Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Serious Issue with Api.Browserbar


  • Please log in to reply
13 replies to this topic

#1 dragon5281

dragon5281

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 14 October 2012 - 04:59 AM

The issue has just appeared today. When I try to go into a webpage, it redirects me to Api.Browserbar pretty often which is very annoying. Along with that, I heard it's pretty dangerous if I don't get rid of it quickly. I have tried following every guide I found, but it hasn't worked. Please help me quick. If any info is needed, just tell me! I'll be very fast to reply.
Thanks in advance.

(It's not just in Google Chrome, it also happens in Internet Explorer, I don't have Firefox, so I haven't tried it)

Edited by dragon5281, 14 October 2012 - 05:00 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:10 AM

Posted 14 October 2012 - 07:30 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 dragon5281

dragon5281
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 October 2012 - 04:00 AM

@narenxp and others. Thought the tag would help, not sure if it works on this forum.

Uhmmm, here are the scan results, I hope they mean something lol since I have no idea ;/. Thank you for the help! Sorry about the late reply, had a test today that I needed to study for.
Oh, and just in case you forget, the virus is called api.browserbar or something like that




TDSSkiller Scan:
00:52:15.0652 12656 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
00:52:16.0275 12656 ============================================================
00:52:16.0275 12656 Current date / time: 2012/10/17 00:52:16.0275
00:52:16.0275 12656 SystemInfo:
00:52:16.0275 12656
00:52:16.0276 12656 OS Version: 6.1.7601 ServicePack: 1.0
00:52:16.0276 12656 Product type: Workstation
00:52:16.0276 12656 ComputerName: JU-YOUNG-PC
00:52:16.0276 12656 UserName: Ju-young
00:52:16.0276 12656 Windows directory: C:\Windows
00:52:16.0276 12656 System windows directory: C:\Windows
00:52:16.0276 12656 Running under WOW64
00:52:16.0276 12656 Processor architecture: Intel x64
00:52:16.0276 12656 Number of processors: 4
00:52:16.0276 12656 Page size: 0x1000
00:52:16.0276 12656 Boot type: Normal boot
00:52:16.0276 12656 ============================================================
00:52:16.0833 12656 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:52:16.0872 12656 ============================================================
00:52:16.0872 12656 \Device\Harddisk0\DR0:
00:52:16.0873 12656 MBR partitions:
00:52:16.0873 12656 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
00:52:16.0873 12656 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
00:52:16.0873 12656 ============================================================
00:52:16.0920 12656 C: <-> \Device\Harddisk0\DR0\Partition2
00:52:16.0920 12656 ============================================================
00:52:16.0920 12656 Initialize success
00:52:16.0920 12656 ============================================================
00:52:18.0412 11320 ============================================================
00:52:18.0412 11320 Scan started
00:52:18.0412 11320 Mode: Manual;
00:52:18.0412 11320 ============================================================
00:52:18.0796 11320 ================ Scan system memory ========================
00:52:18.0796 11320 System memory - ok
00:52:18.0797 11320 ================ Scan services =============================
00:52:18.0920 11320 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
00:52:18.0922 11320 1394ohci - ok
00:52:18.0940 11320 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
00:52:18.0943 11320 ACPI - ok
00:52:18.0948 11320 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
00:52:18.0949 11320 AcpiPmi - ok
00:52:19.0024 11320 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:52:19.0025 11320 AdobeARMservice - ok
00:52:19.0063 11320 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
00:52:19.0067 11320 adp94xx - ok
00:52:19.0081 11320 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
00:52:19.0083 11320 adpahci - ok
00:52:19.0120 11320 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
00:52:19.0122 11320 adpu320 - ok
00:52:19.0187 11320 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
00:52:19.0190 11320 AdvancedSystemCareService5 - ok
00:52:19.0202 11320 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:52:19.0203 11320 AeLookupSvc - ok
00:52:19.0231 11320 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
00:52:19.0234 11320 AFD - ok
00:52:19.0247 11320 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
00:52:19.0249 11320 agp440 - ok
00:52:19.0263 11320 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
00:52:19.0265 11320 ALG - ok
00:52:19.0276 11320 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
00:52:19.0277 11320 aliide - ok
00:52:19.0303 11320 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
00:52:19.0305 11320 AMD External Events Utility - ok
00:52:19.0310 11320 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
00:52:19.0311 11320 amdide - ok
00:52:19.0323 11320 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
00:52:19.0326 11320 AmdK8 - ok
00:52:19.0448 11320 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
00:52:19.0558 11320 amdkmdag - ok
00:52:19.0594 11320 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
00:52:19.0597 11320 amdkmdap - ok
00:52:19.0601 11320 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
00:52:19.0602 11320 AmdPPM - ok
00:52:19.0624 11320 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
00:52:19.0626 11320 amdsata - ok
00:52:19.0643 11320 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
00:52:19.0645 11320 amdsbs - ok
00:52:19.0654 11320 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
00:52:19.0654 11320 amdxata - ok
00:52:19.0662 11320 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
00:52:19.0663 11320 AppID - ok
00:52:19.0669 11320 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
00:52:19.0670 11320 AppIDSvc - ok
00:52:19.0681 11320 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
00:52:19.0683 11320 Appinfo - ok
00:52:19.0727 11320 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:52:19.0729 11320 Apple Mobile Device - ok
00:52:19.0751 11320 [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
00:52:19.0760 11320 AppleCharger - ok
00:52:19.0770 11320 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
00:52:19.0787 11320 AppleChargerSrv - ok
00:52:19.0826 11320 [ 52AD9ED5BD05E7801AF5EFD99652C74F ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
00:52:19.0830 11320 Application Updater - ok
00:52:19.0840 11320 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
00:52:19.0842 11320 arc - ok
00:52:19.0853 11320 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
00:52:19.0856 11320 arcsas - ok
00:52:19.0915 11320 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:52:19.0916 11320 aspnet_state - ok
00:52:19.0931 11320 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:52:19.0933 11320 AsyncMac - ok
00:52:19.0948 11320 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
00:52:19.0949 11320 atapi - ok
00:52:19.0991 11320 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
00:52:19.0993 11320 AtiHDAudioService - ok
00:52:20.0016 11320 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:52:20.0020 11320 AudioEndpointBuilder - ok
00:52:20.0028 11320 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
00:52:20.0030 11320 AudioSrv - ok
00:52:20.0098 11320 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
00:52:20.0099 11320 avgtp - ok
00:52:20.0133 11320 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
00:52:20.0135 11320 AxInstSV - ok
00:52:20.0149 11320 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
00:52:20.0152 11320 b06bdrv - ok
00:52:20.0161 11320 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
00:52:20.0164 11320 b57nd60a - ok
00:52:20.0187 11320 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
00:52:20.0189 11320 BBSvc - ok
00:52:20.0198 11320 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
00:52:20.0207 11320 BDESVC - ok
00:52:20.0236 11320 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
00:52:20.0237 11320 Beep - ok
00:52:20.0262 11320 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
00:52:20.0266 11320 BFE - ok
00:52:20.0284 11320 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
00:52:20.0290 11320 BITS - ok
00:52:20.0297 11320 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
00:52:20.0298 11320 blbdrive - ok
00:52:20.0339 11320 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:52:20.0342 11320 Bonjour Service - ok
00:52:20.0361 11320 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:52:20.0362 11320 bowser - ok
00:52:20.0366 11320 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
00:52:20.0367 11320 BrFiltLo - ok
00:52:20.0370 11320 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
00:52:20.0371 11320 BrFiltUp - ok
00:52:20.0394 11320 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
00:52:20.0396 11320 Browser - ok
00:52:20.0409 11320 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
00:52:20.0411 11320 Brserid - ok
00:52:20.0415 11320 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
00:52:20.0416 11320 BrSerWdm - ok
00:52:20.0419 11320 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
00:52:20.0420 11320 BrUsbMdm - ok
00:52:20.0423 11320 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
00:52:20.0425 11320 BrUsbSer - ok
00:52:20.0435 11320 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
00:52:20.0437 11320 BTHMODEM - ok
00:52:20.0441 11320 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
00:52:20.0443 11320 bthserv - ok
00:52:20.0454 11320 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:52:20.0456 11320 cdfs - ok
00:52:20.0467 11320 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:52:20.0469 11320 cdrom - ok
00:52:20.0487 11320 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
00:52:20.0488 11320 CertPropSvc - ok
00:52:20.0491 11320 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
00:52:20.0492 11320 circlass - ok
00:52:20.0504 11320 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
00:52:20.0506 11320 CLFS - ok
00:52:20.0546 11320 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:52:20.0549 11320 clr_optimization_v2.0.50727_32 - ok
00:52:20.0583 11320 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:52:20.0585 11320 clr_optimization_v2.0.50727_64 - ok
00:52:20.0648 11320 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:52:20.0650 11320 clr_optimization_v4.0.30319_32 - ok
00:52:20.0665 11320 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:52:20.0666 11320 clr_optimization_v4.0.30319_64 - ok
00:52:20.0670 11320 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
00:52:20.0671 11320 CmBatt - ok
00:52:20.0685 11320 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:52:20.0686 11320 cmdide - ok
00:52:20.0716 11320 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
00:52:20.0719 11320 CNG - ok
00:52:20.0722 11320 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
00:52:20.0723 11320 Compbatt - ok
00:52:20.0735 11320 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
00:52:20.0743 11320 CompositeBus - ok
00:52:20.0762 11320 COMSysApp - ok
00:52:20.0783 11320 [ 75DBD5DB9892D7451D0429BEC1AABE1A ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
00:52:20.0785 11320 cpuz135 - ok
00:52:20.0800 11320 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
00:52:20.0801 11320 crcdisk - ok
00:52:20.0825 11320 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:52:20.0827 11320 CryptSvc - ok
00:52:20.0868 11320 [ DDAC7684F4BC3F655ED31D8AA494E9AB ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
00:52:20.0871 11320 cvhsvc - ok
00:52:20.0889 11320 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
00:52:20.0893 11320 DcomLaunch - ok
00:52:20.0918 11320 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
00:52:20.0921 11320 defragsvc - ok
00:52:20.0930 11320 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:52:20.0932 11320 DfsC - ok
00:52:20.0939 11320 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
00:52:20.0942 11320 Dhcp - ok
00:52:20.0950 11320 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
00:52:20.0951 11320 discache - ok
00:52:20.0959 11320 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
00:52:20.0961 11320 Disk - ok
00:52:20.0983 11320 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:52:20.0984 11320 Dnscache - ok
00:52:20.0989 11320 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
00:52:20.0992 11320 dot3svc - ok
00:52:21.0000 11320 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
00:52:21.0002 11320 DPS - ok
00:52:21.0030 11320 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:52:21.0031 11320 drmkaud - ok
00:52:21.0047 11320 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:52:21.0053 11320 DXGKrnl - ok
00:52:21.0074 11320 EagleX64 - ok
00:52:21.0085 11320 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
00:52:21.0087 11320 EapHost - ok
00:52:21.0127 11320 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
00:52:21.0161 11320 ebdrv - ok
00:52:21.0175 11320 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
00:52:21.0177 11320 EFS - ok
00:52:21.0205 11320 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
00:52:21.0210 11320 ehRecvr - ok
00:52:21.0219 11320 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
00:52:21.0221 11320 ehSched - ok
00:52:21.0234 11320 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
00:52:21.0238 11320 elxstor - ok
00:52:21.0256 11320 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
00:52:21.0258 11320 ErrDev - ok
00:52:21.0272 11320 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
00:52:21.0275 11320 EventSystem - ok
00:52:21.0279 11320 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
00:52:21.0281 11320 exfat - ok
00:52:21.0286 11320 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:52:21.0288 11320 fastfat - ok
00:52:21.0307 11320 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
00:52:21.0312 11320 Fax - ok
00:52:21.0316 11320 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
00:52:21.0316 11320 fdc - ok
00:52:21.0331 11320 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
00:52:21.0333 11320 fdPHost - ok
00:52:21.0343 11320 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
00:52:21.0345 11320 FDResPub - ok
00:52:21.0355 11320 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:52:21.0357 11320 FileInfo - ok
00:52:21.0367 11320 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:52:21.0368 11320 Filetrace - ok
00:52:21.0372 11320 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
00:52:21.0373 11320 flpydisk - ok
00:52:21.0382 11320 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:52:21.0384 11320 FltMgr - ok
00:52:21.0408 11320 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
00:52:21.0425 11320 FontCache - ok
00:52:21.0443 11320 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:52:21.0444 11320 FontCache3.0.0.0 - ok
00:52:21.0451 11320 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
00:52:21.0453 11320 FsDepends - ok
00:52:21.0477 11320 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
00:52:21.0478 11320 fssfltr - ok
00:52:21.0520 11320 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
00:52:21.0537 11320 fsssvc - ok
00:52:21.0560 11320 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:52:21.0561 11320 Fs_Rec - ok
00:52:21.0573 11320 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
00:52:21.0575 11320 fvevol - ok
00:52:21.0588 11320 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
00:52:21.0590 11320 gagp30kx - ok
00:52:21.0610 11320 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
00:52:21.0619 11320 gdrv - ok
00:52:21.0642 11320 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:52:21.0644 11320 GEARAspiWDM - ok
00:52:21.0664 11320 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
00:52:21.0669 11320 gpsvc - ok
00:52:21.0685 11320 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
00:52:21.0694 11320 GVTDrv64 - ok
00:52:21.0709 11320 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
00:52:21.0710 11320 hcw85cir - ok
00:52:21.0728 11320 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:52:21.0730 11320 HdAudAddService - ok
00:52:21.0747 11320 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
00:52:21.0748 11320 HDAudBus - ok
00:52:21.0760 11320 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
00:52:21.0762 11320 HidBatt - ok
00:52:21.0770 11320 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
00:52:21.0772 11320 HidBth - ok
00:52:21.0779 11320 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
00:52:21.0781 11320 HidIr - ok
00:52:21.0794 11320 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
00:52:21.0796 11320 hidserv - ok
00:52:21.0814 11320 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
00:52:21.0815 11320 HidUsb - ok
00:52:21.0829 11320 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
00:52:21.0831 11320 hkmsvc - ok
00:52:21.0842 11320 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:52:21.0844 11320 HomeGroupListener - ok
00:52:21.0869 11320 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:52:21.0871 11320 HomeGroupProvider - ok
00:52:21.0883 11320 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
00:52:21.0885 11320 HpSAMD - ok
00:52:21.0900 11320 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:52:21.0904 11320 HTTP - ok
00:52:21.0908 11320 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
00:52:21.0908 11320 hwpolicy - ok
00:52:21.0920 11320 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
00:52:21.0922 11320 i8042prt - ok
00:52:21.0948 11320 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
00:52:21.0950 11320 iaStor - ok
00:52:21.0981 11320 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:52:21.0982 11320 IAStorDataMgrSvc - ok
00:52:22.0000 11320 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
00:52:22.0003 11320 iaStorV - ok
00:52:22.0025 11320 [ 33D4D4A24791587E83F7EE05A446FB7E ] ICCS C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
00:52:22.0053 11320 ICCS - ok
00:52:22.0092 11320 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:52:22.0094 11320 IDriverT - ok
00:52:22.0133 11320 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:52:22.0139 11320 idsvc - ok
00:52:22.0155 11320 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
00:52:22.0157 11320 iirsp - ok
00:52:22.0175 11320 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
00:52:22.0181 11320 IKEEXT - ok
00:52:22.0202 11320 [ 2D66067C7A8A0112156BCD1C0BAA7042 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
00:52:22.0751 11320 Intel® Capability Licensing Service Interface - ok
00:52:22.0769 11320 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
00:52:22.0770 11320 intelide - ok
00:52:22.0784 11320 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:52:22.0784 11320 intelppm - ok
00:52:22.0804 11320 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:52:22.0806 11320 IPBusEnum - ok
00:52:22.0817 11320 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:52:22.0819 11320 IpFilterDriver - ok
00:52:22.0837 11320 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:52:22.0841 11320 iphlpsvc - ok
00:52:22.0852 11320 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
00:52:22.0854 11320 IPMIDRV - ok
00:52:22.0857 11320 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
00:52:22.0858 11320 IPNAT - ok
00:52:22.0894 11320 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
00:52:22.0900 11320 iPod Service - ok
00:52:22.0911 11320 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:52:22.0912 11320 IRENUM - ok
00:52:22.0923 11320 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:52:22.0924 11320 isapnp - ok
00:52:22.0935 11320 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
00:52:22.0938 11320 iScsiPrt - ok
00:52:22.0951 11320 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
00:52:22.0952 11320 iusb3hcs - ok
00:52:22.0966 11320 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
00:52:22.0969 11320 iusb3hub - ok
00:52:22.0981 11320 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
00:52:22.0986 11320 iusb3xhc - ok
00:52:23.0004 11320 [ 166FC0B36842135BC2D3C32DF70ED0D6 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
00:52:23.0005 11320 jhi_service - ok
00:52:23.0012 11320 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:52:23.0014 11320 kbdclass - ok
00:52:23.0026 11320 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:52:23.0028 11320 kbdhid - ok
00:52:23.0033 11320 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
00:52:23.0034 11320 KeyIso - ok
00:52:23.0051 11320 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:52:23.0052 11320 KSecDD - ok
