TrustedInstaller - ok 23:35:46.0325 0x0f9c [ DCF0F056A2E4F52287264F5AB29CF206, D9F770BD65AE4320A8C130DEA1D093AA4E37FCA573BBE6A59D6D045452EA711D ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 23:35:46.0325 0x0f9c tssecsrv - ok 23:35:46.0475 0x0f9c [ 5DC6DDEE665E075A5937656CFDA53229, E551BA7541A71F6C5ED7B6C03F186825B7A77F84D415A99FB0B434D5F2924346 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe 23:35:46.0535 0x0f9c TuneUp.UtilitiesSvc - ok 23:35:46.0575 0x0f9c [ F2107C9D85EC0DF116939CCCE06AE697, 4608E3D0CA0B252130B4DF2505DB4D89635C327A343B470FCB81B8B02CD9FA44 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys 23:35:46.0575 0x0f9c TuneUpUtilitiesDrv - ok 23:35:46.0615 0x0f9c [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 23:35:46.0615 0x0f9c tunmp - ok 23:35:46.0635 0x0f9c [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 23:35:46.0635 0x0f9c tunnel - ok 23:35:46.0695 0x0f9c [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys 23:35:46.0695 0x0f9c uagp35 - ok 23:35:46.0755 0x0f9c [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys 23:35:46.0765 0x0f9c udfs - ok 23:35:46.0815 0x0f9c [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 23:35:46.0815 0x0f9c UI0Detect - ok 23:35:46.0865 0x0f9c [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 23:35:46.0865 0x0f9c uliagpkx - ok 23:35:46.0915 0x0f9c [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys 23:35:46.0925 0x0f9c uliahci - ok 23:35:46.0955 0x0f9c [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys 23:35:46.0965 0x0f9c UlSata - ok 23:35:47.0005 0x0f9c [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 23:35:47.0005 0x0f9c ulsata2 - ok 23:35:47.0055 0x0f9c [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys 23:35:47.0055 0x0f9c umbus - ok 23:35:47.0115 0x0f9c [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll 23:35:47.0145 0x0f9c upnphost - ok 23:35:47.0205 0x0f9c [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys 23:35:47.0205 0x0f9c USBAAPL - ok 23:35:47.0245 0x0f9c [ CAF811AE4C147FFCD5B51750C7F09142, BD670CF88D8F932AD1C6BA91FB68A7204BC473657C6A057C92AFB84D164D393C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 23:35:47.0245 0x0f9c usbccgp - ok 23:35:47.0285 0x0f9c [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys 23:35:47.0285 0x0f9c usbcir - ok 23:35:47.0335 0x0f9c [ 79E96C23A97CE7B8F14D310DA2DB0C9B, EB441D3B93965CD927E0C181031AD1082F59F9885BF35CABFDCA08C6C76B0DAF ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 23:35:47.0335 0x0f9c usbehci - ok 23:35:47.0375 0x0f9c [ 4673BBCB006AF60E7ABDDBE7A130BA42, 0B7DED0D887A3530AA5497FDBCB69389486FB9E2B6FAE3163E33713256D575BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 23:35:47.0385 0x0f9c usbhub - ok 23:35:47.0415 0x0f9c [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys 23:35:47.0425 0x0f9c usbohci - ok 23:35:47.0465 0x0f9c [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 23:35:47.0465 0x0f9c usbprint - ok 23:35:47.0505 0x0f9c [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 23:35:47.0505 0x0f9c USBSTOR - ok 23:35:47.0555 0x0f9c [ 814D653EFC4D48BE3B04A307ECEFF56F, D73D62F51AEFE2F8F2B938B20107C246F2AC2F62ED49112DBD092A5D2E4024B3 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 23:35:47.0555 0x0f9c usbuhci - ok 23:35:47.0605 0x0f9c [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll 23:35:47.0615 0x0f9c UxSms - ok 23:35:47.0665 0x0f9c [ 17B8E52E002A574EFD60FFF864A525B1, 3DD4C40D65FE7020C3C9531F416263E94AB03E9815130E2ACF4272076C607454 ] UxTuneUp C:\Windows\System32\uxtuneup.dll 23:35:47.0675 0x0f9c UxTuneUp - ok 23:35:47.0725 0x0f9c [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe 23:35:47.0735 0x0f9c vds - ok 23:35:47.0775 0x0f9c [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 23:35:47.0785 0x0f9c vga - ok 23:35:47.0825 0x0f9c [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys 23:35:47.0825 0x0f9c VgaSave - ok 23:35:47.0855 0x0f9c [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp C:\Windows\system32\drivers\viaagp.sys 23:35:47.0865 0x0f9c viaagp - ok 23:35:47.0912 0x0f9c [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys 23:35:47.0912 0x0f9c ViaC7 - ok 23:35:47.0943 0x0f9c [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide C:\Windows\system32\drivers\viaide.sys 23:35:47.0943 0x0f9c viaide - ok 23:35:47.0990 0x0f9c [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys 23:35:47.0990 0x0f9c volmgr - ok 23:35:48.0052 0x0f9c [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 23:35:48.0052 0x0f9c volmgrx - ok 23:35:48.0099 0x0f9c [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys 23:35:48.0099 0x0f9c volsnap - ok 23:35:48.0161 0x0f9c [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 23:35:48.0161 0x0f9c vsmraid - ok 23:35:48.0270 0x0f9c [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe 23:35:48.0302 0x0f9c VSS - ok 23:35:48.0364 0x0f9c [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll 23:35:48.0380 0x0f9c W32Time - ok 23:35:48.0425 0x0f9c [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 23:35:48.0425 0x0f9c WacomPen - ok 23:35:48.0465 0x0f9c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 23:35:48.0465 0x0f9c Wanarp - ok 23:35:48.0485 0x0f9c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 23:35:48.0485 0x0f9c Wanarpv6 - ok 23:35:48.0545 0x0f9c [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll 23:35:48.0575 0x0f9c wcncsvc - ok 23:35:48.0605 0x0f9c [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 23:35:48.0605 0x0f9c WcsPlugInService - ok 23:35:48.0645 0x0f9c [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys 23:35:48.0655 0x0f9c Wd - ok 23:35:48.0725 0x0f9c [ A840213F1ACDCC175B4D1D5AAEAC0D7A, B20F7CAEEA790290072BC170EBEEADB4C19E1C40DB0B3FE0D4A640D0D82300D6 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 23:35:48.0745 0x0f9c Wdf01000 - ok 23:35:48.0785 0x0f9c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll 23:35:48.0795 0x0f9c WdiServiceHost - ok 23:35:48.0825 0x0f9c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll 23:35:48.0825 0x0f9c WdiSystemHost - ok 23:35:48.0865 0x0f9c [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll 23:35:48.0875 0x0f9c WebClient - ok 23:35:48.0925 0x0f9c [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll 23:35:48.0935 0x0f9c Wecsvc - ok 23:35:48.0975 0x0f9c [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll 23:35:48.0985 0x0f9c wercplsupport - ok 23:35:49.0025 0x0f9c [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll 23:35:49.0035 0x0f9c WerSvc - ok 23:35:49.0095 0x0f9c [ E096FFB754F1E45AE1BDDAC1275AE2C5, DB88308520805EB9EE1FC70C057C75A1928DBAB00F8DDE7908FE79B964259CB3 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys 23:35:49.0115 0x0f9c winachsf - ok 23:35:49.0145 0x0f9c WinHttpAutoProxySvc - ok 23:35:49.0225 0x0f9c [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 23:35:49.0235 0x0f9c Winmgmt - ok 23:35:49.0345 0x0f9c [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll 23:35:49.0425 0x0f9c WinRM - ok 23:35:49.0525 0x0f9c [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll 23:35:49.0555 0x0f9c Wlansvc - ok 23:35:49.0725 0x0f9c [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 23:35:49.0835 0x0f9c wlidsvc - ok 23:35:49.0875 0x0f9c [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 23:35:49.0885 0x0f9c WmiAcpi - ok 23:35:49.0935 0x0f9c [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 23:35:49.0955 0x0f9c wmiApSrv - ok 23:35:50.0065 0x0f9c [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 23:35:50.0115 0x0f9c WMPNetworkSvc - ok 23:35:50.0175 0x0f9c [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll 23:35:50.0175 0x0f9c WPCSvc - ok 23:35:50.0215 0x0f9c [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 23:35:50.0225 0x0f9c WPDBusEnum - ok 23:35:50.0275 0x0f9c [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys 23:35:50.0275 0x0f9c WpdUsb - ok 23:35:50.0385 0x0f9c [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 23:35:50.0435 0x0f9c WPFFontCache_v0400 - ok 23:35:50.0492 0x0f9c [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 23:35:50.0492 0x0f9c ws2ifsl - ok 23:35:50.0508 0x0f9c WSearch - ok 23:35:50.0570 0x0f9c [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 23:35:50.0570 0x0f9c WudfPf - ok 23:35:50.0632 0x0f9c [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 23:35:50.0632 0x0f9c WUDFRd - ok 23:35:50.0664 0x0f9c [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll 23:35:50.0679 0x0f9c wudfsvc - ok 23:35:50.0726 0x0f9c [ E8B87696DCFE32CB5C8D3D4F9DCB1D95, C4350EF58DBD60B1E2AF86EECAED37B16F6B78A006B545A849DBC9E5AC17AB89 ] WUSB54GSCv2.NTx86 C:\Windows\system32\DRIVERS\WUSB54GSCV2_X86.sys 23:35:50.0726 0x0f9c WUSB54GSCv2.NTx86 - ok 23:35:50.0757 0x0f9c [ 19E7C173B6242AD7521E537AE54768BF, AC2D2B3BD94B8EAADC54E18110F5291FFDF0F365880C2CAF80D497BE5609AC7F ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys 23:35:50.0757 0x0f9c XAudio - ok 23:35:50.0820 0x0f9c [ CDA0BC78672B50C43649FF34E1FD0FF8, 7FDAA363E17E0EC391C014166051C952722CEA01E0552E574EF7C146BFCC856F ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe 23:35:50.0835 0x0f9c XAudioService - ok 23:35:50.0882 0x0f9c ================ Scan global =============================== 23:35:50.0913 0x0f9c [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll 23:35:50.0976 0x0f9c [ D2293B069E4B63DC17B2F08D45E71124, 615305E8B854CFAAC70378B29014517FEBDA6BB90BDC2E455B5127CD7B0AEAB3 ] C:\Windows\system32\winsrv.dll 23:35:51.0038 0x0f9c [ D2293B069E4B63DC17B2F08D45E71124, 615305E8B854CFAAC70378B29014517FEBDA6BB90BDC2E455B5127CD7B0AEAB3 ] C:\Windows\system32\winsrv.dll 23:35:51.0100 0x0f9c [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe 23:35:51.0116 0x0f9c [ Global ] - ok 23:35:51.0132 0x0f9c ================ Scan MBR ================================== 23:35:51.0132 0x0f9c [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 23:35:52.0048 0x0f9c \Device\Harddisk0\DR0 - ok 23:35:52.0048 0x0f9c ================ Scan VBR ================================== 23:35:52.0058 0x0f9c [ B5BA84D8E3AEA0E7A43E49F9AA8716BB ] \Device\Harddisk0\DR0\Partition1 23:35:52.0118 0x0f9c \Device\Harddisk0\DR0\Partition1 - ok 23:35:52.0128 0x0f9c [ AC9460C0D7C0001FF140C392F0B71F39 ] \Device\Harddisk0\DR0\Partition2 23:35:52.0128 0x0f9c \Device\Harddisk0\DR0\Partition2 - ok 23:35:52.0138 0x0f9c ================ Scan generic autorun ====================== 23:35:52.0208 0x0f9c [ 7F7B42B1BA42242116F5B277A063FE2E, BFB7657EE55F97B0ADB16AD8FB8545910301C63832801927B4955148744E6556 ] C:\Windows\system32\igfxtray.exe 23:35:52.0208 0x0f9c IgfxTray - ok 23:35:52.0248 0x0f9c [ 5F529FBB095CBC9F14BB1E97A7A6B547, A69BD52B70AB2564417C9A5C78472EDF457EDBDF5B8BEC3367B765A482C65EC0 ] C:\Windows\system32\hkcmd.exe 23:35:52.0258 0x0f9c HotKeysCmds - ok 23:35:52.0288 0x0f9c [ D8A33AF26E4143F7A892009890BB6F64, 4570A1B45A264D141DC919C94E5D8DD0D0D224D418ADE23385BFD787F095BEBF ] C:\Windows\system32\igfxpers.exe 23:35:52.0308 0x0f9c Persistence - ok 23:35:52.0358 0x0f9c [ A3418E4D4A5EE636D44922DC2567FA18, 21F89584534A6A02284A6E1BD502A3530E372E6FCF1285BFD68DB074CCE655EA ] C:\Program Files\Synaptics\SynTP\SynTPStart.exe 23:35:52.0368 0x0f9c SynTPStart - ok 23:35:52.0468 0x0f9c [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 23:35:52.0548 0x0f9c Sidebar - ok 23:35:52.0558 0x0f9c WindowsWelcomeCenter - ok 23:35:52.0658 0x0f9c [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 23:35:52.0728 0x0f9c Sidebar - ok 23:35:52.0748 0x0f9c WindowsWelcomeCenter - ok 23:35:52.0808 0x0f9c [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 23:35:52.0808 0x0f9c swg - ok 23:35:53.0078 0x0f9c [ AFE3883FB37A5567C913E7DFCF2924A5, 3CA38EE302E0FF343DB87AE90DA868DCE5B7B490C2AA32164AF8DD4773482265 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe 23:35:53.0278 0x0f9c DAEMON Tools Lite - ok 23:35:53.0298 0x0f9c Waiting for KSN requests completion. In queue: 299 23:35:54.0298 0x0f9c Waiting for KSN requests completion. In queue: 299 23:35:55.0320 0x0f9c Waiting for KSN requests completion. In queue: 299 23:35:56.0412 0x0f9c AV detected via SS2: Lavasoft Ad-Watch Live! Anti-Virus, C:\Program Files\Lavasoft\Ad-Aware\AWSC.exe ( ), 0x71000 ( enabled : updated ) 23:35:56.0428 0x0f9c Win FW state via NFP2: enabled 23:35:59.0049 0x0f9c ============================================================ 23:35:59.0049 0x0f9c Scan finished 23:35:59.0049 0x0f9c ============================================================ 23:35:59.0064 0x0af8 Detected object count: 0 23:35:59.0064 0x0af8 Actual detected object count: 0 23:36:05.0008 0x0388 ============================================================ 23:36:05.0008 0x0388 Scan started 23:36:05.0008 0x0388 Mode: Manual; 23:36:05.0008 0x0388 ============================================================ 23:36:05.0008 0x0388 KSN ping started 23:36:11.0685 0x0388 KSN ping finished: true 23:36:12.0028 0x0388 ================ Scan system memory ======================== 23:36:12.0028 0x0388 System memory - ok 23:36:12.0028 0x0388 ================ Scan services ============================= 23:36:12.0231 0x0388 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys 23:36:12.0246 0x0388 ACPI - ok 23:36:12.0309 0x0388 [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 23:36:12.0324 0x0388 AdobeFlashPlayerUpdateSvc - ok 23:36:12.0324 0x0388 Object required for P2P: [ D51145F6B0CE987850F13A61DAD5E531 ] AdobeFlashPlayerUpdateSvc 23:36:15.0210 0x0388 Object send P2P result: true 23:36:15.0304 0x0388 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 23:36:15.0320 0x0388 adp94xx - ok 23:36:15.0351 0x0388 [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys 23:36:15.0366 0x0388 adpahci - ok 23:36:15.0413 0x0388 [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 23:36:15.0413 0x0388 adpu160m - ok 23:36:15.0444 0x0388 [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 23:36:15.0444 0x0388 adpu320 - ok 23:36:15.0491 0x0388 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 23:36:15.0491 0x0388 AeLookupSvc - ok 23:36:15.0538 0x0388 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys 23:36:15.0554 0x0388 AFD - ok 23:36:15.0585 0x0388 [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys 23:36:15.0585 0x0388 agp440 - ok 23:36:15.0616 0x0388 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys 23:36:15.0616 0x0388 aic78xx - ok 23:36:15.0663 0x0388 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe 23:36:15.0663 0x0388 ALG - ok 23:36:15.0694 0x0388 [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys 23:36:15.0694 0x0388 aliide - ok 23:36:15.0710 0x0388 [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys 23:36:15.0710 0x0388 amdagp - ok 23:36:15.0741 0x0388 [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys 23:36:15.0741 0x0388 amdide - ok 23:36:15.0772 0x0388 [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys 23:36:15.0772 0x0388 AmdK7 - ok 23:36:15.0803 0x0388 [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 23:36:15.0803 0x0388 AmdK8 - ok 23:36:15.0850 0x0388 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll 23:36:15.0850 0x0388 Appinfo - ok 23:36:15.0944 0x0388 [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 23:36:15.0944 0x0388 Apple Mobile Device - ok 23:36:15.0975 0x0388 [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys 23:36:15.0975 0x0388 arc - ok 23:36:16.0006 0x0388 [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys 23:36:16.0006 0x0388 arcsas - ok 23:36:16.0053 0x0388 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 23:36:16.0053 0x0388 AsyncMac - ok 23:36:16.0100 0x0388 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys 23:36:16.0100 0x0388 atapi - ok 23:36:16.0146 0x0388 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 23:36:16.0162 0x0388 AudioEndpointBuilder - ok 23:36:16.0209 0x0388 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll 23:36:16.0224 0x0388 Audiosrv - ok 23:36:16.0271 0x0388 [ CB992840482C8CF9CD00376B23BE13B3, 7F7A2E94E4B4A214AF904A38C7FFD93F9490C60E207B2FAC03A0615439898D2E ] BackupStack C:\Program Files\MyPC Backup\BackupStack.exe 23:36:16.0271 0x0388 BackupStack - ok 23:36:16.0396 0x0388 [ 34A0A6386256080F52C74076C6157026, F3B7753958C4F990DA0619EA1095C0531D996593FDBB364E915FBBC7B53B8EE1 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys 23:36:16.0443 0x0388 BCM43XV - ok 23:36:16.0552 0x0388 [ 34A0A6386256080F52C74076C6157026, F3B7753958C4F990DA0619EA1095C0531D996593FDBB364E915FBBC7B53B8EE1 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys 23:36:16.0599 0x0388 BCM43XX - ok 23:36:16.0630 0x0388 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys 23:36:16.0630 0x0388 Beep - ok 23:36:16.0646 0x0388 blbdrive - ok 23:36:16.0724 0x0388 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 23:36:16.0739 0x0388 Bonjour Service - ok 23:36:16.0770 0x0388 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 23:36:16.0770 0x0388 bowser - ok 23:36:16.0817 0x0388 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 23:36:16.0817 0x0388 BrFiltLo - ok 23:36:16.0833 0x0388 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 23:36:16.0833 0x0388 BrFiltUp - ok 23:36:16.0880 0x0388 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll 23:36:16.0880 0x0388 Browser - ok 23:36:16.0911 0x0388 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys 23:36:16.0911 0x0388 Brserid - ok 23:36:16.0942 0x0388 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 23:36:16.0942 0x0388 BrSerWdm - ok 23:36:16.0973 0x0388 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 23:36:16.0973 0x0388 BrUsbMdm - ok 23:36:16.0989 0x0388 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 23:36:16.0989 0x0388 BrUsbSer - ok 23:36:17.0036 0x0388 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 23:36:17.0036 0x0388 BTHMODEM - ok 23:36:17.0067 0x0388 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 23:36:17.0082 0x0388 cdfs - ok 23:36:17.0114 0x0388 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 23:36:17.0114 0x0388 cdrom - ok 23:36:17.0145 0x0388 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll 23:36:17.0145 0x0388 CertPropSvc - ok 23:36:17.0192 0x0388 [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys 23:36:17.0192 0x0388 circlass - ok 23:36:17.0238 0x0388 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys 23:36:17.0238 0x0388 CLFS - ok 23:36:17.0316 0x0388 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 23:36:17.0332 0x0388 clr_optimization_v2.0.50727_32 - ok 23:36:17.0394 0x0388 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 23:36:17.0410 0x0388 clr_optimization_v4.0.30319_32 - ok 23:36:17.0441 0x0388 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 23:36:17.0441 0x0388 CmBatt - ok 23:36:17.0472 0x0388 [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys 23:36:17.0472 0x0388 cmdide - ok 23:36:17.0519 0x0388 [ B6E7991E3D6146C04C85CD31AF22A381, 808393C7C5E59F273D03C62745A2AF759F588C102EDB6A2B8DD94C9A6AAF3F10 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys 23:36:17.0535 0x0388 CnxtHdAudService - ok 23:36:17.0597 0x0388 [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe 23:36:17.0613 0x0388 Com4QLBEx - ok 23:36:17.0644 0x0388 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 23:36:17.0644 0x0388 Compbatt - ok 23:36:17.0660 0x0388 COMSysApp - ok 23:36:17.0675 0x0388 [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 23:36:17.0675 0x0388 crcdisk - ok 23:36:17.0706 0x0388 [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys 23:36:17.0706 0x0388 Crusoe - ok 23:36:17.0753 0x0388 [ F1E8C34892336D33EDDCDFE44E474F64, 5CC8E0368D4D16CFDDBD0C826B08F1D93DF3C7C310026C6C91AFDC0CD752E77C ] CryptSvc C:\Windows\system32\cryptsvc.dll 23:36:17.0753 0x0388 CryptSvc - ok 23:36:17.0831 0x0388 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll 23:36:17.0847 0x0388 DcomLaunch - ok 23:36:17.0872 0x0388 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 23:36:17.0882 0x0388 DfsC - ok 23:36:18.0032 0x0388 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe 23:36:18.0112 0x0388 DFSR - ok 23:36:18.0192 0x0388 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll 23:36:18.0202 0x0388 Dhcp - ok 23:36:18.0222 0x0388 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys 23:36:18.0232 0x0388 disk - ok 23:36:18.0262 0x0388 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll 23:36:18.0262 0x0388 Dnscache - ok 23:36:18.0302 0x0388 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll 23:36:18.0302 0x0388 dot3svc - ok 23:36:18.0342 0x0388 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll 23:36:18.0342 0x0388 DPS - ok 23:36:18.0382 0x0388 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 23:36:18.0392 0x0388 drmkaud - ok 23:36:18.0432 0x0388 [ 687AF6BB383885FF6A64071B189A7F3E, 1C751B8DD27F63E88D0223A8434CED7589AC00EC6275938C59D1B954F0354F78 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys 23:36:18.0442 0x0388 dtsoftbus01 - ok 23:36:18.0512 0x0388 [ C68AC676B0EF30CFBB1080ADCE49EB1F, 62A808F2BB22507B66AE825315BBB655776AFEFD9E7DE33795DD308ACE87F0CD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 23:36:18.0532 0x0388 DXGKrnl - ok 23:36:18.0572 0x0388 [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys 23:36:18.0572 0x0388 E1G60 - ok 23:36:18.0612 0x0388 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll 23:36:18.0612 0x0388 EapHost - ok 23:36:18.0662 0x0388 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys 23:36:18.0672 0x0388 Ecache - ok 23:36:18.0702 0x0388 [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys 23:36:18.0712 0x0388 elxstor - ok 23:36:18.0782 0x0388 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll 23:36:18.0802 0x0388 EMDMgmt - ok 23:36:18.0862 0x0388 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll 23:36:18.0872 0x0388 EventSystem - ok 23:36:18.0932 0x0388 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys 23:36:18.0932 0x0388 exfat - ok 23:36:19.0002 0x0388 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys 23:36:19.0012 0x0388 fastfat - ok 23:36:19.0062 0x0388 [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys 23:36:19.0062 0x0388 fdc - ok 23:36:19.0092 0x0388 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll 23:36:19.0092 0x0388 fdPHost - ok 23:36:19.0132 0x0388 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll 23:36:19.0142 0x0388 FDResPub - ok 23:36:19.0182 0x0388 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 23:36:19.0182 0x0388 FileInfo - ok 23:36:19.0232 0x0388 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 23:36:19.0232 0x0388 Filetrace - ok 23:36:19.0272 0x0388 [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 23:36:19.0272 0x0388 flpydisk - ok 23:36:19.0322 0x0388 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 23:36:19.0322 0x0388 FltMgr - ok 23:36:19.0412 0x0388 [ 8CE364388C8ECA59B14B539179276D44, AD37AD512412A1A0955218A3DA0D6FBE1E30F373153CAF5912EFC076D348FED8 ] FontCache C:\Windows\system32\FntCache.dll 23:36:19.0442 0x0388 FontCache - ok 23:36:19.0512 0x0388 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 23:36:19.0512 0x0388 FontCache3.0.0.0 - ok 23:36:19.0542 0x0388 [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 