00:52:23.0075 11320 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
00:52:23.0076 11320 KSecPkg - ok
00:52:23.0085 11320 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
00:52:23.0086 11320 ksthunk - ok
00:52:23.0098 11320 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
00:52:23.0101 11320 KtmRm - ok
00:52:23.0104 11320 [ B8040D3B97B16B89701E31A17353856C ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
00:52:23.0106 11320 L1C - ok
00:52:23.0124 11320 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
00:52:23.0126 11320 LanmanServer - ok
00:52:23.0141 11320 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:52:23.0143 11320 LanmanWorkstation - ok
00:52:23.0161 11320 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:52:23.0163 11320 lltdio - ok
00:52:23.0176 11320 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:52:23.0179 11320 lltdsvc - ok
00:52:23.0192 11320 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
00:52:23.0194 11320 lmhosts - ok
00:52:23.0203 11320 [ C56E64BA70DC822B84D100A6F8D690D3 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:52:23.0205 11320 LMS - ok
00:52:23.0216 11320 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
00:52:23.0218 11320 LSI_FC - ok
00:52:23.0229 11320 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
00:52:23.0231 11320 LSI_SAS - ok
00:52:23.0244 11320 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
00:52:23.0246 11320 LSI_SAS2 - ok
00:52:23.0250 11320 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
00:52:23.0251 11320 LSI_SCSI - ok
00:52:23.0261 11320 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
00:52:23.0262 11320 luafv - ok
00:52:23.0303 11320 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
00:52:23.0305 11320 MBAMProtector - ok
00:52:23.0352 11320 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
00:52:23.0354 11320 MBAMScheduler - ok
00:52:23.0367 11320 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
00:52:23.0372 11320 MBAMService - ok
00:52:23.0394 11320 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
00:52:23.0396 11320 Mcx2Svc - ok
00:52:23.0407 11320 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
00:52:23.0409 11320 megasas - ok
00:52:23.0427 11320 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
00:52:23.0430 11320 MegaSR - ok
00:52:23.0433 11320 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
00:52:23.0434 11320 MEIx64 - ok
00:52:23.0488 11320 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
00:52:23.0489 11320 Microsoft Office Groove Audit Service - ok
00:52:23.0505 11320 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
00:52:23.0507 11320 MMCSS - ok
00:52:23.0516 11320 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
00:52:23.0518 11320 Modem - ok
00:52:23.0530 11320 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:52:23.0530 11320 monitor - ok
00:52:23.0546 11320 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:52:23.0547 11320 mouclass - ok
00:52:23.0557 11320 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:52:23.0558 11320 mouhid - ok
00:52:23.0577 11320 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
00:52:23.0579 11320 mountmgr - ok
00:52:23.0597 11320 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
00:52:23.0598 11320 MpFilter - ok
00:52:23.0611 11320 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
00:52:23.0612 11320 mpio - ok
00:52:23.0621 11320 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:52:23.0622 11320 mpsdrv - ok
00:52:23.0640 11320 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
00:52:23.0646 11320 MpsSvc - ok
00:52:23.0659 11320 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:52:23.0661 11320 MRxDAV - ok
00:52:23.0673 11320 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:52:23.0675 11320 mrxsmb - ok
00:52:23.0690 11320 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:52:23.0692 11320 mrxsmb10 - ok
00:52:23.0702 11320 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:52:23.0703 11320 mrxsmb20 - ok
00:52:23.0717 11320 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
00:52:23.0718 11320 msahci - ok
00:52:23.0730 11320 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:52:23.0732 11320 msdsm - ok
00:52:23.0741 11320 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
00:52:23.0743 11320 MSDTC - ok
00:52:23.0761 11320 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:52:23.0761 11320 Msfs - ok
00:52:23.0769 11320 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
00:52:23.0771 11320 mshidkmdf - ok
00:52:23.0780 11320 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:52:23.0781 11320 msisadrv - ok
00:52:23.0790 11320 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:52:23.0792 11320 MSiSCSI - ok
00:52:23.0795 11320 msiserver - ok
00:52:23.0812 11320 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:52:23.0813 11320 MSKSSRV - ok
00:52:23.0837 11320 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
00:52:23.0837 11320 MsMpSvc - ok
00:52:23.0849 11320 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:52:23.0850 11320 MSPCLOCK - ok
00:52:23.0862 11320 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:52:23.0863 11320 MSPQM - ok
00:52:23.0874 11320 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:52:23.0877 11320 MsRPC - ok
00:52:23.0888 11320 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
00:52:23.0888 11320 mssmbios - ok
00:52:23.0894 11320 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:52:23.0894 11320 MSTEE - ok
00:52:23.0906 11320 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
00:52:23.0908 11320 MTConfig - ok
00:52:23.0911 11320 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
00:52:23.0912 11320 Mup - ok
00:52:23.0938 11320 [ 97CCA67FCDABB8441149F04B34ABF510 ] mvs91xx C:\Windows\system32\DRIVERS\mvs91xx.sys
00:52:23.0940 11320 mvs91xx - ok
00:52:23.0963 11320 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
00:52:23.0966 11320 napagent - ok
00:52:23.0981 11320 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:52:23.0984 11320 NativeWifiP - ok
00:52:24.0015 11320 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
00:52:24.0021 11320 NDIS - ok
00:52:24.0035 11320 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
00:52:24.0037 11320 NdisCap - ok
00:52:24.0051 11320 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:52:24.0052 11320 NdisTapi - ok
00:52:24.0069 11320 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:52:24.0070 11320 Ndisuio - ok
00:52:24.0078 11320 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:52:24.0079 11320 NdisWan - ok
00:52:24.0086 11320 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:52:24.0087 11320 NDProxy - ok
00:52:24.0093 11320 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:52:24.0094 11320 NetBIOS - ok
00:52:24.0109 11320 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
00:52:24.0111 11320 NetBT - ok
00:52:24.0114 11320 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
00:52:24.0115 11320 Netlogon - ok
00:52:24.0141 11320 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
00:52:24.0144 11320 Netman - ok
00:52:24.0163 11320 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:52:24.0165 11320 NetMsmqActivator - ok
00:52:24.0169 11320 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:52:24.0169 11320 NetPipeActivator - ok
00:52:24.0187 11320 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
00:52:24.0191 11320 netprofm - ok
00:52:24.0217 11320 [ D66596DB0A0739A89C25B590CE36D628 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
00:52:24.0222 11320 netr28x - ok
00:52:24.0226 11320 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:52:24.0226 11320 NetTcpActivator - ok
00:52:24.0230 11320 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:52:24.0231 11320 NetTcpPortSharing - ok
00:52:24.0244 11320 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
00:52:24.0245 11320 nfrd960 - ok
00:52:24.0262 11320 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
00:52:24.0263 11320 NisDrv - ok
00:52:24.0291 11320 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
00:52:24.0293 11320 NisSrv - ok
00:52:24.0302 11320 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:52:24.0304 11320 NlaSvc - ok
00:52:24.0319 11320 [ CD2FE9C33CFD0FE0AF124E05907E5C3D ] nmservice C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
00:52:24.0324 11320 nmservice - ok
00:52:24.0338 11320 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:52:24.0339 11320 Npfs - ok
00:52:24.0351 11320 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
00:52:24.0353 11320 nsi - ok
00:52:24.0357 11320 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:52:24.0358 11320 nsiproxy - ok
00:52:24.0402 11320 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:52:24.0428 11320 Ntfs - ok
00:52:24.0441 11320 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
00:52:24.0442 11320 Null - ok
00:52:24.0462 11320 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:52:24.0464 11320 nvraid - ok
00:52:24.0473 11320 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:52:24.0475 11320 nvstor - ok
00:52:24.0485 11320 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:52:24.0487 11320 nv_agp - ok
00:52:24.0532 11320 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
00:52:24.0535 11320 odserv - ok
00:52:24.0546 11320 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
00:52:24.0547 11320 ohci1394 - ok
00:52:24.0586 11320 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:52:24.0587 11320 ose - ok
00:52:24.0688 11320 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:52:24.0739 11320 osppsvc - ok
00:52:24.0771 11320 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
00:52:24.0774 11320 p2pimsvc - ok
00:52:24.0790 11320 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
00:52:24.0794 11320 p2psvc - ok
00:52:24.0807 11320 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
00:52:24.0809 11320 Parport - ok
00:52:24.0829 11320 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:52:24.0830 11320 partmgr - ok
00:52:24.0843 11320 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
00:52:24.0846 11320 PcaSvc - ok
00:52:24.0853 11320 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
00:52:24.0854 11320 pci - ok
00:52:24.0861 11320 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
00:52:24.0862 11320 pciide - ok
00:52:24.0871 11320 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
00:52:24.0873 11320 pcmcia - ok
00:52:24.0888 11320 PCTBD - ok
00:52:24.0894 11320 PCTCore - ok
00:52:24.0904 11320 pctDS - ok
00:52:24.0910 11320 pctEFA - ok
00:52:24.0937 11320 [ C4775E7F54F3CC6307B73462B1B802C6 ] PCTSD C:\Windows\system32\Drivers\PCTSD64.sys
00:52:24.0939 11320 PCTSD - ok
00:52:24.0954 11320 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
00:52:24.0955 11320 pcw - ok
00:52:24.0971 11320 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:52:24.0976 11320 PEAUTH - ok
00:52:25.0020 11320 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
00:52:25.0021 11320 PerfHost - ok
00:52:25.0048 11320 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
00:52:25.0065 11320 pla - ok
00:52:25.0090 11320 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:52:25.0094 11320 PlugPlay - ok
00:52:25.0108 11320 [ 4FF73A83A25D0EEAD4F5E6C841BB6704 ] pnarp C:\Windows\system32\DRIVERS\pnarp.sys
00:52:25.0109 11320 pnarp - ok
00:52:25.0121 11320 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
00:52:25.0123 11320 PNRPAutoReg - ok
00:52:25.0128 11320 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
00:52:25.0130 11320 PNRPsvc - ok
00:52:25.0157 11320 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:52:25.0160 11320 PolicyAgent - ok
00:52:25.0176 11320 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
00:52:25.0178 11320 Power - ok
00:52:25.0191 11320 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:52:25.0193 11320 PptpMiniport - ok
00:52:25.0197 11320 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
00:52:25.0198 11320 Processor - ok
00:52:25.0225 11320 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
00:52:25.0228 11320 ProfSvc - ok
00:52:25.0233 11320 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:52:25.0234 11320 ProtectedStorage - ok
00:52:25.0248 11320 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
00:52:25.0249 11320 Psched - ok
00:52:25.0259 11320 [ 9A68A89F10F283A23AFEE2A1BFE4BFFB ] purendis C:\Windows\system32\DRIVERS\purendis.sys
00:52:25.0261 11320 purendis - ok
00:52:25.0288 11320 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
00:52:25.0306 11320 ql2300 - ok
00:52:25.0322 11320 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
00:52:25.0324 11320 ql40xx - ok
00:52:25.0336 11320 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
00:52:25.0339 11320 QWAVE - ok
00:52:25.0353 11320 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:52:25.0355 11320 QWAVEdrv - ok
00:52:25.0369 11320 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:52:25.0370 11320 RasAcd - ok
00:52:25.0392 11320 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
00:52:25.0393 11320 RasAgileVpn - ok
00:52:25.0400 11320 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
00:52:25.0402 11320 RasAuto - ok
00:52:25.0415 11320 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:52:25.0417 11320 Rasl2tp - ok
00:52:25.0437 11320 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
00:52:25.0440 11320 RasMan - ok
00:52:25.0447 11320 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:52:25.0448 11320 RasPppoe - ok
00:52:25.0462 11320 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:52:25.0464 11320 RasSstp - ok
00:52:25.0472 11320 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:52:25.0474 11320 rdbss - ok
00:52:25.0485 11320 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
00:52:25.0486 11320 rdpbus - ok
00:52:25.0500 11320 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:52:25.0501 11320 RDPCDD - ok
00:52:25.0519 11320 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:52:25.0519 11320 RDPENCDD - ok
00:52:25.0529 11320 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
00:52:25.0530 11320 RDPREFMP - ok
00:52:25.0555 11320 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:52:25.0557 11320 RDPWD - ok
00:52:25.0570 11320 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
00:52:25.0571 11320 rdyboost - ok
00:52:25.0586 11320 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
00:52:25.0587 11320 RemoteAccess - ok
00:52:25.0600 11320 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:52:25.0602 11320 RemoteRegistry - ok
00:52:25.0625 11320 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
00:52:25.0627 11320 RpcEptMapper - ok
00:52:25.0637 11320 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
00:52:25.0639 11320 RpcLocator - ok
00:52:25.0656 11320 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
00:52:25.0658 11320 RpcSs - ok
00:52:25.0669 11320 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:52:25.0671 11320 rspndr - ok
00:52:25.0678 11320 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
00:52:25.0679 11320 SamSs - ok
00:52:25.0690 11320 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:52:25.0692 11320 sbp2port - ok
00:52:25.0705 11320 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:52:25.0707 11320 SCardSvr - ok
00:52:25.0745 11320 [ 8475E746EB72D04F1015E6F091F50E09 ] SCBackService C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe
00:52:25.0748 11320 SCBackService - ok
00:52:25.0754 11320 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
00:52:25.0755 11320 scfilter - ok
00:52:25.0776 11320 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
00:52:25.0793 11320 Schedule - ok
00:52:25.0812 11320 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
00:52:25.0812 11320 SCPolicySvc - ok
00:52:25.0826 11320 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:52:25.0829 11320 SDRSVC - ok
00:52:25.0872 11320 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
00:52:25.0874 11320 SeaPort - ok
00:52:25.0883 11320 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:52:25.0884 11320 secdrv - ok
00:52:25.0893 11320 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
00:52:25.0895 11320 seclogon - ok
00:52:25.0905 11320 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
00:52:25.0907 11320 SENS - ok
00:52:25.0917 11320 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
00:52:25.0919 11320 SensrSvc - ok
00:52:25.0935 11320 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
00:52:25.0936 11320 Serenum - ok
00:52:25.0947 11320 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
00:52:25.0949 11320 Serial - ok
00:52:25.0961 11320 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
00:52:25.0963 11320 sermouse - ok
00:52:25.0979 11320 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
00:52:25.0982 11320 SessionEnv - ok
00:52:25.0985 11320 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
00:52:25.0986 11320 sffdisk - ok
00:52:25.0989 11320 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:52:25.0989 11320 sffp_mmc - ok
00:52:25.0993 11320 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
00:52:25.0994 11320 sffp_sd - ok
00:52:26.0000 11320 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
00:52:26.0001 11320 sfloppy - ok
00:52:26.0045 11320 [ B2F21560016B3C200FC34F2BD13DE469 ] Sftfs C:\Windows\system32\DRIVERS\Sftfswin7.sys
00:52:26.0050 11320 Sftfs - ok
00:52:26.0066 11320 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
00:52:26.0069 11320 sftlist - ok
00:52:26.0083 11320 [ AD9449F3BF407DBD1742A465F2163847 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaywin7.sys
00:52:26.0086 11320 Sftplay - ok
00:52:26.0095 11320 [ 78A1496BA75C7D5700CECB77DDD291BB ] Sftredir C:\Windows\system32\DRIVERS\Sftredirwin7.sys
00:52:26.0096 11320 Sftredir - ok
00:52:26.0118 11320 [ DA674FD0164D64BD4980A619410D57E3 ] Sftvol C:\Windows\system32\DRIVERS\Sftvolwin7.sys
00:52:26.0120 11320 Sftvol - ok
00:52:26.0133 11320 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
00:52:26.0135 11320 sftvsa - ok
00:52:26.0151 11320 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:52:26.0153 11320 SharedAccess - ok
00:52:26.0163 11320 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:52:26.0166 11320 ShellHWDetection - ok
00:52:26.0181 11320 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
00:52:26.0183 11320 SiSRaid2 - ok
00:52:26.0193 11320 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
00:52:26.0196 11320 SiSRaid4 - ok
00:52:26.0277 11320 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
00:52:26.0311 11320 Skype C2C Service - ok
00:52:26.0339 11320 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
00:52:26.0341 11320 SkypeUpdate - ok
00:52:26.0377 11320 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
00:52:26.0377 11320 SmartDefragDriver - ok
00:52:26.0398 11320 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:52:26.0399 11320 Smb - ok
00:52:26.0468 11320 [ E1B01A2150CF5E2CD5BED9A6478BF158 ] SmoothPingProxy C:\Program Files (x86)\Smoothping Elite\SmoothPingProxy.exe
00:52:26.0503 11320 SmoothPingProxy - ok
00:52:26.0513 11320 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:52:26.0514 11320 SNMPTRAP - ok
00:52:26.0520 11320 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
00:52:26.0521 11320 spldr - ok
00:52:26.0545 11320 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
00:52:26.0549 11320 Spooler - ok
00:52:26.0597 11320 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
00:52:26.0635 11320 sppsvc - ok
00:52:26.0646 11320 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
00:52:26.0648 11320 sppuinotify - ok
00:52:26.0665 11320 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
00:52:26.0668 11320 srv - ok
00:52:26.0684 11320 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:52:26.0687 11320 srv2 - ok
00:52:26.0704 11320 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:52:26.0706 11320 srvnet - ok
00:52:26.0730 11320 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
00:52:26.0732 11320 ssadbus - ok
00:52:26.0745 11320 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
00:52:26.0747 11320 ssadmdfl - ok
00:52:26.0764 11320 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
00:52:26.0766 11320 ssadmdm - ok
00:52:26.0795 11320 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:52:26.0797 11320 SSDPSRV - ok
00:52:26.0809 11320 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:52:26.0811 11320 SstpSvc - ok
00:52:26.0843 11320 [ 1CFA4A1F3C7BB4C8F299E00428EB8677 ] SSUService C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
00:52:26.0845 11320 SSUService - ok
00:52:26.0853 11320 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
00:52:26.0855 11320 stexstor - ok
00:52:26.0885 11320 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
00:52:26.0887 11320 StillCam - ok