23:36:19.0542 0x0388 fssfltr - ok 23:36:19.0702 0x0388 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe 23:36:19.0752 0x0388 fsssvc - ok 23:36:19.0792 0x0388 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 23:36:19.0792 0x0388 Fs_Rec - ok 23:36:19.0822 0x0388 [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 23:36:19.0832 0x0388 gagp30kx - ok 23:36:19.0862 0x0388 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 23:36:19.0862 0x0388 GEARAspiWDM - ok 23:36:19.0902 0x0388 [ 483924F92E55A5F9423201EC635E2CED, FEDAC3616709F081A0FA48E2BF521CBCC35E11E523EBADDEACA7308AD14338B3 ] gfibto C:\Windows\system32\drivers\gfibto.sys 23:36:19.0902 0x0388 gfibto - ok 23:36:19.0962 0x0388 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll 23:36:19.0982 0x0388 gpsvc - ok 23:36:20.0062 0x0388 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 23:36:20.0072 0x0388 gupdate - ok 23:36:20.0102 0x0388 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 23:36:20.0102 0x0388 gupdatem - ok 23:36:20.0152 0x0388 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 23:36:20.0162 0x0388 gusvc - ok 23:36:20.0192 0x0388 [ 93AEE3434935FC2F805FEFD8DC5ED1B4, EF4A76725B76FFB9EA14E6274A1FDE8482DA907A9B967E3D7EDD365BF132AD42 ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys 23:36:20.0202 0x0388 HBtnKey - ok 23:36:20.0252 0x0388 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 23:36:20.0252 0x0388 HdAudAddService - ok 23:36:20.0322 0x0388 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 23:36:20.0342 0x0388 HDAudBus - ok 23:36:20.0382 0x0388 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys 23:36:20.0382 0x0388 HidBth - ok 23:36:20.0412 0x0388 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys 23:36:20.0412 0x0388 HidIr - ok 23:36:20.0452 0x0388 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll 23:36:20.0452 0x0388 hidserv - ok 23:36:20.0502 0x0388 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 23:36:20.0502 0x0388 HidUsb - ok 23:36:20.0542 0x0388 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll 23:36:20.0542 0x0388 hkmsvc - ok 23:36:20.0582 0x0388 [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 23:36:20.0582 0x0388 HpCISSs - ok 23:36:20.0622 0x0388 [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys 23:36:20.0622 0x0388 HpqKbFiltr - ok 23:36:20.0672 0x0388 [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe 23:36:20.0682 0x0388 hpqwmiex - ok 23:36:20.0732 0x0388 [ 46D67209550973257601A533E2AC5785, 3C0D97781947BA8532344AA5D9F3B684761B5B3263A0A294F4593E76EE41DB0C ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS 23:36:20.0732 0x0388 HSFHWAZL - ok 23:36:20.0822 0x0388 [ 1882827F41DEE51C70E24C567C35BFB5, C3508BDB045F0CB2205733D9F0CF7A2BEE03C4E4A8690B7D305EBEE887E588C6 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys 23:36:20.0862 0x0388 HSF_DPV - ok 23:36:20.0902 0x0388 [ A44DDF3BA83E4664BF4DE9220097578C, 1EF22D06F6954F8E46241E8D7F231DC4BC2F78D898A9515D95BDEB4A0D372194 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys 23:36:20.0902 0x0388 HSXHWAZL - ok 23:36:20.0972 0x0388 [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys 23:36:20.0992 0x0388 HTTP - ok 23:36:21.0032 0x0388 [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys 23:36:21.0032 0x0388 i2omp - ok 23:36:21.0072 0x0388 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 23:36:21.0072 0x0388 i8042prt - ok 23:36:21.0242 0x0388 [ 9378D57E2B96C0A185D844770AD49948, AED244DDF125C867091D0A926B275EC1C60C89844C69595B1D1FC586F60F118A ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys 23:36:21.0322 0x0388 ialm - ok 23:36:21.0372 0x0388 [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 23:36:21.0382 0x0388 iaStorV - ok 23:36:21.0462 0x0388 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 23:36:21.0472 0x0388 IDriverT - ok 23:36:21.0576 0x0388 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 23:36:21.0638 0x0388 idsvc - ok 23:36:21.0794 0x0388 [ 9378D57E2B96C0A185D844770AD49948, AED244DDF125C867091D0A926B275EC1C60C89844C69595B1D1FC586F60F118A ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys 23:36:21.0872 0x0388 igfx - ok 23:36:21.0982 0x0388 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys 23:36:21.0982 0x0388 iirsp - ok 23:36:22.0044 0x0388 [ 9908D8A397B76CD8D31D0D383C5773C9, FFA6996BE9F11A81CB63C849C2400EB44A07706D1EEB7A3502D4110DAC3684A2 ] IKEEXT C:\Windows\System32\ikeext.dll 23:36:22.0060 0x0388 IKEEXT - ok 23:36:22.0106 0x0388 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys 23:36:22.0106 0x0388 intelide - ok 23:36:22.0138 0x0388 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 23:36:22.0138 0x0388 intelppm - ok 23:36:22.0184 0x0388 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 23:36:22.0184 0x0388 IPBusEnum - ok 23:36:22.0231 0x0388 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 23:36:22.0231 0x0388 IpFilterDriver - ok 23:36:22.0247 0x0388 IpInIp - ok 23:36:22.0294 0x0388 [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 23:36:22.0294 0x0388 IPMIDRV - ok 23:36:22.0340 0x0388 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 23:36:22.0340 0x0388 IPNAT - ok 23:36:22.0403 0x0388 [ FE56897B27ED266F9C4E7D90A0B5DA47, 6B39D25FAFBA886ACF3ABC0A2946E053914B80C3F4769AD36279126C5D4970B6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 23:36:22.0418 0x0388 iPod Service - ok 23:36:22.0465 0x0388 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys 23:36:22.0465 0x0388 IRENUM - ok 23:36:22.0496 0x0388 [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys 23:36:22.0496 0x0388 isapnp - ok 23:36:22.0543 0x0388 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 23:36:22.0543 0x0388 iScsiPrt - ok 23:36:22.0574 0x0388 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 23:36:22.0574 0x0388 iteatapi - ok 23:36:22.0621 0x0388 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys 23:36:22.0621 0x0388 iteraid - ok 23:36:22.0668 0x0388 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 23:36:22.0668 0x0388 kbdclass - ok 23:36:22.0715 0x0388 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 23:36:22.0730 0x0388 kbdhid - ok 23:36:22.0762 0x0388 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe 23:36:22.0762 0x0388 KeyIso - ok 23:36:22.0824 0x0388 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 23:36:22.0840 0x0388 KSecDD - ok 23:36:22.0871 0x0388 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll 23:36:22.0902 0x0388 KtmRm - ok 23:36:22.0933 0x0388 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll 23:36:22.0949 0x0388 LanmanServer - ok 23:36:22.0996 0x0388 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 23:36:23.0011 0x0388 LanmanWorkstation - ok 23:36:23.0058 0x0388 [ 6C4A3804510AD8E0F0C07B5BE3D44DDB, 5DB7EC4716B2F05C6C3930EE5AB500ABF602D7E26D26117723A293022AB2BEDE ] Lavasoft Kernexplorer C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys 23:36:23.0074 0x0388 Lavasoft Kernexplorer - ok 23:36:23.0105 0x0388 [ B7C19EC8B0DD7EFA58AD41FFEB8B8CDA, F309A747575F1AD38813C788A2AAF41126660BBCD2B369493FC598F3435B50E7 ] Lbd C:\Windows\system32\DRIVERS\Lbd.sys 23:36:23.0105 0x0388 Lbd - ok 23:36:23.0152 0x0388 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 23:36:23.0152 0x0388 lltdio - ok 23:36:23.0198 0x0388 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll 23:36:23.0214 0x0388 lltdsvc - ok 23:36:23.0261 0x0388 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll 23:36:23.0261 0x0388 lmhosts - ok 23:36:23.0308 0x0388 [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 23:36:23.0323 0x0388 LSI_FC - ok 23:36:23.0354 0x0388 [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 23:36:23.0354 0x0388 LSI_SAS - ok 23:36:23.0386 0x0388 [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 23:36:23.0386 0x0388 LSI_SCSI - ok 23:36:23.0432 0x0388 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys 23:36:23.0432 0x0388 luafv - ok 23:36:23.0464 0x0388 [ D2DED3C333A5D9CB3F4C244B0F0DD877, 5C1D6C2520C24B12AC99B4B1AB8A0C41052B78CEC2E8B52807057B09A03AD81F ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 23:36:23.0464 0x0388 MBAMProtector - ok 23:36:23.0620 0x0388 [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe 23:36:23.0729 0x0388 MBAMScheduler - ok 23:36:23.0822 0x0388 [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe 23:36:23.0854 0x0388 MBAMService - ok 23:36:23.0900 0x0388 [ 8E2E9CCD873ABF180F48BCAEEEBE347D, 35DBBB8E63B480151EA5701D9DB7C90642FA2391D044DB400D3644F3E21BB0C1 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys 23:36:23.0916 0x0388 MBAMSwissArmy - ok 23:36:23.0963 0x0388 [ F341782DC4C0DC1261DFCC0CBA40962C, FD32475602BEB557020972FEF3EA4AEED7225566C05344E5B2CEE9C64733DCCB ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys 23:36:23.0963 0x0388 MBAMWebAccessControl - ok 23:36:23.0994 0x0388 [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys 23:36:23.0994 0x0388 mdmxsdk - ok 23:36:24.0041 0x0388 [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys 23:36:24.0041 0x0388 megasas - ok 23:36:24.0103 0x0388 [ B77E959E1C50D3E3A9D9EF423BE62E09, 03BC07178E8251C6BD5EE04074555847CC712F28467F77D87AB44FA0BD5F501F ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys 23:36:24.0103 0x0388 mfeapfk - ok 23:36:24.0134 0x0388 [ E7ECF7872BF8F2897AE5A696D908C2F7, ED0B11F0A261BF30039BE506EFC472083FEA6EBEC334036545AB359DFA8E6A4B ] mfehidk C:\Windows\system32\drivers\mfehidk.sys 23:36:24.0150 0x0388 mfehidk - ok 23:36:24.0212 0x0388 Microsoft SharePoint Workspace Audit Service - ok 23:36:24.0259 0x0388 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll 23:36:24.0259 0x0388 MMCSS - ok 23:36:24.0306 0x0388 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys 23:36:24.0306 0x0388 Modem - ok 23:36:24.0337 0x0388 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 23:36:24.0337 0x0388 monitor - ok 23:36:24.0384 0x0388 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 23:36:24.0384 0x0388 mouclass - ok 23:36:24.0400 0x0388 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 23:36:24.0400 0x0388 mouhid - ok 23:36:24.0446 0x0388 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 23:36:24.0446 0x0388 MountMgr - ok 23:36:24.0493 0x0388 [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys 23:36:24.0493 0x0388 mpio - ok 23:36:24.0540 0x0388 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 23:36:24.0540 0x0388 mpsdrv - ok 23:36:24.0587 0x0388 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 23:36:24.0587 0x0388 Mraid35x - ok 23:36:24.0634 0x0388 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 23:36:24.0649 0x0388 MRxDAV - ok 23:36:24.0696 0x0388 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 23:36:24.0696 0x0388 mrxsmb - ok 23:36:24.0743 0x0388 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 23:36:24.0758 0x0388 mrxsmb10 - ok 23:36:24.0790 0x0388 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 23:36:24.0790 0x0388 mrxsmb20 - ok 23:36:24.0836 0x0388 [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci C:\Windows\system32\drivers\msahci.sys 23:36:24.0836 0x0388 msahci - ok 23:36:24.0883 0x0388 [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys 23:36:24.0883 0x0388 msdsm - ok 23:36:24.0930 0x0388 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe 23:36:24.0930 0x0388 MSDTC - ok 23:36:24.0977 0x0388 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys 23:36:24.0977 0x0388 Msfs - ok 23:36:25.0008 0x0388 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 23:36:25.0008 0x0388 msisadrv - ok 23:36:25.0055 0x0388 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 