00:52:26.0900 11320 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
00:52:26.0904 11320 stisvc - ok
00:52:26.0911 11320 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
00:52:26.0912 11320 swenum - ok
00:52:26.0926 11320 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
00:52:26.0930 11320 swprv - ok
00:52:26.0959 11320 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
00:52:26.0985 11320 SysMain - ok
00:52:26.0994 11320 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:52:26.0996 11320 TabletInputService - ok
00:52:27.0010 11320 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
00:52:27.0013 11320 TapiSrv - ok
00:52:27.0025 11320 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
00:52:27.0027 11320 TBS - ok
00:52:27.0063 11320 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:52:27.0088 11320 Tcpip - ok
00:52:27.0130 11320 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
00:52:27.0137 11320 TCPIP6 - ok
00:52:27.0143 11320 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:52:27.0144 11320 tcpipreg - ok
00:52:27.0157 11320 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:52:27.0158 11320 TDPIPE - ok
00:52:27.0171 11320 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:52:27.0172 11320 TDTCP - ok
00:52:27.0187 11320 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:52:27.0189 11320 tdx - ok
00:52:27.0276 11320 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
00:52:27.0305 11320 TeamViewer7 - ok
00:52:27.0313 11320 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
00:52:27.0315 11320 TermDD - ok
00:52:27.0334 11320 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
00:52:27.0339 11320 TermService - ok
00:52:27.0345 11320 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
00:52:27.0347 11320 Themes - ok
00:52:27.0355 11320 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
00:52:27.0356 11320 THREADORDER - ok
00:52:27.0363 11320 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
00:52:27.0366 11320 TrkWks - ok
00:52:27.0394 11320 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:52:27.0395 11320 TrustedInstaller - ok
00:52:27.0411 11320 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:52:27.0414 11320 tssecsrv - ok
00:52:27.0426 11320 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
00:52:27.0427 11320 TsUsbFlt - ok
00:52:27.0430 11320 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
00:52:27.0431 11320 TsUsbGD - ok
00:52:27.0451 11320 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:52:27.0453 11320 tunnel - ok
00:52:27.0462 11320 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
00:52:27.0464 11320 uagp35 - ok
00:52:27.0479 11320 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:52:27.0481 11320 udfs - ok
00:52:27.0496 11320 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:52:27.0498 11320 UI0Detect - ok
00:52:27.0508 11320 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:52:27.0509 11320 uliagpkx - ok
00:52:27.0520 11320 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:52:27.0522 11320 umbus - ok
00:52:27.0531 11320 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
00:52:27.0532 11320 UmPass - ok
00:52:27.0572 11320 [ 0F9E1BC7E2BEA1A4108EC9736CF0C2D9 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:52:27.0574 11320 UNS - ok
00:52:27.0589 11320 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
00:52:27.0593 11320 upnphost - ok
00:52:27.0632 11320 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
00:52:27.0634 11320 USBAAPL64 - ok
00:52:27.0660 11320 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
00:52:27.0662 11320 usbaudio - ok
00:52:27.0678 11320 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:52:27.0680 11320 usbccgp - ok
00:52:27.0694 11320 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:52:27.0696 11320 usbcir - ok
00:52:27.0715 11320 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
00:52:27.0716 11320 usbehci - ok
00:52:27.0730 11320 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:52:27.0733 11320 usbhub - ok
00:52:27.0741 11320 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
00:52:27.0742 11320 usbohci - ok
00:52:27.0755 11320 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
00:52:27.0756 11320 usbprint - ok
00:52:27.0766 11320 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:52:27.0768 11320 USBSTOR - ok
00:52:27.0777 11320 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
00:52:27.0779 11320 usbuhci - ok
00:52:27.0782 11320 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
00:52:27.0784 11320 UxSms - ok
00:52:27.0792 11320 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
00:52:27.0792 11320 VaultSvc - ok
00:52:27.0803 11320 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
00:52:27.0804 11320 vdrvroot - ok
00:52:27.0821 11320 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
00:52:27.0825 11320 vds - ok
00:52:27.0832 11320 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:52:27.0833 11320 vga - ok
00:52:27.0846 11320 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
00:52:27.0848 11320 VgaSave - ok
00:52:27.0852 11320 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
00:52:27.0854 11320 vhdmp - ok
00:52:27.0898 11320 [ E8AF45C4FE2457D003E1842806F38748 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
00:52:27.0924 11320 VIAHdAudAddService - ok
00:52:27.0932 11320 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
00:52:27.0933 11320 viaide - ok
00:52:27.0946 11320 [ 05D6657A9CCFD269D05D41BFFDCE9498 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
00:52:27.0949 11320 VIAKaraokeService - ok
00:52:27.0969 11320 [ FF7C6E015AA32FC6BE0AEF582B802332 ] VirtDiskBus C:\Windows\system32\DRIVERS\VirtDiskBus64.sys
00:52:27.0971 11320 VirtDiskBus - ok
00:52:27.0981 11320 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
00:52:27.0983 11320 volmgr - ok
00:52:27.0991 11320 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
00:52:27.0993 11320 volmgrx - ok
00:52:27.0999 11320 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
00:52:28.0001 11320 volsnap - ok
00:52:28.0016 11320 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
00:52:28.0018 11320 vsmraid - ok
00:52:28.0044 11320 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
00:52:28.0070 11320 VSS - ok
00:52:28.0133 11320 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
00:52:28.0137 11320 vToolbarUpdater12.2.6 - ok
00:52:28.0151 11320 [ 316A1762BD41C3DB06EB484527838E2D ] VUSB3HUB C:\Windows\system32\DRIVERS\ViaHub3.sys
00:52:28.0153 11320 VUSB3HUB - ok
00:52:28.0162 11320 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
00:52:28.0163 11320 vwifibus - ok
00:52:28.0170 11320 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
00:52:28.0172 11320 vwififlt - ok
00:52:28.0198 11320 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
00:52:28.0201 11320 W32Time - ok
00:52:28.0213 11320 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
00:52:28.0214 11320 WacomPen - ok
00:52:28.0235 11320 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
00:52:28.0237 11320 WANARP - ok
00:52:28.0240 11320 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
00:52:28.0240 11320 Wanarpv6 - ok
00:52:28.0271 11320 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
00:52:28.0288 11320 WatAdminSvc - ok
00:52:28.0310 11320 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
00:52:28.0328 11320 wbengine - ok
00:52:28.0337 11320 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
00:52:28.0339 11320 WbioSrvc - ok
00:52:28.0347 11320 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
00:52:28.0350 11320 wcncsvc - ok
00:52:28.0359 11320 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:52:28.0362 11320 WcsPlugInService - ok
00:52:28.0368 11320 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
00:52:28.0369 11320 Wd - ok
00:52:28.0386 11320 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
00:52:28.0390 11320 Wdf01000 - ok
00:52:28.0396 11320 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
00:52:28.0398 11320 WdiServiceHost - ok
00:52:28.0401 11320 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
00:52:28.0402 11320 WdiSystemHost - ok
00:52:28.0415 11320 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
00:52:28.0418 11320 WebClient - ok
00:52:28.0428 11320 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
00:52:28.0431 11320 Wecsvc - ok
00:52:28.0447 11320 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
00:52:28.0449 11320 wercplsupport - ok
00:52:28.0459 11320 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
00:52:28.0461 11320 WerSvc - ok
00:52:28.0471 11320 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
00:52:28.0472 11320 WfpLwf - ok
00:52:28.0485 11320 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
00:52:28.0487 11320 WIMMount - ok
00:52:28.0499 11320 WinDefend - ok
00:52:28.0504 11320 WinHttpAutoProxySvc - ok
00:52:28.0544 11320 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
00:52:28.0546 11320 Winmgmt - ok
00:52:28.0575 11320 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
00:52:28.0601 11320 WinRM - ok
00:52:28.0626 11320 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
00:52:28.0628 11320 WinUsb - ok
00:52:28.0647 11320 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
00:52:28.0653 11320 Wlansvc - ok
00:52:28.0700 11320 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:52:28.0701 11320 wlcrasvc - ok
00:52:28.0739 11320 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:52:28.0765 11320 wlidsvc - ok
00:52:28.0777 11320 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
00:52:28.0777 11320 WmiAcpi - ok
00:52:28.0792 11320 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
00:52:28.0794 11320 wmiApSrv - ok
00:52:28.0797 11320 WMPNetworkSvc - ok
00:52:28.0806 11320 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
00:52:28.0808 11320 WPCSvc - ok
00:52:28.0814 11320 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:52:28.0817 11320 WPDBusEnum - ok
00:52:28.0822 11320 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:52:28.0823 11320 ws2ifsl - ok
00:52:28.0829 11320 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
00:52:28.0832 11320 wscsvc - ok
00:52:28.0866 11320 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
00:52:28.0867 11320 WSDPrintDevice - ok
00:52:28.0871 11320 WSearch - ok
00:52:28.0927 11320 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
00:52:28.0961 11320 wuauserv - ok
00:52:28.0970 11320 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
00:52:28.0972 11320 WudfPf - ok
00:52:28.0995 11320 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:52:28.0996 11320 WUDFRd - ok
00:52:29.0013 11320 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:52:29.0016 11320 wudfsvc - ok
00:52:29.0029 11320 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
00:52:29.0032 11320 WwanSvc - ok
00:52:29.0209 11320 X6va005 - ok
00:52:29.0279 11320 [ FFDB0ED9D1D453F7F19DE55FE0706195 ] xhcdrv C:\Windows\system32\DRIVERS\xhcdrv.sys
00:52:29.0281 11320 xhcdrv - ok
00:52:29.0287 11320 xsherlock - ok
00:52:29.0290 11320 xspirit - ok
00:52:29.0295 11320 ================ Scan global ===============================
00:52:29.0308 11320 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:52:29.0333 11320 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:52:29.0339 11320 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:52:29.0346 11320 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:52:29.0361 11320 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:52:29.0364 11320 [Global] - ok
00:52:29.0365 11320 ================ Scan MBR ==================================
00:52:29.0374 11320 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:52:29.0486 11320 \Device\Harddisk0\DR0 - ok
00:52:29.0487 11320 ================ Scan VBR ==================================
00:52:29.0489 11320 [ 66A6F16544DE28A7C68ECB4A5ED0EDBE ] \Device\Harddisk0\DR0\Partition1
00:52:29.0490 11320 \Device\Harddisk0\DR0\Partition1 - ok
00:52:29.0502 11320 [ 09F430D7E646A7B5A60484C1883DC5B2 ] \Device\Harddisk0\DR0\Partition2
00:52:29.0503 11320 \Device\Harddisk0\DR0\Partition2 - ok
00:52:29.0504 11320 ============================================================
00:52:29.0504 11320 Scan finished
00:52:29.0504 11320 ============================================================
00:52:29.0511 11592 Detected object count: 0
00:52:29.0511 11592 Actual detected object count: 0
00:52:56.0883 1312 ============================================================
00:52:56.0883 1312 Scan started
00:52:56.0883 1312 Mode: Manual; TDLFS;
00:52:56.0883 1312 ============================================================
00:52:56.0990 1312 ================ Scan system memory ========================
00:52:56.0990 1312 System memory - ok
00:52:56.0991 1312 ================ Scan services =============================
00:52:57.0045 1312 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
00:52:57.0046 1312 1394ohci - ok
00:52:57.0057 1312 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
00:52:57.0059 1312 ACPI - ok
00:52:57.0064 1312 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
00:52:57.0064 1312 AcpiPmi - ok
00:52:57.0116 1312 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:52:57.0117 1312 AdobeARMservice - ok
00:52:57.0139 1312 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
00:52:57.0141 1312 adp94xx - ok
00:52:57.0157 1312 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
00:52:57.0158 1312 adpahci - ok
00:52:57.0171 1312 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
00:52:57.0172 1312 adpu320 - ok
00:52:57.0221 1312 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
00:52:57.0225 1312 AdvancedSystemCareService5 - ok
00:52:57.0232 1312 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:52:57.0233 1312 AeLookupSvc - ok
00:52:57.0248 1312 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
00:52:57.0250 1312 AFD - ok
00:52:57.0265 1312 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
00:52:57.0266 1312 agp440 - ok
00:52:57.0273 1312 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
00:52:57.0273 1312 ALG - ok
00:52:57.0285 1312 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
00:52:57.0285 1312 aliide - ok
00:52:57.0321 1312 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
00:52:57.0322 1312 AMD External Events Utility - ok
00:52:57.0326 1312 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
00:52:57.0326 1312 amdide - ok
00:52:57.0330 1312 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
00:52:57.0331 1312 AmdK8 - ok
00:52:57.0457 1312 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
00:52:57.0495 1312 amdkmdag - ok
00:52:57.0520 1312 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
00:52:57.0522 1312 amdkmdap - ok
00:52:57.0526 1312 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
00:52:57.0526 1312 AmdPPM - ok
00:52:57.0550 1312 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
00:52:57.0551 1312 amdsata - ok
00:52:57.0561 1312 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
00:52:57.0561 1312 amdsbs - ok
00:52:57.0572 1312 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
00:52:57.0573 1312 amdxata - ok
00:52:57.0588 1312 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
00:52:57.0589 1312 AppID - ok
00:52:57.0593 1312 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
00:52:57.0593 1312 AppIDSvc - ok
00:52:57.0608 1312 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
00:52:57.0608 1312 Appinfo - ok
00:52:57.0645 1312 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:52:57.0645 1312 Apple Mobile Device - ok
00:52:57.0652 1312 [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
00:52:57.0652 1312 AppleCharger - ok
00:52:57.0663 1312 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
00:52:57.0663 1312 AppleChargerSrv - ok
00:52:57.0698 1312 [ 52AD9ED5BD05E7801AF5EFD99652C74F ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
00:52:57.0701 1312 Application Updater - ok
00:52:57.0716 1312 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
00:52:57.0717 1312 arc - ok
00:52:57.0730 1312 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
00:52:57.0730 1312 arcsas - ok
00:52:57.0791 1312 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:52:57.0791 1312 aspnet_state - ok
00:52:57.0799 1312 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:52:57.0799 1312 AsyncMac - ok
00:52:57.0808 1312 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
00:52:57.0808 1312 atapi - ok
00:52:57.0842 1312 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
00:52:57.0843 1312 AtiHDAudioService - ok
00:52:57.0859 1312 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:52:57.0861 1312 AudioEndpointBuilder - ok
00:52:57.0868 1312 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
00:52:57.0871 1312 AudioSrv - ok
00:52:57.0899 1312 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
00:52:57.0900 1312 avgtp - ok
00:52:57.0904 1312 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
00:52:57.0905 1312 AxInstSV - ok
00:52:57.0917 1312 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
00:52:57.0919 1312 b06bdrv - ok
00:52:57.0929 1312 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
00:52:57.0930 1312 b57nd60a - ok
00:52:57.0955 1312 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
00:52:57.0956 1312 BBSvc - ok
00:52:57.0959 1312 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
00:52:57.0960 1312 BDESVC - ok
00:52:57.0970 1312 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
00:52:57.0970 1312 Beep - ok
00:52:57.0996 1312 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
00:52:57.0999 1312 BFE - ok
00:52:58.0019 1312 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
00:52:58.0022 1312 BITS - ok
00:52:58.0031 1312 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
00:52:58.0031 1312 blbdrive - ok
00:52:58.0073 1312 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:52:58.0075 1312 Bonjour Service - ok
00:52:58.0096 1312 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:52:58.0097 1312 bowser - ok
00:52:58.0100 1312 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
00:52:58.0101 1312 BrFiltLo - ok
00:52:58.0107 1312 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
00:52:58.0108 1312 BrFiltUp - ok
00:52:58.0137 1312 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
00:52:58.0138 1312 Browser - ok
00:52:58.0151 1312 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
00:52:58.0153 1312 Brserid - ok
00:52:58.0157 1312 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
00:52:58.0157 1312 BrSerWdm - ok
00:52:58.0160 1312 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
00:52:58.0160 1312 BrUsbMdm - ok
00:52:58.0164 1312 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
00:52:58.0164 1312 BrUsbSer - ok
00:52:58.0169 1312 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
00:52:58.0169 1312 BTHMODEM - ok
00:52:58.0175 1312 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
00:52:58.0176 1312 bthserv - ok
00:52:58.0189 1312 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:52:58.0189 1312 cdfs - ok
00:52:58.0202 1312 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:52:58.0203 1312 cdrom - ok
00:52:58.0213 1312 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
00:52:58.0213 1312 CertPropSvc - ok
00:52:58.0220 1312 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
00:52:58.0220 1312 circlass - ok
00:52:58.0238 1312 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
00:52:58.0240 1312 CLFS - ok
00:52:58.0272 1312 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:52:58.0272 1312 clr_optimization_v2.0.50727_32 - ok
00:52:58.0300 1312 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:52:58.0301 1312 clr_optimization_v2.0.50727_64 - ok
00:52:58.0324 1312 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:52:58.0325 1312 clr_optimization_v4.0.30319_32 - ok
00:52:58.0332 1312 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:52:58.0333 1312 clr_optimization_v4.0.30319_64 - ok
00:52:58.0338 1312 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
00:52:58.0338 1312 CmBatt - ok
00:52:58.0345 1312 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:52:58.0345 1312 cmdide - ok
00:52:58.0376 1312 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
00:52:58.0378 1312 CNG - ok
00:52:58.0386 1312 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
00:52:58.0387 1312 Compbatt - ok
00:52:58.0419 1312 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
00:52:58.0420 1312 CompositeBus - ok
00:52:58.0426 1312 COMSysApp - ok
00:52:58.0451 1312 [ 75DBD5DB9892D7451D0429BEC1AABE1A ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
00:52:58.0452 1312 cpuz135 - ok
00:52:58.0459 1312 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
00:52:58.0460 1312 crcdisk - ok
00:52:58.0484 1312 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:52:58.0485 1312 CryptSvc - ok
00:52:58.0519 1312 [ DDAC7684F4BC3F655ED31D8AA494E9AB ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
00:52:58.0522 1312 cvhsvc - ok
00:52:58.0540 1312 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
00:52:58.0543 1312 DcomLaunch - ok
00:52:58.0561 1312 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
00:52:58.0563 1312 defragsvc - ok
00:52:58.0572 1312 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:52:58.0573 1312 DfsC - ok
00:52:58.0582 1312 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
00:52:58.0584 1312 Dhcp - ok
00:52:58.0593 1312 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
00:52:58.0593 1312 discache - ok
00:52:58.0597 1312 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
00:52:58.0597 1312 Disk - ok
00:52:58.0617 1312 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:52:58.0618 1312 Dnscache - ok
00:52:58.0623 1312 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
00:52:58.0624 1312 dot3svc - ok
00:52:58.0635 1312 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
00:52:58.0636 1312 DPS - ok
00:52:58.0656 1312 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:52:58.0656 1312 drmkaud - ok
00:52:58.0673 1312 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:52:58.0677 1312 DXGKrnl - ok
00:52:58.0680 1312 EagleX64 - ok
00:52:58.0694 1312 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
00:52:58.0695 1312 EapHost - ok
00:52:58.0736 1312 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
00:52:58.0748 1312 ebdrv - ok
00:52:58.0768 1312 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
00:52:58.0769 1312 EFS - ok
00:52:58.0798 1312 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
00:52:58.0801 1312 ehRecvr - ok
00:52:58.0812 1312 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
00:52:58.0812 1312 ehSched - ok
00:52:58.0827 1312 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
00:52:58.0829 1312 elxstor - ok
00:52:58.0841 1312 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
00:52:58.0841 1312 ErrDev - ok
00:52:58.0856 1312 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
00:52:58.0858 1312 EventSystem - ok
00:52:58.0863 1312 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
00:52:58.0864 1312 exfat - ok
00:52:58.0872 1312 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:52:58.0873 1312 fastfat - ok
00:52:58.0892 1312 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
00:52:58.0895 1312 Fax - ok
00:52:58.0899 1312 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
00:52:58.0899 1312 fdc - ok
00:52:58.0907 1312 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
00:52:58.0908 1312 fdPHost - ok
00:52:58.0919 1312 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
00:52:58.0920 1312 FDResPub - ok
00:52:58.0940 1312 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:52:58.0940 1312 FileInfo - ok
00:52:58.0951 1312 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:52:58.0952 1312 Filetrace - ok
00:52:58.0955 1312 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
00:52:58.0956 1312 flpydisk - ok
00:52:58.0967 1312 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:52:58.0968 1312 FltMgr - ok
00:52:58.0992 1312 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
00:52:58.0997 1312 FontCache - ok
00:52:59.0027 1312 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:52:59.0028 1312 FontCache3.0.0.0 - ok
00:52:59.0036 1312 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
00:52:59.0036 1312 FsDepends - ok
00:52:59.0053 1312 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
00:52:59.0053 1312 fssfltr - ok
00:52:59.0088 1312 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
00:52:59.0093 1312 fsssvc - ok
00:52:59.0111 1312 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:52:59.0112 1312 Fs_Rec - ok
00:52:59.0124 1312 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
00:52:59.0125 1312 fvevol - ok
00:52:59.0139 1312 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
00:52:59.0140 1312 gagp30kx - ok
00:52:59.0153 1312 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
00:52:59.0154 1312 gdrv - ok
00:52:59.0177 1312 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:52:59.0177 1312 GEARAspiWDM - ok
00:52:59.0190 1312 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
00:52:59.0193 1312 gpsvc - ok
00:52:59.0203 1312 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
00:52:59.0203 1312 GVTDrv64 - ok
00:52:59.0218 1312 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
00:52:59.0219 1312 hcw85cir - ok
00:52:59.0238 1312 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:52:59.0239 1312 HdAudAddService - ok
00:52:59.0248 1312 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
00:52:59.0249 1312 HDAudBus - ok
00:52:59.0252 1312 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
00:52:59.0252 1312 HidBatt - ok
00:52:59.0256 1312 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
00:52:59.0257 1312 HidBth - ok
00:52:59.0260 1312 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
00:52:59.0260 1312 HidIr - ok
00:52:59.0270 1312 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
00:52:59.0271 1312 hidserv - ok
00:52:59.0298 1312 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
00:52:59.0298 1312 HidUsb - ok
00:52:59.0305 1312 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
00:52:59.0306 1312 hkmsvc - ok
00:52:59.0318 1312 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:52:59.0319 1312 HomeGroupListener - ok
00:52:59.0328 1312 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:52:59.0329 1312 HomeGroupProvider - ok
00:52:59.0342 1312 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
00:52:59.0343 1312 HpSAMD - ok
00:52:59.0359 1312 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:52:59.0362 1312 HTTP - ok
00:52:59.0367 1312 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
00:52:59.0367 1312 hwpolicy - ok
00:52:59.0374 1312 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
00:52:59.0375 1312 i8042prt - ok
00:52:59.0399 1312 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
00:52:59.0401 1312 iaStor - ok
00:52:59.0423 1312 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:52:59.0424 1312 IAStorDataMgrSvc - ok
00:52:59.0451 1312 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
00:52:59.0453 1312 iaStorV - ok
00:52:59.0476 1312 [ 33D4D4A24791587E83F7EE05A446FB7E ] ICCS C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
00:52:59.0477 1312 ICCS - ok
00:52:59.0501 1312 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:52:59.0502 1312 IDriverT - ok
00:52:59.0542 1312 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:52:59.0545 1312 idsvc - ok
00:52:59.0556 1312 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
00:52:59.0556 1312 iirsp - ok
00:52:59.0576 1312 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
00:52:59.0580 1312 IKEEXT - ok
00:52:59.0595 1312 [ 2D66067C7A8A0112156BCD1C0BAA7042 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
00:52:59.0597 1312 Intel® Capability Licensing Service Interface - ok
00:52:59.0612 1312 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
00:52:59.0612 1312 intelide - ok
00:52:59.0635 1312 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:52:59.0635 1312 intelppm - ok
00:52:59.0647 1312 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:52:59.0648 1312 IPBusEnum - ok
00:52:59.0660 1312 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:52:59.0661 1312 IpFilterDriver - ok
00:52:59.0680 1312 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:52:59.0682 1312 iphlpsvc - ok
00:52:59.0686 1312 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
00:52:59.0687 1312 IPMIDRV - ok
00:52:59.0690 1312 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
00:52:59.0691 1312 IPNAT - ok
00:52:59.0720 1312 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
00:52:59.0724 1312 iPod Service - ok
00:52:59.0737 1312 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:52:59.0737 1312 IRENUM - ok
00:52:59.0749 1312 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:52:59.0749 1312 isapnp - ok
00:52:59.0762 1312 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
00:52:59.0763 1312 iScsiPrt - ok
00:52:59.0778 1312 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
00:52:59.0778 1312 iusb3hcs - ok
00:52:59.0792 1312 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
00:52:59.0794 1312 iusb3hub - ok
00:52:59.0808 1312 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
00:52:59.0811 1312 iusb3xhc - ok
00:52:59.0830 1312 [ 166FC0B36842135BC2D3C32DF70ED0D6 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
00:52:59.0831 1312 jhi_service - ok
00:52:59.0839 1312 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:52:59.0839 1312 kbdclass - ok
00:52:59.0844 1312 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:52:59.0844 1312 kbdhid - ok
00:52:59.0851 1312 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
00:52:59.0852 1312 KeyIso - ok
00:52:59.0893 1312 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:52:59.0894 1312 KSecDD - ok
00:52:59.0918 1312 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
00:52:59.0919 1312 KSecPkg - ok
00:52:59.0928 1312 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
00:52:59.0928 1312 ksthunk - ok
00:52:59.0940 1312 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
00:52:59.0942 1312 KtmRm - ok
00:52:59.0946 1312 [ B8040D3B97B16B89701E31A17353856C ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
00:52:59.0947 1312 L1C - ok
00:52:59.0967 1312 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
00:52:59.0968 1312 LanmanServer - ok
00:52:59.0984 1312 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:52:59.0985 1312 LanmanWorkstation - ok
00:52:59.0996 1312 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:52:59.0996 1312 lltdio - ok
00:53:00.0011 1312 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:53:00.0012 1312 lltdsvc - ok
00:53:00.0026 1312 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
00:53:00.0027 1312 lmhosts - ok
00:53:00.0046 1312 [ C56E64BA70DC822B84D100A6F8D690D3 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:53:00.0047 1312 LMS - ok
00:53:00.0059 1312 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
00:53:00.0059 1312 LSI_FC - ok
00:53:00.0072 1312 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
00:53:00.0073 1312 LSI_SAS - ok
00:53:00.0078 1312 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
00:53:00.0079 1312 LSI_SAS2 - ok
00:53:00.0083 1312 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
00:53:00.0084 1312 LSI_SCSI - ok
00:53:00.0095 1312 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
00:53:00.0096 1312 luafv - ok
00:53:00.0121 1312 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
00:53:00.0122 1312 MBAMProtector - ok
00:53:00.0153 1312 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
00:53:00.0155 1312 MBAMScheduler - ok
00:53:00.0177 1312 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
00:53:00.0180 1312 MBAMService - ok
00:53:00.0204 1312 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
00:53:00.0205 1312 Mcx2Svc - ok
00:53:00.0217 1312 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
00:53:00.0217 1312 megasas - ok
00:53:00.0228 1312 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
00:53:00.0229 1312 MegaSR - ok
00:53:00.0233 1312 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
00:53:00.0234 1312 MEIx64 - ok
00:53:00.0289 1312 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
00:53:00.0290 1312 Microsoft Office Groove Audit Service - ok
00:53:00.0307 1312 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
00:53:00.0307 1312 MMCSS - ok
00:53:00.0318 1312 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
00:53:00.0318 1312 Modem - ok
00:53:00.0331 1312 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:53:00.0331 1312 monitor - ok
00:53:00.0338 1312 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:53:00.0339 1312 mouclass - ok
00:53:00.0349 1312 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:53:00.0350 1312 mouhid - ok
00:53:00.0362 1312 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
00:53:00.0362 1312 mountmgr - ok
00:53:00.0381 1312 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
00:53:00.0382 1312 MpFilter - ok
00:53:00.0395 1312 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
00:53:00.0396 1312 mpio - ok
00:53:00.0414 1312 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:53:00.0414 1312 mpsdrv - ok
00:53:00.0433 1312 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
00:53:00.0437 1312 MpsSvc - ok
00:53:00.0452 1312 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:53:00.0453 1312 MRxDAV - ok
00:53:00.0466 1312 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:53:00.0467 1312 mrxsmb - ok
00:53:00.0474 1312 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:53:00.0475 1312 mrxsmb10 - ok
00:53:00.0479 1312 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:53:00.0480 1312 mrxsmb20 - ok
00:53:00.0493 1312 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
00:53:00.0494 1312 msahci - ok
00:53:00.0506 1312 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:53:00.0507 1312 msdsm - ok
00:53:00.0517 1312 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
00:53:00.0518 1312 MSDTC - ok
00:53:00.0529 1312 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:53:00.0529 1312 Msfs - ok
00:53:00.0537 1312 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
00:53:00.0538 1312 mshidkmdf - ok
00:53:00.0548 1312 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:53:00.0549 1312 msisadrv - ok
00:53:00.0558 1312 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:53:00.0559 1312 MSiSCSI - ok
00:53:00.0562 1312 msiserver - ok
00:53:00.0572 1312 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:53:00.0572 1312 MSKSSRV - ok
00:53:00.0605 1312 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
00:53:00.0605 1312 MsMpSvc - ok
00:53:00.0617 1312 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:53:00.0617 1312 MSPCLOCK - ok
00:53:00.0622 1312 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:53:00.0622 1312 MSPQM - ok
00:53:00.0634 1312 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:53:00.0635 1312 MsRPC - ok
00:53:00.0647 1312 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
00:53:00.0648 1312 mssmbios - ok
00:53:00.0651 1312 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:53:00.0651 1312 MSTEE - ok
00:53:00.0658 1312 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
00:53:00.0658 1312 MTConfig - ok
00:53:00.0661 1312 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
00:53:00.0661 1312 Mup - ok
00:53:00.0681 1312 [ 97CCA67FCDABB8441149F04B34ABF510 ] mvs91xx C:\Windows\system32\DRIVERS\mvs91xx.sys
00:53:00.0682 1312 mvs91xx - ok
00:53:00.0705 1312 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
00:53:00.0708 1312 napagent - ok
00:53:00.0724 1312 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:53:00.0726 1312 NativeWifiP - ok
00:53:00.0758 1312 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
00:53:00.0762 1312 NDIS - ok
00:53:00.0769 1312 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
00:53:00.0770 1312 NdisCap - ok
00:53:00.0785 1312 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:53:00.0785 1312 NdisTapi - ok
00:53:00.0795 1312 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:53:00.0796 1312 Ndisuio - ok
00:53:00.0804 1312 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:53:00.0805 1312 NdisWan - ok
00:53:00.0812 1312 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:53:00.0813 1312 NDProxy - ok
00:53:00.0819 1312 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:53:00.0820 1312 NetBIOS - ok
00:53:00.0827 1312 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
00:53:00.0828 1312 NetBT - ok
00:53:00.0831 1312 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
00:53:00.0832 1312 Netlogon - ok
00:53:00.0859 1312 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
00:53:00.0861 1312 Netman - ok
00:53:00.0881 1312 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:53:00.0882 1312 NetMsmqActivator - ok
00:53:00.0886 1312 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:53:00.0887 1312 NetPipeActivator - ok
00:53:00.0905 1312 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
00:53:00.0907 1312 netprofm - ok
00:53:00.0935 1312 [ D66596DB0A0739A89C25B590CE36D628 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
00:53:00.0938 1312 netr28x - ok
00:53:00.0941 1312 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:53:00.0942 1312 NetTcpActivator - ok
00:53:00.0945 1312 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:53:00.0946 1312 NetTcpPortSharing - ok
00:53:00.0961 1312 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
00:53:00.0962 1312 nfrd960 - ok
00:53:00.0980 1312 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
00:53:00.0981 1312 NisDrv - ok
00:53:01.0000 1312 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
00:53:01.0002 1312 NisSrv - ok
00:53:01.0011 1312 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:53:01.0013 1312 NlaSvc - ok
00:53:01.0029 1312 [ CD2FE9C33CFD0FE0AF124E05907E5C3D ] nmservice C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
00:53:01.0031 1312 nmservice - ok
00:53:01.0040 1312 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:53:01.0040 1312 Npfs - ok
00:53:01.0052 1312 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
00:53:01.0053 1312 nsi - ok
00:53:01.0058 1312 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:53:01.0059 1312 nsiproxy - ok
00:53:01.0095 1312 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:53:01.0101 1312 Ntfs - ok
00:53:01.0109 1312 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
00:53:01.0109 1312 Null - ok
00:53:01.0130 1312 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:53:01.0131 1312 nvraid - ok
00:53:01.0141 1312 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:53:01.0142 1312 nvstor - ok
00:53:01.0153 1312 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:53:01.0154 1312 nv_agp - ok
00:53:01.0200 1312 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
00:53:01.0202 1312 odserv - ok
00:53:01.0207 1312 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
00:53:01.0208 1312 ohci1394 - ok
00:53:01.0229 1312 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:53:01.0229 1312 ose - ok
00:53:01.0305 1312 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:53:01.0323 1312 osppsvc - ok
00:53:01.0356 1312 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
00:53:01.0357 1312 p2pimsvc - ok
00:53:01.0375 1312 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
00:53:01.0377 1312 p2psvc - ok
00:53:01.0391 1312 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
00:53:01.0392 1312 Parport - ok
00:53:01.0405 1312 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:53:01.0406 1312 partmgr - ok
00:53:01.0428 1312 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
00:53:01.0429 1312 PcaSvc - ok
00:53:01.0437 1312 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
00:53:01.0439 1312 pci - ok
00:53:01.0453 1312 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
00:53:01.0454 1312 pciide - ok
00:53:01.0464 1312 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
00:53:01.0465 1312 pcmcia - ok
00:53:01.0469 1312 PCTBD - ok
00:53:01.0497 1312 PCTCore - ok
00:53:01.0507 1312 pctDS - ok
00:53:01.0516 1312 pctEFA - ok
00:53:01.0555 1312 [ C4775E7F54F3CC6307B73462B1B802C6 ] PCTSD C:\Windows\system32\Drivers\PCTSD64.sys
00:53:01.0556 1312 PCTSD - ok
00:53:01.0572 1312 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
00:53:01.0572 1312 pcw - ok
00:53:01.0590 1312 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:53:01.0593 1312 PEAUTH - ok
00:53:01.0637 1312 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
00:53:01.0639 1312 PerfHost - ok
00:53:01.0667 1312 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
00:53:01.0673 1312 pla - ok
00:53:01.0700 1312 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:53:01.0702 1312 PlugPlay - ok
00:53:01.0717 1312 [ 4FF73A83A25D0EEAD4F5E6C841BB6704 ] pnarp C:\Windows\system32\DRIVERS\pnarp.sys
00:53:01.0718 1312 pnarp - ok
00:53:01.0730 1312 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
00:53:01.0731 1312 PNRPAutoReg - ok
00:53:01.0737 1312 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
00:53:01.0738 1312 PNRPsvc - ok
00:53:01.0766 1312 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:53:01.0768 1312 PolicyAgent - ok
00:53:01.0777 1312 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
00:53:01.0779 1312 Power - ok
00:53:01.0792 1312 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:53:01.0792 1312 PptpMiniport - ok
00:53:01.0797 1312 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
00:53:01.0797 1312 Processor - ok
00:53:01.0826 1312 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