23:36:25.0070 0x0388 MSiSCSI - ok 23:36:25.0086 0x0388 msiserver - ok 23:36:25.0117 0x0388 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 23:36:25.0117 0x0388 MSKSSRV - ok 23:36:25.0148 0x0388 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 23:36:25.0148 0x0388 MSPCLOCK - ok 23:36:25.0180 0x0388 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 23:36:25.0180 0x0388 MSPQM - ok 23:36:25.0242 0x0388 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 23:36:25.0242 0x0388 MsRPC - ok 23:36:25.0289 0x0388 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 23:36:25.0289 0x0388 mssmbios - ok 23:36:25.0304 0x0388 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 23:36:25.0320 0x0388 MSTEE - ok 23:36:25.0351 0x0388 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys 23:36:25.0351 0x0388 Mup - ok 23:36:25.0398 0x0388 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll 23:36:25.0414 0x0388 napagent - ok 23:36:25.0460 0x0388 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 23:36:25.0460 0x0388 NativeWifiP - ok 23:36:25.0523 0x0388 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys 23:36:25.0538 0x0388 NDIS - ok 23:36:25.0585 0x0388 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 23:36:25.0585 0x0388 NdisTapi - ok 23:36:25.0616 0x0388 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 23:36:25.0616 0x0388 Ndisuio - ok 23:36:25.0663 0x0388 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 23:36:25.0663 0x0388 NdisWan - ok 23:36:25.0694 0x0388 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 23:36:25.0694 0x0388 NDProxy - ok 23:36:25.0726 0x0388 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 23:36:25.0726 0x0388 NetBIOS - ok 23:36:25.0772 0x0388 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys 23:36:25.0772 0x0388 netbt - ok 23:36:25.0804 0x0388 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe 23:36:25.0804 0x0388 Netlogon - ok 23:36:25.0850 0x0388 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll 23:36:25.0866 0x0388 Netman - ok 23:36:25.0913 0x0388 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll 23:36:25.0944 0x0388 netprofm - ok 23:36:25.0975 0x0388 [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 23:36:25.0991 0x0388 NetTcpPortSharing - ok 23:36:26.0038 0x0388 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 23:36:26.0053 0x0388 nfrd960 - ok 23:36:26.0053 0x0388 nitbri - ok 23:36:26.0116 0x0388 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll 23:36:26.0116 0x0388 NlaSvc - ok 23:36:26.0162 0x0388 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys 23:36:26.0162 0x0388 Npfs - ok 23:36:26.0194 0x0388 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll 23:36:26.0194 0x0388 nsi - ok 23:36:26.0225 0x0388 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 23:36:26.0225 0x0388 nsiproxy - ok 23:36:26.0318 0x0388 [ 6A4A98CEE84CF9E99564510DDA4BAA47, 18C3D8C0F12761D3B7FC43D9413CF4C4CEBF8CA9BEC521381F40D241B35EA779 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 23:36:26.0350 0x0388 Ntfs - ok 23:36:26.0385 0x0388 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys 23:36:26.0385 0x0388 ntrigdigi - ok 23:36:26.0445 0x0388 [ CF7E041663119E09D2E118521ADA9300, 0BDDEDA787CCBE34D515945717AF972143A3684F6D37F87B639D6A5371F381CC ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys 23:36:26.0445 0x0388 NuidFltr - ok 23:36:26.0485 0x0388 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys 23:36:26.0485 0x0388 Null - ok 23:36:26.0535 0x0388 [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys 23:36:26.0545 0x0388 nvraid - ok 23:36:26.0575 0x0388 [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys 23:36:26.0575 0x0388 nvstor - ok 23:36:26.0605 0x0388 [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 23:36:26.0615 0x0388 nv_agp - ok 23:36:26.0625 0x0388 NwlnkFlt - ok 23:36:26.0645 0x0388 NwlnkFwd - ok 23:36:26.0685 0x0388 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 23:36:26.0685 0x0388 ohci1394 - ok 23:36:26.0755 0x0388 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 23:36:26.0755 0x0388 ose - ok 23:36:27.0075 0x0388 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 23:36:27.0335 0x0388 osppsvc - ok 23:36:27.0455 0x0388 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll 23:36:27.0475 0x0388 p2pimsvc - ok 23:36:27.0545 0x0388 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll 23:36:27.0565 0x0388 p2psvc - ok 23:36:27.0625 0x0388 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys 23:36:27.0625 0x0388 Parport - ok 23:36:27.0665 0x0388 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys 23:36:27.0665 0x0388 partmgr - ok 23:36:27.0705 0x0388 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys 23:36:27.0705 0x0388 Parvdm - ok 23:36:27.0745 0x0388 [ 2F6E885C432927A186C2E352C8A1CBF4, BA42A2BA0069EAD47D91B752CDC3945BD0C7E4E42B8D19C83593DDB76A97EE2D ] pbfilter C:\Program Files\PeerBlock\pbfilter.sys 23:36:27.0755 0x0388 pbfilter - ok 23:36:27.0785 0x0388 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll 23:36:27.0785 0x0388 PcaSvc - ok 23:36:27.0825 0x0388 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys 23:36:27.0835 0x0388 pci - ok 23:36:27.0875 0x0388 [ 3B1901E401473E03EB8C874271E50C26, 3C7931F419E29FDD0155D8D05D97289430A2852FCB3DBAD1B338FE2241458E72 ] pciide C:\Windows\system32\drivers\pciide.sys 23:36:27.0875 0x0388 pciide - ok 23:36:27.0915 0x0388 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 23:36:27.0925 0x0388 pcmcia - ok 23:36:28.0025 0x0388 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 23:36:28.0055 0x0388 PEAUTH - ok 23:36:28.0205 0x0388 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll 23:36:28.0285 0x0388 pla - ok 23:36:28.0345 0x0388 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll 23:36:28.0355 0x0388 PlugPlay - ok 23:36:28.0426 0x0388 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 23:36:28.0458 0x0388 PNRPAutoReg - ok 23:36:28.0504 0x0388 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll 23:36:28.0536 0x0388 PNRPsvc - ok 23:36:28.0606 0x0388 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 23:36:28.0616 0x0388 PolicyAgent - ok 23:36:28.0676 0x0388 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 23:36:28.0676 0x0388 PptpMiniport - ok 23:36:28.0706 0x0388 [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys 23:36:28.0706 0x0388 Processor - ok 23:36:28.0756 0x0388 [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll 23:36:28.0766 0x0388 ProfSvc - ok 23:36:28.0796 0x0388 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe 23:36:28.0796 0x0388 ProtectedStorage - ok 23:36:28.0826 0x0388 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys 23:36:28.0826 0x0388 PSched - ok 23:36:28.0906 0x0388 [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys 23:36:28.0936 0x0388 ql2300 - ok 23:36:28.0996 0x0388 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 23:36:28.0996 0x0388 ql40xx - ok 23:36:29.0056 0x0388 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll 23:36:29.0066 0x0388 QWAVE - ok 23:36:29.0096 0x0388 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 23:36:29.0096 0x0388 QWAVEdrv - ok 23:36:29.0126 0x0388 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 23:36:29.0136 0x0388 RasAcd - ok 23:36:29.0176 0x0388 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll 23:36:29.0176 0x0388 RasAuto - ok 23:36:29.0216 0x0388 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 23:36:29.0226 0x0388 Rasl2tp - ok 23:36:29.0266 0x0388 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll 23:36:29.0286 0x0388 RasMan - ok 23:36:29.0306 0x0388 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 23:36:29.0316 0x0388 RasPppoe - ok 23:36:29.0346 0x0388 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 23:36:29.0346 0x0388 RasSstp - ok 23:36:29.0386 0x0388 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 23:36:29.0396 0x0388 rdbss - ok 23:36:29.0436 0x0388 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 23:36:29.0436 0x0388 RDPCDD - ok 23:36:29.0496 0x0388 [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 23:36:29.0506 0x0388 rdpdr - ok 23:36:29.0516 0x0388 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 23:36:29.0526 0x0388 RDPENCDD - ok 23:36:29.0596 0x0388 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 23:36:29.0596 0x0388 RDPWD - ok 23:36:29.0646 0x0388 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll 23:36:29.0646 0x0388 RemoteAccess - ok 23:36:29.0676 0x0388 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll 23:36:29.0686 0x0388 RemoteRegistry - ok 23:36:29.0726 0x0388 [ 0F6756EF8BDA6DFA7BE50465C83132BB, 1AE76B66F04A2AE99CD1A1368D4998C8081E89578A37D7D535D8CBCAA6136AE0 ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys 23:36:29.0726 0x0388 RimUsb - ok 23:36:29.0766 0x0388 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe 23:36:29.0766 0x0388 RpcLocator - ok 23:36:29.0826 0x0388 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll 23:36:29.0846 0x0388 RpcSs - ok 23:36:29.0896 0x0388 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 23:36:29.0896 0x0388 rspndr - ok 23:36:29.0936 0x0388 [ 166911EADA13CD34DD8F8C667707BE94, D586FFDDDA7EA152B868EC4D556022AC48395569FEB1ECBB9C436D425EC7A5B0 ] RTL8023xp C:\Windows\system32\DRIVERS\Rtnicxp.sys 23:36:29.0936 0x0388 RTL8023xp - ok 23:36:29.0956 0x0388 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe 23:36:29.0956 0x0388 SamSs - ok 23:36:30.0006 0x0388 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 23:36:30.0016 0x0388 sbp2port - ok 23:36:30.0056 0x0388 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll 23:36:30.0066 0x0388 SCardSvr - ok 23:36:30.0136 0x0388 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll 23:36:30.0166 0x0388 Schedule - ok 23:36:30.0176 0x0388 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll 23:36:30.0186 0x0388 SCPolicySvc - ok 23:36:30.0226 0x0388 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll 23:36:30.0236 0x0388 SDRSVC - ok 23:36:30.0306 0x0388 [ 16A252022535B680046F6E34E136D378, 31BCDAA742FDEC9E062C61E78D9E72A7ACBF77D5FEEE76933D0D378787F88E53 ] SeaPort C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 23:36:30.0316 0x0388 SeaPort - ok 23:36:30.0356 0x0388 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys 23:36:30.0356 0x0388 secdrv - ok 23:36:30.0396 0x0388 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll 23:36:30.0396 0x0388 seclogon - ok 23:36:30.0436 0x0388 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll 23:36:30.0436 0x0388 SENS - ok 23:36:30.0466 0x0388 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys 23:36:30.0466 0x0388 Serenum - ok 23:36:30.0496 0x0388 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys 23:36:30.0506 0x0388 Serial - ok 23:36:30.0546 0x0388 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys 23:36:30.0546 0x0388 sermouse - ok 23:36:30.0612 0x0388 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll 23:36:30.0612 0x0388 SessionEnv - ok 23:36:30.0644 0x0388 [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 23:36:30.0644 0x0388 sffdisk - ok 23:36:30.0675 0x0388 [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 23:36:30.0675 0x0388 sffp_mmc - ok 23:36:30.0706 0x0388 [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 23:36:30.0706 0x0388 sffp_sd - ok 23:36:30.0737 0x0388 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 23:36:30.0753 0x0388 sfloppy - ok 23:36:30.0815 0x0388 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 23:36:30.0831 0x0388 ShellHWDetection - ok 23:36:30.0862 0x0388 [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp C:\Windows\system32\drivers\sisagp.sys 23:36:30.0862 0x0388 sisagp - ok 23:36:30.0893 0x0388 [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 23:36:30.0909 0x0388 SiSRaid2 - ok 23:36:30.0940 0x0388 [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 23:36:30.0940 0x0388 SiSRaid4 - ok 23:36:31.0174 0x0388 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe 23:36:31.0283 0x0388 slsvc - ok 23:36:31.0377 0x0388 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll 23:36:31.0392 0x0388 SLUINotify - ok 23:36:31.0424 0x0388 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys 23:36:31.0439 0x0388 Smb - ok 23:36:31.0486 0x0388 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 23:36:31.0486 0x0388 SNMPTRAP - ok 23:36:31.0533 0x0388 [ 3BB48F7E33C2B76184DDF233000C09CD, D1AAE5B0425047CA0C2D376D3E59324D35A90DF9074CD442DFD0ED6E434D3C84 ] Sony SCSI Helper Service C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe 23:36:31.0548 0x0388 Sony SCSI Helper Service - ok 23:36:31.0580 0x0388 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys 23:36:31.0580 0x0388 spldr - ok 23:36:31.0611 0x0388 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe 23:36:31.0626 0x0388 Spooler - ok 23:36:31.0689 0x0388 [ 68103A2B441BBF3908EBB587F0704D6C, 0EE921D3D3D88AD0380923429E82B58078F53D7A9D53458AA33FEDF376EF1212 ] sptd C:\Windows\System32\Drivers\sptd.sys 23:36:31.0704 0x0388 sptd - ok 23:36:31.0751 0x0388 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys 23:36:31.0751 0x0388 srv - ok 23:36:31.0798 0x0388 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 23:36:31.0814 0x0388 srv2 - ok 23:36:31.0829 0x0388 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 23:36:31.0845 0x0388 srvnet - ok 23:36:31.0876 0x0388 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 23:36:31.0876 0x0388 SSDPSRV - ok 23:36:31.0923 0x0388 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll 23:36:31.0938 0x0388 SstpSvc - ok 23:36:32.0001 0x0388 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll 23:36:32.0032 0x0388 stisvc - ok 23:36:32.0063 0x0388 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys 23:36:32.0063 0x0388 swenum - ok 23:36:32.0110 0x0388 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll 23:36:32.0126 0x0388 swprv - ok 23:36:32.0172 0x0388 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 23:36:32.0172 0x0388 Symc8xx - ok 23:36:32.0188 0x0388 SymIMMP - ok 23:36:32.0219 0x0388 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 23:36:32.0219 0x0388 Sym_hi - ok 23:36:32.0250 0x0388 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 23:36:32.0250 0x0388 Sym_u3 - ok 23:36:32.0313 0x0388 [ 3D6316279C3540AA268BF025F4621EF3, 042C268DD1A98BC91721DAB31F20AEC06EF086EF8AED2BB05CF138106ED0C7DB ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 23:36:32.0313 0x0388 SynTP - ok 23:36:32.0375 0x0388 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll 23:36:32.0422 0x0388 SysMain - ok 23:36:32.0469 0x0388 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll 23:36:32.0469 0x0388 TabletInputService - ok 23:36:32.0531 0x0388 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll 23:36:32.0531 0x0388 TapiSrv - ok 23:36:32.0578 0x0388 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll 23:36:32.0578 0x0388 TBS - ok 23:36:32.0672 0x0388 [ 74E2D020C47BB2B2FCCBA29A518A7EB4, F08063AFBEA6FE01F81C27957E6C27F549AF02A9E555F8750D54A37104153BED ] Tcpip C:\Windows\system32\drivers\tcpip.sys 23:36:32.0703 0x0388 Tcpip - ok 23:36:32.0773 0x0388 [ 74E2D020C47BB2B2FCCBA29A518A7EB4, F08063AFBEA6FE01F81C27957E6C27F549AF02A9E555F8750D54A37104153BED ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 23:36:32.0803 0x0388 Tcpip6 - ok 23:36:32.0843 0x0388 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 23:36:32.0843 0x0388 tcpipreg - ok 23:36:32.0883 0x0388 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 23:36:32.0893 0x0388 TDPIPE - ok 23:36:32.0933 0x0388 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 23:36:32.0933 0x0388 TDTCP - ok 23:36:32.0973 0x0388 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 23:36:32.0983 0x0388 tdx - ok 23:36:33.0013 0x0388 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 23:36:33.0023 0x0388 TermDD - ok 23:36:33.0063 0x0388 [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll 23:36:33.0083 0x0388 TermService - ok 23:36:33.0123 0x0388 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll 23:36:33.0133 0x0388 Themes - ok 23:36:33.0163 0x0388 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll 23:36:33.0163 0x0388 THREADORDER - ok 23:36:33.0203 0x0388 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll 23:36:33.0203 0x0388 TrkWks - ok 23:36:33.0263 0x0388 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 23:36:33.0263 0x0388 TrustedInstaller - ok 23:36:33.0303 0x0388 [ DCF0F056A2E4F52287264F5AB29CF206, D9F770BD65AE4320A8C130DEA1D093AA4E37FCA573BBE6A59D6D045452EA711D ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 23:36:33.0303 0x0388 tssecsrv - ok 23:36:33.0453 0x0388 [ 5DC6DDEE665E075A5937656CFDA53229, E551BA7541A71F6C5ED7B6C03F186825B7A77F84D415A99FB0B434D5F2924346 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe 23:36:33.0503 0x0388 TuneUp.UtilitiesSvc - ok 23:36:33.0553 0x0388 [ F2107C9D85EC0DF116939CCCE06AE697, 4608E3D0CA0B252130B4DF2505DB4D89635C327A343B470FCB81B8B02CD9FA44 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys 23:36:33.0553 0x0388 TuneUpUtilitiesDrv - ok 23:36:33.0593 0x0388 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 23:36:33.0603 0x0388 tunmp - ok 23:36:33.0623 0x0388 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 23:36:33.0623 0x0388 tunnel - ok 23:36:33.0683 0x0388 [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys 23:36:33.0683 0x0388 uagp35 - ok 23:36:33.0743 0x0388 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys 23:36:33.0743 0x0388 udfs - ok 23:36:33.0803 0x0388 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 23:36:33.0813 0x0388 UI0Detect - ok 23:36:33.0853 0x0388 [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 23:36:33.0853 0x0388 uliagpkx - ok 23:36:33.0903 0x0388 [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys 23:36:33.0903 0x0388 uliahci - ok 23:36:33.0953 0x0388 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys 23:36:33.0963 0x0388 UlSata - ok 23:36:33.0993 0x0388 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 23:36:34.0003 0x0388 ulsata2 - ok 23:36:34.0043 0x0388 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys 23:36:34.0043 0x0388 umbus - ok 23:36:34.0093 0x0388 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll 23:36:34.0103 0x0388 upnphost - ok 23:36:34.0163 0x0388 [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys 23:36:34.0163 0x0388 USBAAPL - ok 23:36:34.0203 0x0388 [ CAF811AE4C147FFCD5B51750C7F09142, BD670CF88D8F932AD1C6BA91FB68A7204BC473657C6A057C92AFB84D164D393C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 23:36:34.0213 0x0388 usbccgp - ok 23:36:34.0243 0x0388 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys 23:36:34.0253 0x0388 usbcir - ok 23:36:34.0293 0x0388 [ 79E96C23A97CE7B8F14D310DA2DB0C9B, EB441D3B93965CD927E0C181031AD1082F59F9885BF35CABFDCA08C6C76B0DAF ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 23:36:34.0303 0x0388 usbehci - ok 23:36:34.0343 0x0388 [ 4673BBCB006AF60E7ABDDBE7A130BA42, 0B7DED0D887A3530AA5497FDBCB69389486FB9E2B6FAE3163E33713256D575BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 23:36:34.0343 0x0388 usbhub - ok 23:36:34.0383 0x0388 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys 23:36:34.0383 0x0388 usbohci - ok 23:36:34.0423 0x0388 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 23:36:34.0423 0x0388 usbprint - ok 23:36:34.0453 0x0388 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 23:36:34.0453 0x0388 USBSTOR - ok 23:36:34.0513 0x0388 [ 814D653EFC4D48BE3B04A307ECEFF56F, D73D62F51AEFE2F8F2B938B20107C246F2AC2F62ED49112DBD092A5D2E4024B3 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 23:36:34.0513 0x0388 usbuhci - ok 23:36:34.0573 0x0388 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll 23:36:34.0573 0x0388 UxSms - ok 23:36:34.0633 0x0388 [ 17B8E52E002A574EFD60FFF864A525B1, 3DD4C40D65FE7020C3C9531F416263E94AB03E9815130E2ACF4272076C607454 ] UxTuneUp C:\Windows\System32\uxtuneup.dll 23:36:34.0633 0x0388 UxTuneUp - ok 23:36:34.0703 0x0388 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe 23:36:34.0713 0x0388 vds - ok 23:36:34.0763 0x0388 [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 23:36:34.0763 0x0388 vga - ok 23:36:34.0803 0x0388 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys 23:36:34.0813 0x0388 VgaSave - ok 23:36:34.0843 0x0388 [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp C:\Windows\system32\drivers\viaagp.sys 23:36:34.0843 0x0388 viaagp - ok 23:36:34.0883 0x0388 [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys 23:36:34.0883 0x0388 ViaC7 - ok 23:36:34.0913 0x0388 [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide C:\Windows\system32\drivers\viaide.sys 23:36:34.0913 0x0388 viaide - ok 23:36:34.0963 0x0388 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys 23:36:34.0963 0x0388 volmgr - ok 23:36:35.0023 0x0388 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 23:36:35.0033 0x0388 volmgrx - ok 23:36:35.0073 0x0388 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys 23:36:35.0073 0x0388 volsnap - ok 23:36:35.0123 0x0388 [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 23:36:35.0133 0x0388 vsmraid - ok 23:36:35.0223 0x0388 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe 23:36:35.0263 0x0388 VSS - ok 23:36:35.0313 0x0388 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll 23:36:35.0343 0x0388 W32Time - ok 23:36:35.0373 0x0388 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 23:36:35.0383 0x0388 WacomPen - ok 23:36:35.0423 0x0388 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 23:36:35.0433 0x0388 Wanarp - ok 23:36:35.0453 0x0388 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 23:36:35.0453 0x0388 Wanarpv6 - ok 23:36:35.0503 0x0388 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll 23:36:35.0513 0x0388 wcncsvc - ok 23:36:35.0553 0x0388 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 23:36:35.0563 0x0388 WcsPlugInService - ok 23:36:35.0623 0x0388 [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys 23:36:35.0623 0x0388 Wd - ok 23:36:35.0703 0x0388 [ A840213F1ACDCC175B4D1D5AAEAC0D7A, B20F7CAEEA790290072BC170EBEEADB4C19E1C40DB0B3FE0D4A640D0D82300D6 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 23:36:35.0723 0x0388 Wdf01000 - ok 23:36:35.0763 0x0388 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll 23:36:35.0773 0x0388 WdiServiceHost - ok 23:36:35.0793 0x0388 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll 23:36:35.0803 0x0388 WdiSystemHost - ok 23:36:35.0833 0x0388 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll 23:36:35.0843 0x0388 WebClient - ok 23:36:35.0883 0x0388 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll 23:36:35.0893 0x0388 Wecsvc - ok 23:36:35.0933 0x0388 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll 23:36:35.0943 0x0388 wercplsupport - ok 23:36:35.0983 0x0388 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll 23:36:35.0993 0x0388 WerSvc - ok 23:36:36.0043 0x0388 [ E096FFB754F1E45AE1BDDAC1275AE2C5, DB88308520805EB9EE1FC70C057C75A1928DBAB00F8DDE7908FE79B964259CB3 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys 23:36:36.0073 0x0388 winachsf - ok 23:36:36.0093 0x0388 WinHttpAutoProxySvc - ok 23:36:36.0163 0x0388 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 23:36:36.0173 0x0388 Winmgmt - ok 23:36:36.0273 0x0388 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll 23:36:36.0353 0x0388 WinRM - ok 23:36:36.0443 0x0388 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll 23:36:36.0473 0x0388 Wlansvc - ok 23:36:36.0643 0x0388 [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 23:36:36.0743 0x0388 wlidsvc - ok 23:36:36.0783 0x0388 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 23:36:36.0783 0x0388 WmiAcpi - ok 23:36:36.0833 0x0388 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 23:36:36.0843 0x0388 wmiApSrv - ok 23:36:36.0953 0x0388 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 23:36:37.0003 0x0388 WMPNetworkSvc - ok 23:36:37.0053 0x0388 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll 23:36:37.0063 0x0388 WPCSvc - ok 23:36:37.0093 0x0388 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 23:36:37.0103 0x0388 WPDBusEnum - ok 23:36:37.0143 0x0388 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys 23:36:37.0143 0x0388 WpdUsb - ok 23:36:37.0273 0x0388 [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 23:36:37.0313 0x0388 WPFFontCache_v0400 - ok 23:36:37.0373 0x0388 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 23:36:37.0373 0x0388 ws2ifsl - ok 23:36:37.0393 0x0388 WSearch - ok 23:36:37.0443 0x0388 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 23:36:37.0453 0x0388 WudfPf - ok 23:36:37.0503 0x0388 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 23:36:37.0503 0x0388 WUDFRd - ok 23:36:37.0543 0x0388 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll 23:36:37.0553 0x0388 wudfsvc - ok 23:36:37.0603 0x0388 [ E8B87696DCFE32CB5C8D3D4F9DCB1D95, C4350EF58DBD60B1E2AF86EECAED37B16F6B78A006B545A849DBC9E5AC17AB89 ] WUSB54GSCv2.NTx86 C:\Windows\system32\DRIVERS\WUSB54GSCV2_X86.sys 23:36:37.0603 0x0388 WUSB54GSCv2.NTx86 - ok 23:36:37.0643 0x0388 [ 19E7C173B6242AD7521E537AE54768BF, AC2D2B3BD94B8EAADC54E18110F5291FFDF0F365880C2CAF80D497BE5609AC7F ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys 23:36:37.0643 0x0388 XAudio - ok 23:36:37.0713 0x0388 [ CDA0BC78672B50C43649FF34E1FD0FF8, 7FDAA363E17E0EC391C014166051C952722CEA01E0552E574EF7C146BFCC856F ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe 23:36:37.0723 0x0388 XAudioService - ok 23:36:37.0763 0x0388 ================ Scan global =============================== 23:36:37.0798 0x0388 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll 23:36:37.0861 0x0388 [ D2293B069E4B63DC17B2F08D45E71124, 615305E8B854CFAAC70378B29014517FEBDA6BB90BDC2E455B5127CD7B0AEAB3 ] C:\Windows\system32\winsrv.dll 23:36:37.0908 0x0388 [ D2293B069E4B63DC17B2F08D45E71124, 615305E8B854CFAAC70378B29014517FEBDA6BB90BDC2E455B5127CD7B0AEAB3 ] C:\Windows\system32\winsrv.dll 23:36:37.0970 0x0388 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe 23:36:37.0986 0x0388 [ Global ] - ok 23:36:37.0986 0x0388 ================ Scan MBR ================================== 23:36:38.0017 0x0388 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 23:36:38.0906 0x0388 \Device\Harddisk0\DR0 - ok 23:36:38.0906 0x0388 ================ Scan VBR ================================== 23:36:38.0984 0x0388 [ B5BA84D8E3AEA0E7A43E49F9AA8716BB ] \Device\Harddisk0\DR0\Partition1 23:36:38.0984 0x0388 \Device\Harddisk0\DR0\Partition1 - ok 23:36:39.0031 0x0388 [ AC9460C0D7C0001FF140C392F0B71F39 ] \Device\Harddisk0\DR0\Partition2 23:36:39.0031 0x0388 \Device\Harddisk0\DR0\Partition2 - ok 23:36:39.0046 0x0388 ================ Scan generic autorun ====================== 23:36:39.0093 0x0388 [ 7F7B42B1BA42242116F5B277A063FE2E, BFB7657EE55F97B0ADB16AD8FB8545910301C63832801927B4955148744E6556 ] C:\Windows\system32\igfxtray.exe 23:36:39.0093 0x0388 IgfxTray - ok 23:36:39.0124 0x0388 [ 5F529FBB095CBC9F14BB1E97A7A6B547, A69BD52B70AB2564417C9A5C78472EDF457EDBDF5B8BEC3367B765A482C65EC0 ] C:\Windows\system32\hkcmd.exe 23:36:39.0140 0x0388 HotKeysCmds - ok 23:36:39.0171 0x0388 [ D8A33AF26E4143F7A892009890BB6F64, 4570A1B45A264D141DC919C94E5D8DD0D0D224D418ADE23385BFD787F095BEBF ] C:\Windows\system32\igfxpers.exe 23:36:39.0171 0x0388 Persistence - ok 23:36:39.0218 0x0388 [ A3418E4D4A5EE636D44922DC2567FA18, 21F89584534A6A02284A6E1BD502A3530E372E6FCF1285BFD68DB074CCE655EA ] C:\Program Files\Synaptics\SynTP\SynTPStart.exe 23:36:39.0218 0x0388 SynTPStart - ok 23:36:39.0327 0x0388 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 23:36:39.0405 0x0388 Sidebar - ok 23:36:39.0421 0x0388 WindowsWelcomeCenter - ok 23:36:39.0514 0x0388 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 23:36:39.0540 0x0388 Sidebar - ok 23:36:39.0550 0x0388 WindowsWelcomeCenter - ok 23:36:39.0620 0x0388 [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 23:36:39.0630 0x0388 swg - ok 23:36:39.0910 0x0388 [ AFE3883FB37A5567C913E7DFCF2924A5, 3CA38EE302E0FF343DB87AE90DA868DCE5B7B490C2AA32164AF8DD4773482265 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe 23:36:40.0090 0x0388 DAEMON Tools Lite - ok 23:36:40.0120 0x0388 AV detected via SS2: Lavasoft Ad-Watch Live! Anti-Virus, C:\Program Files\Lavasoft\Ad-Aware\AWSC.exe ( ), 0x71000 ( enabled : updated ) 23:36:40.0130 0x0388 Win FW state via NFP2: enabled 23:36:42.0791 0x0388 ============================================================ 23:36:42.0791 0x0388 Scan finished 23:36:42.0791 0x0388 ============================================================ 23:36:42.0838 0x0848 Detected object count: 0 23:36:42.0838 0x0848 Actual detected object count: 0 23:38:26.0514 0x00dc Deinitialize success
  8. jsky

    Can't unistall ad-ware 9

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-11-2014 Ran by Anna Marie Corrigan (administrator) on ANNAMARIECOR-PC on 24-11-2014 14:31:00 Running from C:\Users\Anna Marie Corrigan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MAUOO23X Loaded Profile: Anna Marie Corrigan (Available profiles: Anna Marie Corrigan) Platform: Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86) OS Language: English (United States) Internet Explorer Version 9 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Sony Corporation) C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (WinZip Computing, S.L.) C:\Program Files\WinZip\WZQKPICK32.EXE (MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe (Just Develop It) C:\Program Files\MyPC Backup\BackupStack.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe (Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (TuneUp Software) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2011\TuneUpSystemStatusCheck.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Farbar) C:\Users\Anna Marie Corrigan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MAUOO23X\FRST (1).exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [synTPStart] => C:\Program Files\Synaptics\SynTP\SynTPStart.exe [102400 2007-09-15] (Synaptics, Inc.) HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2009-11-24] ( Hewlett-Packard Development Company, L.P.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM\...\Run: [Reader Application Helper] => C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2013-06-25] (Sony Corporation) HKLM\...\Run: [bCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] fastprox.dll ATTENTION! ====> ZeroAccess? HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-03-22] (Google Inc.) HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd) HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\MountPoints2: {1afac2ef-310b-11e4-8632-0016d4bb4263} - H:\VerizonSWUpgradeAssistantLauncher.exe HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\MountPoints2: {b5359c7d-5928-11e3-a9d1-0016d4bb4263} - H:\menu.exe HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...409d6c4515e9\InprocServer32: [Default-shell32] shell32.dll ATTENTION! ====> ZeroAccess? Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk ShortcutTarget: WinZip Quick Pick.lnk -> C:\Program Files\WinZip\WZQKPICK32.EXE (WinZip Computing, S.L.) Startup: C:\Users\Anna Marie Corrigan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com) CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms} SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {9B88CAE7-CD0A-4E79-9916-FB610CDD8C51} URL = http://search.yahoo.com/search?p={searchTerms}&ei=UTF-8&fr=freeze&type=W3i_DS,105,0_0,Search,20081253,0,0,0,0 SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} URL = http://search.bearshare.com/webResults.html?src=ieb&q={searchTerms} SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://toolbar.inbox.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=80352&lng=en SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6PQX6mquym&i=26 SearchScopes: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> {F90EC8E7-A559-4F35-96FF-0860662701E7} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=TV&apn_dtid=OSJ000YYUS&apn_uid=FE3C2C2F-4F5B-4B1C-99F8-A306CCDB96C0&apn_sauid=BEF3940E-091B-4A9F-A64D-080A8015CC34 BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File Toolbar: HKU\S-1-5-21-4069657085-2819306221-475852914-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll" Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll" Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Winsock: Catalog9 01 mswsock.dll File Not found () Winsock: Catalog9 02 mswsock.dll File Not found () Winsock: Catalog9 03 mswsock.dll File Not found () Winsock: Catalog9 04 mswsock.dll File Not found () Winsock: Catalog9 05 mswsock.dll File Not found () Winsock: Catalog9 06 mswsock.dll File Not found () Winsock: Catalog9 07 mswsock.dll File Not found () Winsock: Catalog9 08 mswsock.dll File Not found () Winsock: Catalog9 09 mswsock.dll File Not found () Winsock: Catalog9 10 mswsock.dll File Not found () Winsock: Catalog9 11 mswsock.dll File Not found () Winsock: Catalog9 12 mswsock.dll File Not found () Winsock: Catalog9 13 mswsock.dll File Not found () Winsock: Catalog9 14 mswsock.dll File Not found () Winsock: Catalog9 15 mswsock.dll File Not found () Winsock: Catalog9 16 mswsock.dll File Not found () Winsock: Catalog9 17 mswsock.dll File Not found () Winsock: Catalog9 18 mswsock.dll File Not found () Winsock: Catalog9 19 mswsock.dll File Not found () Winsock: Catalog9 20 mswsock.dll File Not found () Winsock: Catalog9 21 mswsock.dll File Not found () Winsock: Catalog9 22 mswsock.dll File Not found () Winsock: Catalog9 23 mswsock.dll File Not found () Winsock: Catalog9 24 mswsock.dll File Not found () Winsock: Catalog9 25 mswsock.dll File Not found () Winsock: Catalog9 26 mswsock.dll File Not found () Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default FF SelectedSearchEngine: Ask.com FF SearchEngineOrder.1: Ask.com FF DefaultSearchEngine: Ask.com FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MI1933~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @sony.com/ReaderDesktop -> C:\Program Files\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 -> C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc) FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc) FF Plugin: @videolan.org/vlc,version=2.