00:53:01.0828 1312 ProfSvc - ok
00:53:01.0834 1312 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:53:01.0835 1312 ProtectedStorage - ok
00:53:01.0849 1312 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
00:53:01.0849 1312 Psched - ok
00:53:01.0860 1312 [ 9A68A89F10F283A23AFEE2A1BFE4BFFB ] purendis C:\Windows\system32\DRIVERS\purendis.sys
00:53:01.0861 1312 purendis - ok
00:53:01.0890 1312 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
00:53:01.0896 1312 ql2300 - ok
00:53:01.0907 1312 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
00:53:01.0907 1312 ql40xx - ok
00:53:01.0921 1312 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
00:53:01.0922 1312 QWAVE - ok
00:53:01.0938 1312 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:53:01.0938 1312 QWAVEdrv - ok
00:53:01.0953 1312 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:53:01.0953 1312 RasAcd - ok
00:53:01.0968 1312 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
00:53:01.0968 1312 RasAgileVpn - ok
00:53:01.0976 1312 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
00:53:01.0977 1312 RasAuto - ok
00:53:01.0983 1312 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:53:01.0984 1312 Rasl2tp - ok
00:53:01.0997 1312 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
00:53:01.0999 1312 RasMan - ok
00:53:02.0006 1312 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:53:02.0007 1312 RasPppoe - ok
00:53:02.0013 1312 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:53:02.0014 1312 RasSstp - ok
00:53:02.0023 1312 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:53:02.0024 1312 rdbss - ok
00:53:02.0036 1312 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
00:53:02.0036 1312 rdpbus - ok
00:53:02.0051 1312 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:53:02.0052 1312 RDPCDD - ok
00:53:02.0061 1312 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:53:02.0062 1312 RDPENCDD - ok
00:53:02.0072 1312 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
00:53:02.0072 1312 RDPREFMP - ok
00:53:02.0098 1312 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:53:02.0099 1312 RDPWD - ok
00:53:02.0113 1312 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
00:53:02.0114 1312 rdyboost - ok
00:53:02.0128 1312 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
00:53:02.0130 1312 RemoteAccess - ok
00:53:02.0141 1312 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:53:02.0142 1312 RemoteRegistry - ok
00:53:02.0159 1312 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
00:53:02.0160 1312 RpcEptMapper - ok
00:53:02.0180 1312 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
00:53:02.0180 1312 RpcLocator - ok
00:53:02.0198 1312 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
00:53:02.0201 1312 RpcSs - ok
00:53:02.0212 1312 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:53:02.0213 1312 rspndr - ok
00:53:02.0216 1312 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
00:53:02.0217 1312 SamSs - ok
00:53:02.0224 1312 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:53:02.0225 1312 sbp2port - ok
00:53:02.0229 1312 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:53:02.0231 1312 SCardSvr - ok
00:53:02.0263 1312 [ 8475E746EB72D04F1015E6F091F50E09 ] SCBackService C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe
00:53:02.0265 1312 SCBackService - ok
00:53:02.0271 1312 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
00:53:02.0272 1312 scfilter - ok
00:53:02.0294 1312 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
00:53:02.0299 1312 Schedule - ok
00:53:02.0321 1312 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
00:53:02.0322 1312 SCPolicySvc - ok
00:53:02.0344 1312 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:53:02.0346 1312 SDRSVC - ok
00:53:02.0382 1312 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
00:53:02.0383 1312 SeaPort - ok
00:53:02.0392 1312 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:53:02.0393 1312 secdrv - ok
00:53:02.0402 1312 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
00:53:02.0403 1312 seclogon - ok
00:53:02.0415 1312 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
00:53:02.0416 1312 SENS - ok
00:53:02.0426 1312 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
00:53:02.0427 1312 SensrSvc - ok
00:53:02.0436 1312 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
00:53:02.0437 1312 Serenum - ok
00:53:02.0448 1312 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
00:53:02.0449 1312 Serial - ok
00:53:02.0452 1312 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
00:53:02.0453 1312 sermouse - ok
00:53:02.0472 1312 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
00:53:02.0473 1312 SessionEnv - ok
00:53:02.0477 1312 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
00:53:02.0477 1312 sffdisk - ok
00:53:02.0481 1312 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:53:02.0481 1312 sffp_mmc - ok
00:53:02.0485 1312 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
00:53:02.0485 1312 sffp_sd - ok
00:53:02.0489 1312 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
00:53:02.0489 1312 sfloppy - ok
00:53:02.0521 1312 [ B2F21560016B3C200FC34F2BD13DE469 ] Sftfs C:\Windows\system32\DRIVERS\Sftfswin7.sys
00:53:02.0524 1312 Sftfs - ok
00:53:02.0542 1312 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
00:53:02.0544 1312 sftlist - ok
00:53:02.0559 1312 [ AD9449F3BF407DBD1742A465F2163847 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaywin7.sys
00:53:02.0560 1312 Sftplay - ok
00:53:02.0571 1312 [ 78A1496BA75C7D5700CECB77DDD291BB ] Sftredir C:\Windows\system32\DRIVERS\Sftredirwin7.sys
00:53:02.0571 1312 Sftredir - ok
00:53:02.0594 1312 [ DA674FD0164D64BD4980A619410D57E3 ] Sftvol C:\Windows\system32\DRIVERS\Sftvolwin7.sys
00:53:02.0595 1312 Sftvol - ok
00:53:02.0609 1312 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
00:53:02.0610 1312 sftvsa - ok
00:53:02.0627 1312 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:53:02.0628 1312 SharedAccess - ok
00:53:02.0639 1312 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:53:02.0642 1312 ShellHWDetection - ok
00:53:02.0649 1312 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
00:53:02.0649 1312 SiSRaid2 - ok
00:53:02.0661 1312 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
00:53:02.0662 1312 SiSRaid4 - ok
00:53:02.0736 1312 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
00:53:02.0747 1312 Skype C2C Service - ok
00:53:02.0791 1312 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
00:53:02.0791 1312 SkypeUpdate - ok
00:53:02.0820 1312 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
00:53:02.0820 1312 SmartDefragDriver - ok
00:53:02.0824 1312 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:53:02.0825 1312 Smb - ok
00:53:02.0895 1312 [ E1B01A2150CF5E2CD5BED9A6478BF158 ] SmoothPingProxy C:\Program Files (x86)\Smoothping Elite\SmoothPingProxy.exe
00:53:02.0903 1312 SmoothPingProxy - ok
00:53:02.0915 1312 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:53:02.0916 1312 SNMPTRAP - ok
00:53:02.0920 1312 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
00:53:02.0920 1312 spldr - ok
00:53:02.0946 1312 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
00:53:02.0949 1312 Spooler - ok
00:53:02.0990 1312 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
00:53:03.0004 1312 sppsvc - ok
00:53:03.0013 1312 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
00:53:03.0015 1312 sppuinotify - ok
00:53:03.0042 1312 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
00:53:03.0043 1312 srv - ok
00:53:03.0060 1312 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:53:03.0061 1312 srv2 - ok
00:53:03.0072 1312 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:53:03.0073 1312 srvnet - ok
00:53:03.0098 1312 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
00:53:03.0099 1312 ssadbus - ok
00:53:03.0113 1312 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
00:53:03.0114 1312 ssadmdfl - ok
00:53:03.0124 1312 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
00:53:03.0125 1312 ssadmdm - ok
00:53:03.0138 1312 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:53:03.0139 1312 SSDPSRV - ok
00:53:03.0152 1312 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:53:03.0153 1312 SstpSvc - ok
00:53:03.0178 1312 [ 1CFA4A1F3C7BB4C8F299E00428EB8677 ] SSUService C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
00:53:03.0179 1312 SSUService - ok
00:53:03.0188 1312 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
00:53:03.0188 1312 stexstor - ok
00:53:03.0212 1312 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
00:53:03.0212 1312 StillCam - ok
00:53:03.0226 1312 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
00:53:03.0229 1312 stisvc - ok
00:53:03.0237 1312 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
00:53:03.0237 1312 swenum - ok
00:53:03.0252 1312 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
00:53:03.0255 1312 swprv - ok
00:53:03.0285 1312 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
00:53:03.0293 1312 SysMain - ok
00:53:03.0312 1312 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:53:03.0313 1312 TabletInputService - ok
00:53:03.0336 1312 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
00:53:03.0338 1312 TapiSrv - ok
00:53:03.0351 1312 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
00:53:03.0352 1312 TBS - ok
00:53:03.0389 1312 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:53:03.0396 1312 Tcpip - ok
00:53:03.0423 1312 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
00:53:03.0430 1312 TCPIP6 - ok
00:53:03.0436 1312 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:53:03.0436 1312 tcpipreg - ok
00:53:03.0458 1312 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:53:03.0458 1312 TDPIPE - ok
00:53:03.0472 1312 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:53:03.0473 1312 TDTCP - ok
00:53:03.0488 1312 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:53:03.0489 1312 tdx - ok
00:53:03.0561 1312 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
00:53:03.0571 1312 TeamViewer7 - ok
00:53:03.0589 1312 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
00:53:03.0590 1312 TermDD - ok
00:53:03.0602 1312 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
00:53:03.0605 1312 TermService - ok
00:53:03.0613 1312 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
00:53:03.0614 1312 Themes - ok
00:53:03.0631 1312 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
00:53:03.0632 1312 THREADORDER - ok
00:53:03.0640 1312 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
00:53:03.0641 1312 TrkWks - ok
00:53:03.0670 1312 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:53:03.0671 1312 TrustedInstaller - ok
00:53:03.0686 1312 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:53:03.0686 1312 tssecsrv - ok
00:53:03.0690 1312 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
00:53:03.0690 1312 TsUsbFlt - ok
00:53:03.0694 1312 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
00:53:03.0695 1312 TsUsbGD - ok
00:53:03.0710 1312 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:53:03.0711 1312 tunnel - ok
00:53:03.0715 1312 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
00:53:03.0716 1312 uagp35 - ok
00:53:03.0730 1312 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:53:03.0731 1312 udfs - ok
00:53:03.0747 1312 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:53:03.0748 1312 UI0Detect - ok
00:53:03.0759 1312 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:53:03.0759 1312 uliagpkx - ok
00:53:03.0771 1312 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:53:03.0772 1312 umbus - ok
00:53:03.0775 1312 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
00:53:03.0776 1312 UmPass - ok
00:53:03.0815 1312 [ 0F9E1BC7E2BEA1A4108EC9736CF0C2D9 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:53:03.0816 1312 UNS - ok
00:53:03.0832 1312 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
00:53:03.0834 1312 upnphost - ok
00:53:03.0858 1312 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
00:53:03.0859 1312 USBAAPL64 - ok
00:53:03.0869 1312 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
00:53:03.0870 1312 usbaudio - ok
00:53:03.0896 1312 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:53:03.0897 1312 usbccgp - ok
00:53:03.0900 1312 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:53:03.0901 1312 usbcir - ok
00:53:03.0916 1312 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
00:53:03.0917 1312 usbehci - ok
00:53:03.0931 1312 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:53:03.0933 1312 usbhub - ok
00:53:03.0951 1312 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
00:53:03.0951 1312 usbohci - ok
00:53:03.0964 1312 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
00:53:03.0964 1312 usbprint - ok
00:53:03.0976 1312 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:53:03.0976 1312 USBSTOR - ok
00:53:03.0986 1312 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
00:53:03.0987 1312 usbuhci - ok
00:53:03.0990 1312 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
00:53:03.0992 1312 UxSms - ok
00:53:04.0001 1312 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
00:53:04.0002 1312 VaultSvc - ok
00:53:04.0012 1312 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
00:53:04.0013 1312 vdrvroot - ok
00:53:04.0030 1312 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
00:53:04.0033 1312 vds - ok
00:53:04.0037 1312 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:53:04.0037 1312 vga - ok
00:53:04.0047 1312 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
00:53:04.0048 1312 VgaSave - ok
00:53:04.0052 1312 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
00:53:04.0053 1312 vhdmp - ok
00:53:04.0091 1312 [ E8AF45C4FE2457D003E1842806F38748 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
00:53:04.0099 1312 VIAHdAudAddService - ok
00:53:04.0108 1312 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
00:53:04.0109 1312 viaide - ok
00:53:04.0131 1312 [ 05D6657A9CCFD269D05D41BFFDCE9498 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
00:53:04.0132 1312 VIAKaraokeService - ok
00:53:04.0154 1312 [ FF7C6E015AA32FC6BE0AEF582B802332 ] VirtDiskBus C:\Windows\system32\DRIVERS\VirtDiskBus64.sys
00:53:04.0154 1312 VirtDiskBus - ok
00:53:04.0166 1312 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
00:53:04.0166 1312 volmgr - ok
00:53:04.0175 1312 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
00:53:04.0177 1312 volmgrx - ok
00:53:04.0183 1312 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
00:53:04.0185 1312 volsnap - ok
00:53:04.0201 1312 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
00:53:04.0202 1312 vsmraid - ok
00:53:04.0229 1312 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
00:53:04.0236 1312 VSS - ok
00:53:04.0292 1312 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
00:53:04.0295 1312 vToolbarUpdater12.2.6 - ok
00:53:04.0302 1312 [ 316A1762BD41C3DB06EB484527838E2D ] VUSB3HUB C:\Windows\system32\DRIVERS\ViaHub3.sys
00:53:04.0303 1312 VUSB3HUB - ok
00:53:04.0313 1312 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
00:53:04.0313 1312 vwifibus - ok
00:53:04.0329 1312 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
00:53:04.0330 1312 vwififlt - ok
00:53:04.0349 1312 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
00:53:04.0351 1312 W32Time - ok
00:53:04.0364 1312 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
00:53:04.0364 1312 WacomPen - ok
00:53:04.0378 1312 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
00:53:04.0379 1312 WANARP - ok
00:53:04.0382 1312 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
00:53:04.0383 1312 Wanarpv6 - ok
00:53:04.0414 1312 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
00:53:04.0418 1312 WatAdminSvc - ok
00:53:04.0445 1312 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
00:53:04.0451 1312 wbengine - ok
00:53:04.0463 1312 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
00:53:04.0464 1312 WbioSrvc - ok
00:53:04.0473 1312 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
00:53:04.0476 1312 wcncsvc - ok
00:53:04.0480 1312 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:53:04.0481 1312 WcsPlugInService - ok
00:53:04.0494 1312 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
00:53:04.0495 1312 Wd - ok
00:53:04.0512 1312 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
00:53:04.0515 1312 Wdf01000 - ok
00:53:04.0522 1312 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
00:53:04.0524 1312 WdiServiceHost - ok
00:53:04.0527 1312 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
00:53:04.0528 1312 WdiSystemHost - ok
00:53:04.0541 1312 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
00:53:04.0543 1312 WebClient - ok
00:53:04.0554 1312 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
00:53:04.0556 1312 Wecsvc - ok
00:53:04.0565 1312 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
00:53:04.0566 1312 wercplsupport - ok
00:53:04.0577 1312 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
00:53:04.0578 1312 WerSvc - ok
00:53:04.0588 1312 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
00:53:04.0589 1312 WfpLwf - ok
00:53:04.0603 1312 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
00:53:04.0603 1312 WIMMount - ok
00:53:04.0617 1312 WinDefend - ok
00:53:04.0622 1312 WinHttpAutoProxySvc - ok
00:53:04.0662 1312 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
00:53:04.0663 1312 Winmgmt - ok
00:53:04.0693 1312 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
00:53:04.0701 1312 WinRM - ok
00:53:04.0736 1312 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
00:53:04.0736 1312 WinUsb - ok
00:53:04.0757 1312 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
00:53:04.0762 1312 Wlansvc - ok
00:53:04.0809 1312 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:53:04.0811 1312 wlcrasvc - ok
00:53:04.0849 1312 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:53:04.0859 1312 wlidsvc - ok
00:53:04.0878 1312 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
00:53:04.0879 1312 WmiAcpi - ok
00:53:04.0893 1312 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
00:53:04.0894 1312 wmiApSrv - ok
00:53:04.0897 1312 WMPNetworkSvc - ok
00:53:04.0907 1312 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
00:53:04.0908 1312 WPCSvc - ok
00:53:04.0915 1312 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:53:04.0917 1312 WPDBusEnum - ok
00:53:04.0923 1312 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:53:04.0923 1312 ws2ifsl - ok
00:53:04.0931 1312 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
00:53:04.0932 1312 wscsvc - ok
00:53:04.0959 1312 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
00:53:04.0959 1312 WSDPrintDevice - ok
00:53:04.0962 1312 WSearch - ok
00:53:05.0020 1312 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
00:53:05.0029 1312 wuauserv - ok
00:53:05.0038 1312 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
00:53:05.0039 1312 WudfPf - ok
00:53:05.0054 1312 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:53:05.0055 1312 WUDFRd - ok
00:53:05.0064 1312 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:53:05.0066 1312 wudfsvc - ok
00:53:05.0072 1312 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
00:53:05.0074 1312 WwanSvc - ok
00:53:05.0254 1312 X6va005 - ok
00:53:05.0339 1312 [ FFDB0ED9D1D453F7F19DE55FE0706195 ] xhcdrv C:\Windows\system32\DRIVERS\xhcdrv.sys
00:53:05.0340 1312 xhcdrv - ok
00:53:05.0345 1312 xsherlock - ok
00:53:05.0349 1312 xspirit - ok
00:53:05.0353 1312 ================ Scan global ===============================
00:53:05.0367 1312 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:53:05.0393 1312 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:53:05.0397 1312 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:53:05.0414 1312 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:53:05.0429 1312 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:53:05.0431 1312 [Global] - ok
00:53:05.0431 1312 ================ Scan MBR ==================================
00:53:05.0442 1312 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:53:05.0619 1312 \Device\Harddisk0\DR0 - ok
00:53:05.0621 1312 ================ Scan VBR ==================================
00:53:05.0626 1312 [ 66A6F16544DE28A7C68ECB4A5ED0EDBE ] \Device\Harddisk0\DR0\Partition1
00:53:05.0627 1312 \Device\Harddisk0\DR0\Partition1 - ok
00:53:05.0661 1312 [ 09F430D7E646A7B5A60484C1883DC5B2 ] \Device\Harddisk0\DR0\Partition2
00:53:05.0663 1312 \Device\Harddisk0\DR0\Partition2 - ok
00:53:05.0664 1312 ============================================================
00:53:05.0664 1312 Scan finished
00:53:05.0664 1312 ============================================================
00:53:05.0670 10280 Detected object count: 0
00:53:05.0670 10280 Actual detected object count: 0
00:53:48.0858 11172 Deinitialize success