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: [email protected]/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll No File FF user.js: detected! => C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\user.js FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.) FF SearchPlugin: C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\searchplugins\askcom.xml FF SearchPlugin: C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\searchplugins\askcomsearch.xml FF Extension: Torrent Finder Toolbar - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\[email protected] [2012-03-19] FF Extension: Microsoft .NET Framework Assistant - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-06-24] FF Extension: FoodBuzz - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{2326C1C3-3E92-49da-A3FB-CB8AD8AD8F25} [2013-05-13] FF Extension: Yahoo! Toolbar - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2012-05-18] FF Extension: NoScript - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-04-30] FF Extension: Adblock Plus - C:\Users\Anna Marie Corrigan\AppData\Roaming\Mozilla\Firefox\Profiles\qfu2ovgf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-07-09] FF HKLM\...\FireFox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-19] Chrome: ======= CHR Profile: C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Docs) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-15] CHR Extension: (Google Drive) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-15] CHR Extension: (YouTube) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-15] CHR Extension: (Google Search) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-15] CHR Extension: (Google Wallet) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-15] CHR Extension: (Gmail) - C:\Users\Anna Marie Corrigan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-15] CHR HKLM\...\Chrome\Extension: [geggofhlfbcmanadhknllmlajiafopoh] - C:\Program Files\PrivacySafeGuard\pschrome_bunndle-cb_1_1.crx [] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [53832 2014-11-13] (Just Develop It) <==== ATTENTION S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation) S3 Sony SCSI Helper Service; C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2013-05-23] (Sony Corporation) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-05-13] (DT Soft Ltd) R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2013-02-18] (GFI Software) S3 Lavasoft Kernexplorer; C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [15232 2011-02-04] () R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [64288 2010-07-12] (Lavasoft AB) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-10-01] (Malwarebytes Corporation) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2014-11-24] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-10-01] (Malwarebytes Corporation) S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [95568 2010-05-31] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [385880 2010-05-31] (McAfee, Inc.) S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation) S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [20080 2010-11-06] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2013-01-27] (Duplex Secure Ltd.) S3 WUSB54GSCv2.NTx86; C:\Windows\System32\DRIVERS\WUSB54GSCV2_X86.sys [238072 2008-01-08] () U3 ab8ye3t9; C:\Windows\system32\Drivers\ab8ye3t9.sys [0 ] (Microsoft Corporation) S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X] S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S0 nitbri; System32\drivers\tdttjcml.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] S3 SymIMMP; system32\DRIVERS\SymIM.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-24 14:10 - 2014-11-24 14:31 - 00000000 ____D () C:\FRST 2014-11-22 16:13 - 2014-11-22 16:13 - 00001057 _____ () C:\Users\Anna Marie Corrigan\Desktop\Revo Uninstaller.lnk 2014-11-22 16:13 - 2014-11-22 16:13 - 00000000 ____D () C:\Program Files\VS Revo Group 2014-11-22 15:58 - 2014-11-22 15:58 - 00000000 ____D () C:\Revo_Uninstaller_TSV3F769L 2014-11-22 15:58 - 2014-11-22 15:58 - 00000000 ____D () C:\Program Files\sweetpacks bundle uninstaller_Revo Uninstaller_3327473 2014-11-22 15:27 - 2014-11-22 15:27 - 00001754 _____ () C:\Users\Anna Marie Corrigan\Desktop\Sync Folder.lnk 2014-11-22 15:24 - 2014-11-22 15:27 - 00000000 ____D () C:\Program Files\MyPC Backup 2014-11-22 15:24 - 2014-11-22 15:24 - 00000866 _____ () C:\Users\Anna Marie Corrigan\Desktop\MyPC Backup.lnk 2014-11-22 15:24 - 2014-11-22 15:24 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup 2014-11-22 14:42 - 2014-11-22 17:11 - 01754248 _____ () C:\Users\Anna Marie Corrigan\Downloads\Adaware_Installer.exe 2014-11-22 12:44 - 2014-11-22 12:44 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft 2014-11-03 15:30 - 2014-11-24 14:04 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-11-03 15:29 - 2014-11-03 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2014-11-03 15:29 - 2014-11-03 15:29 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware 2014-11-03 15:29 - 2014-10-01 11:11 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-11-03 15:29 - 2014-10-01 11:11 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-24 14:24 - 2006-11-02 05:33 - 00703286 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-24 14:20 - 2006-11-02 07:45 - 00004832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-24 14:20 - 2006-11-02 07:45 - 00004832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-24 14:19 - 2006-11-02 07:58 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-24 14:06 - 2012-06-13 19:46 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-22 17:21 - 2006-11-02 07:58 - 00032538 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-11-22 17:13 - 2013-01-27 14:23 - 00023364 _____ () C:\Windows\PFRO.log 2014-11-22 15:30 - 2006-11-02 07:49 - 01528208 _____ () C:\Windows\WindowsUpdate.log 2014-11-22 14:38 - 2010-07-23 20:51 - 00000000 __SHD () C:\Windows\ftpcache 2014-11-22 12:42 - 2010-07-23 13:37 - 00000000 ____D () C:\ProgramData\Lavasoft 2014-11-22 11:19 - 2010-07-26 22:49 - 00559851 _____ () C:\aaw7boot.log 2014-11-17 19:23 - 2011-04-25 11:49 - 00000064 _____ () C:\Windows\system32\rp_stats.dat 2014-11-17 19:23 - 2011-04-25 11:49 - 00000044 _____ () C:\Windows\system32\rp_rules.dat 2014-11-12 19:06 - 2012-06-13 19:46 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-11-12 19:06 - 2011-07-27 20:23 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-11-11 19:06 - 2009-03-27 22:44 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Roaming\vlc 2014-11-03 16:31 - 2010-07-22 20:04 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware 2014-11-03 16:23 - 2013-04-10 02:48 - 00006796 _____ () C:\Windows\setupact.log 2014-11-03 15:29 - 2012-02-17 10:45 - 00000899 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-11-03 15:29 - 2010-07-22 20:05 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Roaming\Malwarebytes 2014-11-03 15:29 - 2010-07-22 20:04 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-11-03 13:51 - 2010-07-27 14:55 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Roaming\BitTorrent 2014-11-01 13:23 - 2008-04-07 06:07 - 00000000 ____D () C:\Users\Anna Marie Corrigan\AppData\Local\Adobe 2014-10-31 22:48 - 2008-03-23 08:39 - 00188416 _____ () C:\Users\Anna Marie Corrigan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ZeroAccess: C:\$Recycle.Bin\S-1-5-21-4069657085-2819306221-475852914-1000\$ff24043d55f85ce9a20a8337d9b4b888 ZeroAccess: C:\$Recycle.Bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888 Files to move or delete: ==================== C:\ProgramData\lin37.pad Some content of TEMP: ==================== C:\Users\Anna Marie Corrigan\AppData\Local\Temp\dlLogic.exe C:\Users\Anna Marie Corrigan\AppData\Local\Temp\spstub.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-24 14:25 ==================== End Of Log ============================ Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-11-2014 Ran by Anna Marie Corrigan at 2014-11-24 14:16:34 Running from C:\Users\Anna Marie Corrigan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MAUOO23X Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Lavasoft Ad-Watch Live! Anti-Virus (Enabled - Up to date) {9FF26384-70D4-CE6B-3ECB-E759A6A40116} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Lavasoft Ad-Watch Live! (Enabled - Up to date) {24938260-56EE-C1E5-047B-DC2BDD234BAB} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-zip v9.20 (HKLM\...\7-zip) (Version: v9.20 - TUGUU SL) <==== ATTENTION Ad-Aware (HKLM\...\Ad-Aware) (Version: - Lavasoft) Ad-Aware (Version: 8.3.0 - Lavasoft) Hidden Ad-Aware Antivirus (HKLM\...\{8EEFB640-A25D-448E-9F84-3CADF173CAE4}_AdAwareUpdater) (Version: 11.4.6792.0 - Lavasoft) AdAwareUpdater (Version: 11.4.6792.0 - Lavasoft) Hidden Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated) Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated) Adobe Reader 8.1.4 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81300000003}) (Version: 8.1.4 - Adobe Systems Incorporated) Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Ask Toolbar Updater (HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.5.36191 - Ask.com) <==== ATTENTION Ask Toolbar Updater (HKU\S-1-5-21-4069657085-2819306221-475852914-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.5.36191 - Ask.com) <==== ATTENTION BitTorrent (HKLM\...\BitTorrent) (Version: 7.7.2.28499 - BitTorrent Inc.) BitTorrent (HKU\S-1-5-21-4069657085-2819306221-475852914-1000\...\BitTorrent) (Version: 7.8.2.30182 - BitTorrent Inc.) BitTorrent (HKU\S-1-5-21-4069657085-2819306221-475852914-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\BitTorrent) (Version: 7.8.2.30182 - BitTorrent Inc.) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Compact Wireless-G USB Network Adapter with SpeedBooster Driver - WUSB54GSC (HKLM\...\{65563451-00B6-458C-9F9A-03A7757355A6}) (Version: 1.0 - Linksys, A Division of Cisco.) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.36.7.62 - Conexant) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd) Delta toolbar (HKLM\...\delta) (Version: 1.8.16.16 - Delta) <==== ATTENTION DivX Setup (HKLM\...\DivX Setup.divx.com) (Version: 2.4.0.6 - DivX, LLC) Easy Media Player 1.1.12 (HKLM\...\Easy Media Player) (Version: 1.1.12 - Easy Media Player) Google Chrome (HKLM\...\Google Chrome) (Version: 29.0.1547.66 - Google Inc.) Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4601.54 - Google Inc.) Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (Version: 1.3.21.153 - Google Inc.) Hidden HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: - ) HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.14.1 - Hewlett-Packard Company) Impulse (HKLM\...\Impulse) (Version: - Stardock) Impulse (Version: 1.0 - Stardock Corporation) Hidden Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - ) iTunes (HKLM\...\{91FD46D2-4FB7-4A51-8637-556E1BE1DB7C}) (Version: 11.0.4.4 - Apple Inc.) Java 7 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.400 - Oracle) Java 6 Update 2 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160020}) (Version: 1.6.0.20 - Sun Microsystems, Inc.) Java 6 Update 32 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216032FF}) (Version: 6.0.320 - Oracle) JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation) Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden LG VZW United Drivers (HKLM\...\{AAAB3333-0F97-4A5D-B725-FFD7E7450FD9}) (Version: 2.14.1 - LG Electronics) Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Calculator Plus (HKLM\...\{83073C45-3003-4671-9A86-243AAADD915A}) (Version: 1.0.0 - Microsoft) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Reader (HKLM\...\{B6F7DBE7-2FE2-458F-A738-B10832746036}) (Version: - ) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML4 Parser (HKLM\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios) MyPC Backup (HKLM\...\MyPC Backup) (Version: - JDi Backup Ltd) <==== ATTENTION OpenOffice.org 3.4.1 (HKLM\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation) PeerBlock 1.1 (r518) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.1.0.518 - PeerBlock, LLC) QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.) Reader for PC (HKLM\...\{7FAEB610-D6B1-42CE-9EEA-6A5001C2E732}) (Version: 2.1.00.06250 - Sony Corporation) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden Star Defender 4 V1.20 (HKLM\...\Star Defender 4 V1.20) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.0.13.2 - Synaptics) TuneUp Utilities 2011 (HKLM\...\TuneUp Utilities 2011) (Version: 10.0.4010.20 - TuneUp Software) TuneUp Utilities 2011 (Version: 10.0.4010.20 - TuneUp Software) Hidden TuneUp Utilities Language Pack (en-US) (Version: 10.0.4010.20 - TuneUp Software) Hidden TuneUp Utilities Language Pack (en-US) (Version: 9.0.4700.23 - TuneUp Software) Hidden VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden Veetle TV 0.9.18 (HKLM\...\Veetle TV) (Version: 0.9.18 - Veetle, Inc) Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) VLC media player 2.0.3 (HKLM\...\VLC media player) (Version: 2.0.3 - VideoLAN) Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation) Windows Live Sync (HKLM\...\{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}) (Version: 14.0.8064.206 - Microsoft Corporation) WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DA}) (Version: 17.5.10480 - WinZip Computing, S.L. ) Xvid 1.2.2 final uninstall (HKLM\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi)) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{06EEE834-461C-42C2-8DCF-1502B527B1F9}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{3050F406-98B5-11CF-BB82-00AA00BDCE0B}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader.dll () CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{50D5107A-D278-4871-8989-F4CEAAF59CFC}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{5D02926A-212E-11D0-9DF9-00A0C922E6EC}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{8856F961-340A-11D0-A96B-00C04FD705A2}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{942BC614-676C-464E-B384-D3202AAA02DA}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{9D148291-B9C8-11D0-A4CC-0000F80149F6}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{ADB880A6-D8FF-11CF-9377-00AA003B7A11}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4069657085-2819306221-475852914-1000_Classes\CLSID\{FBF23B40-E3F0-101B-8488-00AA003E56F8}\InprocServer32 -> No File Path ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 05:23 - 2006-09-18 16:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {18474602-F248-4D3F-BB3F-669C6AD18E2E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {260303F1-DC3D-4512-853F-D9F790960ED0} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {355C85AC-D7CD-45A8-939D-1CC65F88270C} - System32\Tasks\Microsoft\Windows\RestartManager\{7EF18381-C371-4bb4-91DE-1C849BCF561E} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {4D88F1F3-4D9B-4478-A5B0-7167CB11ED50} - System32\Tasks\Divx online update program => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-02-14] () Task: {4D912348-F64C-407D-ACB6-475C55D30029} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-19] (Microsoft Corporation) Task: {537A3CA0-84FD-4CF2-9232-ABDA0210E839} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-07] (Google Inc.) Task: {58894C27-4911-436E-A73B-E68ED07E248C} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2011-09-01] (Lavasoft Limited ) Task: {88E578B7-77B1-4841-AC47-F3188D74B870} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-07] (Google Inc.) Task: {AD715443-CDF2-4382-8F56-3BE75CB81358} - System32\Tasks\Microsoft\Windows\RestartManager\{34FDEC84-6303-4246-A7F5-CE12B5785939} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {B8CF7248-31AC-4F2D-A361-6DD2BF70A724} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated) Task: {CC402475-FD13-4E58-B60D-3DB038988F23} - \EPUpdater No Task File <==== ATTENTION Task: {DCAD4F1E-D1C5-46FC-9D4D-93D5E2903560} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation) Task: {FDCAEAF8-07DF-459E-A6C3-0375BE183527} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011 => C:\Program Files\TuneUp Utilities 2011\OneClick.exe [2011-03-30] (TuneUp Software) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\User_Feed_Synchronization-{C3EE2A8D-CF33-45BF-9A29-BEA1DCBAA764}.job => C:\Windows\system32\msfeedssync.exe ==================== Loaded Modules (whitelisted) ============= 2010-01-30 01:41 - 2010-01-30 01:41 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-03-24 20:17 - 2010-03-24 20:17 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2013-06-25 17:23 - 2013-06-25 17:23 - 00880640 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\fsk.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00040264 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskMediaPlayers.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00239944 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\Fskin.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00026952 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskinLocalize.dll 2013-05-23 18:54 - 2013-05-23 18:54 - 00798720 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskSecurity.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00125256 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskDocumentViewer.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00016200 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskPower.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00024904 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskNetInterface.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00017224 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskMobileMediaDevice.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00015176 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskTimeHardware.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00034632 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ticket.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00018760 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ebookDeviceNotifier.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00092488 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ebookUsb.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00149832 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\readerAppHelper.dll 2013-06-25 17:24 - 2013-06-25 17:24 - 00178504 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\USBDetector.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:667565EE AlternateDataStreams: C:\ProgramData\TEMP:A8ADE5D8 AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) HKU\S-1-5-21-4069657085-2819306221-475852914-1000\Software\Classes\.exe: => <===== ATTENTION! ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-4069657085-2819306221-475852914-500 - Administrator - Disabled) Anna Marie Corrigan (S-1-5-21-4069657085-2819306221-475852914-1000 - Administrator - Enabled) => C:\Users\Anna Marie Corrigan Guest (S-1-5-21-4069657085-2819306221-475852914-501 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= Name: Microsoft ISATAP Adapter #2 Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Event log errors: ========================= Application errors: ================== Error: (11/22/2014 04:17:58 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 04:17:57 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 04:14:32 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {adb3b733-a2fa-494f-8a41-0cf02e5e217d} Error: (11/22/2014 03:03:13 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 03:03:11 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 02:51:47 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 02:51:46 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 01:59:41 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to start service Error: (11/22/2014 01:58:56 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to start service Error: (11/22/2014 01:27:42 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service System errors: ============= Error: (11/24/2014 02:17:00 PM) (Source: volsnap) (EventID: 20) (User: ) Description: The shadow copies of volume C: were aborted because of a failed free space computation. Error: (11/24/2014 02:03:31 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: MBAMWebAccessControlBFE Error: (11/24/2014 02:03:31 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: MBAMWebAccessControlBFE Error: (11/24/2014 02:03:31 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: nitbri Error: (11/24/2014 02:03:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Computer Browser%%1060 Error: (11/24/2014 02:01:53 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 5:45:51 PM on 11/22/2014 was unexpected. Error: (11/22/2014 05:42:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: MBAMWebAccessControlBFE Error: (11/22/2014 05:42:46 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: MBAMWebAccessControlBFE Error: (11/22/2014 05:22:33 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: nitbri Error: (11/22/2014 05:22:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Computer Browser%%1060 Microsoft Office Sessions: ========================= Error: (11/22/2014 04:17:58 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 04:17:57 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 04:14:32 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005 Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {adb3b733-a2fa-494f-8a41-0cf02e5e217d} Error: (11/22/2014 03:03:13 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 03:03:11 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 02:51:47 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service Error: (11/22/2014 02:51:46 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to stop service Error: (11/22/2014 01:59:41 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to start service Error: (11/22/2014 01:58:56 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to start service Error: (11/22/2014 01:27:42 PM) (Source: Lavasoft Ad-Aware Service) (EventID: 0) (User: ) Description: Failed to uninstall service CodeIntegrity Errors: =================================== Date: 2014-11-24 14:16:12.523 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:16:11.946 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:16:11.338 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:16:10.589 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:16:09.497 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:16:08.561 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:16:07.531 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:16:06.424 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:14:41.092 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2014-11-24 14:14:40.437 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
  9. jsky

    Can't unistall ad-ware 9

    Both are listed in the control manager but everytime i try to unistall it freezes. I tried to remove it before installing 11 but that didn't work either so thats why I downloading 11 hoping it would replace or remove it.
  10. jsky

    Can't unistall ad-ware 9

    I'm having trouble unistalling ad-aware 9. I'm using a windows visa machine and tried updating to version 11 and it keeps looping when restating the computer after it has supposedly unistalled version 9. I've tried everything to unistall it through windows control panel and third party software such as revo unistaller but without success. Can anyone suggest to help me remove?