aswMBR Scan:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-17 00:57:36
-----------------------------
00:57:36.732 OS Version: Windows x64 6.1.7601 Service Pack 1
00:57:36.733 Number of processors: 4 586 0x3A09
00:57:36.735 ComputerName: JU-YOUNG-PC UserName: Ju-young
00:57:37.480 Initialize success
00:59:49.360 AVAST engine defs: 12101601
00:59:55.056 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
00:59:55.057 Disk 0 Vendor: ST1000DM CC4C Size: 953869MB BusType: 3
00:59:55.073 Disk 0 MBR read successfully
00:59:55.075 Disk 0 MBR scan
00:59:55.078 Disk 0 Windows 7 default MBR code
00:59:55.087 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
00:59:55.109 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953767 MB offset 206848
00:59:55.143 Disk 0 scanning C:\Windows\system32\drivers
01:00:04.893 Service scanning
01:00:23.349 Modules scanning
01:00:23.354 Disk 0 trace - called modules:
01:00:23.365 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys ACPI.sys iaStor.sys hal.dll
01:00:23.368 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007835060]
01:00:23.371 3 CLASSPNP.SYS[fffff8800164d43f] -> nt!IofCallDriver -> [0xfffffa800767ccf0]
01:00:23.374 5 PCTCore64.sys[fffff88001700720] -> nt!IofCallDriver -> [0xfffffa800717d270]
01:00:23.377 7 ACPI.sys[fffff88000fa87a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007184050]
01:00:24.635 AVAST engine scan C:\Windows
01:00:27.502 AVAST engine scan C:\Windows\system32
01:04:06.529 AVAST engine scan C:\Windows\system32\drivers
01:04:42.051 AVAST engine scan C:\Users\Ju-young
01:21:54.129 File: C:\Users\Ju-young\Desktop\spares\Extreme Injector by master131.exe **INFECTED** Win32:Trojan-gen
01:22:29.279 File: C:\Users\Ju-young\Desktop\spares\O\CA HACKS\Extreme Injector by master131.exe **INFECTED** Win32:Trojan-gen
01:27:38.010 AVAST engine scan C:\ProgramData
01:30:21.469 Scan finished successfully
01:33:19.713 Disk 0 MBR has been saved successfully to "C:\Users\Ju-young\Downloads\MBR.dat"
01:33:19.768 The log file has been saved successfully to "C:\Users\Ju-young\Downloads\Changelog-IntelBurnTest.txt"
01:33:33.426 Disk 0 MBR has been saved successfully to "C:\Users\Ju-young\Downloads\MBR.dat"
01:33:33.430 The log file has been saved successfully to "C:\Users\Ju-young\Downloads\aswMBR.txt"
(I believe the infected messages are false positives? Not sure)




ESET Online Scanner Scan:
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.10 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.11 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.12 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.13 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.14 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.15 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.16 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.17 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.6 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.7 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.8 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.9 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\IObit Toolbar\IE\6.3\iobitToolbarIE.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Optimizer Pro\OptimizerPro.exe a variant of Win32/SpeedingUpMyPC application cleaned by deleting - quarantined
C:\Users\Ju-young\AppData\Local\Temp\NOD286.tmp a variant of Win32/Toolbar.Widgi application cleaned by deleting (after the next restart) - quarantined
C:\Users\Ju-young\AppData\Local\Temp\OptimizerPro.exe a variant of Win32/Adware.SpeedingUpMyPC.A application cleaned by deleting - quarantined
C:\Users\Ju-young\Desktop\Frozen Throne\ChaosOne.exe Win32/Virut.NBP virus cleaned - quarantined
C:\Users\Ju-young\Desktop\spares\asd\firefox.exe a variant of MSIL/Packed.PvLogNetProtector.A application cleaned by deleting - quarantined
C:\Users\Ju-young\Downloads\iLividSetupV1 (1).exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\Ju-young\Downloads\iLividSetupV1 (2).exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\Ju-young\Downloads\iLividSetupV1.exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined


I hope this info helps.
If anything more is needed just tell me quickly please! Need to fix it ASAP since I heard it can be potentially dangerous :3

Edited by dragon5281, 17 October 2012 - 04:02 AM.


#4 dragon5281

dragon5281
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 October 2012 - 07:12 AM

Oh, really? I hope someone can help me solve this sooooon :3

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:10 AM

Posted 17 October 2012 - 07:33 AM

Ignore the previous poster,he is a spammer

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#6 dragon5281

dragon5281
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 October 2012 - 08:02 AM

Oh, okay doing that right now. What was the purpose of the other scans earlier? xD just not sure why they were for ;3

#7 dragon5281

dragon5281
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 October 2012 - 08:35 AM

These are the second set of scans requested xD Hope they help

Malwarebytes Full Scan:
Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.17.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Ju-young :: JU-YOUNG-PC [administrator]

Protection: Disabled

10/17/2012 6:02:55 AM
mbam-log-2012-10-17 (06-02-55).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 349805
Time elapsed: 30 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)





Mini Toolbox Scan:
MiniToolBox by Farbar Version: 23-07-2012
Ran by Ju-young (administrator) on 17-10-2012 at 06:03:29
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Disconnected)
Linksys WMP600N Wireless-N PCI Adapter with Dual-Band = Wireless Network Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Ju-young-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Linksys WMP600N Wireless-N PCI Adapter with Dual-Band
Physical Address. . . . . . . . . : 98-FC-11-E3-7D-16
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::75dc:98ba:3dd2:73aa%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, October 14, 2012 1:52:40 AM
Lease Expires . . . . . . . . . . : Wednesday, October 17, 2012 10:37:11 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 312015889
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-63-32-56-90-2B-34-33-9F-BF
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 90-2B-34-33-9F-BF
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3cc2:2231:3f57:febe(Preferred)
Link-local IPv6 Address . . . . . : fe80::3cc2:2231:3f57:febe%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: telus.home
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:400a:801::1007
173.194.33.33
173.194.33.32
173.194.33.34
173.194.33.36
173.194.33.41
173.194.33.38
173.194.33.39
173.194.33.35
173.194.33.40
173.194.33.37
173.194.33.46


Pinging google.com [173.194.33.37] with 32 bytes of data:
Reply from 173.194.33.37: bytes=32 time=26ms TTL=55
Reply from 173.194.33.37: bytes=32 time=28ms TTL=55

Ping statistics for 173.194.33.37:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 28ms, Average = 27ms
Server: telus.home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=168ms TTL=50
Reply from 98.138.253.109: bytes=32 time=126ms TTL=50

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 126ms, Maximum = 168ms, Average = 147ms
Server: telus.home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...98 fc 11 e3 7d 16 ......Linksys WMP600N Wireless-N PCI Adapter with Dual-Band
11...90 2b 34 33 9f bf ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.65 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.65 281
192.168.1.65 255.255.255.255 On-link 192.168.1.65 281
192.168.1.255 255.255.255.255 On-link 192.168.1.65 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.65 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.65 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:3cc2:2231:3f57:febe/128
On-link
12 281 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::3cc2:2231:3f57:febe/128
On-link
12 281 fe80::75dc:98ba:3dd2:73aa/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 02 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 03 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 04 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 02 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 03 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 04 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/17/2012 01:33:48 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/17/2012 00:54:17 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/15/2012 08:23:23 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/14/2012 06:29:35 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/14/2012 02:12:02 AM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 9d8

Start Time: 01cda9e94508e15d

Termination Time: 16

Application Path: C:\Windows\Explorer.EXE

Report Id: b45750eb-15de-11e2-b0ac-902b34339fbf

Error: (10/14/2012 01:54:55 AM) (Source: Application Hang) (User: )
Description: The program msnmsgr.exe version 15.4.3555.308 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1e64

Start Time: 01cda9e95f7fc3b0

Termination Time: 16

Application Path: C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

Report Id: d0d330c7-15dc-11e2-b0ac-902b34339fbf

Error: (10/14/2012 01:53:10 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/14/2012 01:38:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: QvodTerminal.exe, version: 3.5.0.63, time stamp: 0x4b4be6ce
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e3be
Faulting process id: 0x2e0
Faulting application start time: 0xQvodTerminal.exe0
Faulting application path: QvodTerminal.exe1
Faulting module path: QvodTerminal.exe2
Report Id: QvodTerminal.exe3

Error: (10/14/2012 01:22:30 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2012 05:37:42 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16450, time stamp: 0x503723f6
Faulting module name: iobitToolbarIE.dll, version: 6.3.0.3, time stamp: 0x5059c73c
Exception code: 0xc0000005
Fault offset: 0x0008b593
Faulting process id: 0x129c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (10/14/2012 01:53:52 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (10/14/2012 01:43:19 AM) (Source: DCOM) (User: )
Description: 1084SkypeUpdate/ComService{CC957078-B838-47C4-A7CF-626E7A82FC58}

Error: (10/14/2012 01:33:47 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.137.1729.0

Update Source: %NT AUTHORITY59

Update Stage: 4.1.0522.00

Source Path: 4.1.0522.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (10/14/2012 01:33:47 AM) (Source: DCOM) (User: )
Description: 1084wuauserv{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (10/14/2012 01:22:53 AM) (Source: Service Control Manager) (User: )
Description: The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1068

Error: (10/14/2012 01:21:09 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/14/2012 01:21:09 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/14/2012 01:21:09 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/14/2012 01:21:07 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1068

Error: (10/14/2012 01:21:07 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

@BIOS (Version: 2.23)
3DPower B12.0215.1 (Version: 1.00.0000)
3TB+Unlock B11.0919.1 (Version: 1.00.0001)
Adobe Acrobat 4.0 (Version: 4.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Advanced SystemCare 5 (Version: 5.4.0)
Aeria Ignite (Version: 1.10.1721)
Aion
Akamai NetSession Interface
ALSee (Version: v6.22)
ALTools Update
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.70727.2220)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Application Profiles (Version: 2.0.4532.34673)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 2.0.4.4)
ATI AVIVO64 Codecs (Version: 11.6.0.51125)
AVG Security Toolbar (Version: 12.2.5.32)
Bandisoft MPEG-1 Decoder
Bing Bar (Version: 7.0.619.0)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.0806.1213.19931)
Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1213.19931)
Catalyst Control Center InstallProxy (Version: 2012.0806.1213.19931)
Catalyst Control Center Localization All (Version: 2012.0806.1213.19931)
ccc-utility64 (Version: 2012.0806.1213.19931)
CCC Help Chinese Standard (Version: 2012.0806.1212.19931)
CCC Help Chinese Traditional (Version: 2012.0806.1212.19931)
CCC Help Czech (Version: 2012.0806.1212.19931)
CCC Help Danish (Version: 2012.0806.1212.19931)
CCC Help Dutch (Version: 2012.0806.1212.19931)
CCC Help English (Version: 2012.0806.1212.19931)
CCC Help Finnish (Version: 2012.0806.1212.19931)
CCC Help French (Version: 2012.0806.1212.19931)
CCC Help German (Version: 2012.0806.1212.19931)
CCC Help Greek (Version: 2012.0806.1212.19931)
CCC Help Hungarian (Version: 2012.0806.1212.19931)
CCC Help Italian (Version: 2012.0806.1212.19931)
CCC Help Japanese (Version: 2012.0806.1212.19931)
CCC Help Korean (Version: 2012.0806.1212.19931)
CCC Help Norwegian (Version: 2012.0806.1212.19931)
CCC Help Polish (Version: 2012.0806.1212.19931)
CCC Help Portuguese (Version: 2012.0806.1212.19931)
CCC Help Russian (Version: 2012.0806.1212.19931)
CCC Help Spanish (Version: 2012.0806.1212.19931)
CCC Help Swedish (Version: 2012.0806.1212.19931)
CCC Help Thai (Version: 2012.0806.1212.19931)
CCC Help Turkish (Version: 2012.0806.1212.19931)
CCleaner (Version: 3.23)
CloudStation B12.0314.1 (Version: 1.00.0000)
Combat Arms
CPUID CPU-Z 1.60.1
CPUID HWMonitor 1.19
D3DX10 (Version: 15.4.2368.0902)
Debut Video Capture Software
DMIView Ver.1.5 B12.0314.1 (Version: 1.5)
Doxillion Document Converter
Easy Tune 6 B12.0309.1 (Version: 1.00.0000)
Easy2Convert PNG to JPG 1.3 (Version: 1.3)
ESET Online Scanner v3
EZ Setup B12.0312.03 (Version: 1.00.0000)
Face_Wizard B12.0201.01 (Version: 1.00.0000)
ffdshow v1.1.4369 [2012-03-03] (Version: 1.1.4369.0)
Google Chrome (Version: 22.0.1229.94)
HideAnyWindow (Version: 4.0)
HP Officejet 6500 E710n-z Basic Device Software (Version: 22.50.231.0)
HP Officejet 6500 E710n-z Help (Version: 140.0.2.2)
HydraVision (Version: 4.2.236.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 8.0.0.1351)
Intel® Rapid Storage Technology (Version: 11.0.0.1032)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.3.214)
Intel® Trusted Connect Service Client (Version: 1.23.216.0)
IObit Toolbar v6.3 (Version: 6.3)
iTunes (Version: 10.6.3.25)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
join.me (Version: 1.3.1.431)
Junk Mail filter update (Version: 15.4.3502.0922)
League of Legends (Version: 1.3)
Linksys Wireless Manager (Version: 4.9.9047.0)
LOLReplay (Version: 0.7.9.26)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
marvell 91xx driver (Version: 1.2.0.1010)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.6120.5004)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2010 - English (Version: 14.0.6120.5005)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox (3.5.4) (Version: 3.5.4 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Nexon Game Manager
NJStar Communicator (Version: 3.00)
OGPlanet Game Launcher (Version: 1.0.0)
OhCASTra (Version: 4.5.1.109)
OhCASTraN2 2.10.0 (Version: 2.10.0)
ON_OFF Charge B11.1102.1 (Version: 1.00.0001)
Optimizer Pro v3.0 (Version: 3.0)
Pando Media Booster (Version: 2.6.0.8)
Platform (Version: 1.39)
Portal (Version: 1.0.0)
Pure Networks Platform (Version: 11.1.9044.0)
Q-Share Ver.1.2 (Version: 1.2)
QvodPlayer(QVOD) v3.5 (Version: 3.5)
SD Gundam Capsule Fighter (Version: 1.0.0)
Skype Click to Call (Version: 6.2.10687)
Skype™ 5.10 (Version: 5.10.116)
Smart Defrag 2 (Version: 2.6)
Smart Recovery 2 B12.0206.1 (x64) (Version: 1.00.0001)
Smoothping Elite (Version: 2.0.0.10)
Splashtop Connect for Firefox (Version: 2.0.5.2)
Splashtop Connect for IE (Version: 2.0.5.1)
SuddenAttack
TeamViewer 7 (Version: 7.0.14563)
TechPowerUp GPU-Z
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Manager B11.1227.1 (Version: 1.00.0000)
VIA Platform Device Manager (Version: 1.39)
VLC media player 2.0.2 (Version: 2.0.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinHide V1
WinRAR 4.20 (64-bit) (Version: 4.20.0)
WinZip 15.0 (Version: 15.0.9411)
XnView 1.96 (Version: 1.96)
XSplit (Version: 1.0.1206.0203)
μTorrent (Version: 3.2.0)

========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 8153.86 MB
Available physical RAM: 4717.45 MB
Total Pagefile: 16305.91 MB
Available Pagefile: 11444.32 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.27 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.41 GB) (Free:805.81 GB) NTFS
2 Drive d: (Insanity - Easy) (CDROM) (Total:4.38 GB) (Free:0.46 GB) UDF

========================= Users: ========================================

User accounts for \\JU-YOUNG-PC

Administrator Guest Ju-young
Ju-young's Study

========================= Restore Points ==================================

13-10-2012 02:38:23 Installed Portal
13-10-2012 13:42:19 Windows Update
13-10-2012 23:01:25 Installed HideAnyWindow
17-10-2012 09:03:40 Windows Update

**** End of log ****





Farbar Service Scanner Scan:
Farbar Service Scanner Version: 07-10-2012
Ran by Ju-young (administrator) on 17-10-2012 at 06:04:40
Running from "C:\Users\Ju-young\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-10-09 18:18] - [2012-06-01 22:41] - 0184320 ____A (Microsoft Corporation) 9C01375BE382E834CC26D1B7EAF2C4FE

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




Adware Cleaner Scan:
# AdwCleaner v2.005 - Logfile created 10/17/2012 at 06:36:25
# Updated 14/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Ju-young - JU-YOUNG-PC
# Boot Mode : Normal
# Running from : C:\Users\Ju-young\Downloads\adwcleaner (1).exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Application Updater

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted on reboot : C:\Program Files (x86)\splashtop
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\splashtop
Folder Deleted : C:\Users\Ju-young\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Ju-young\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdhffggcfjnkigeciffmipblemhphbjl
Folder Deleted : C:\Users\Ju-young\AppData\Local\Temp\avg@toolbar
Folder Deleted : C:\Users\Ju-young\AppData\Local\Temp\CT3198785
Folder Deleted : C:\Users\Ju-young\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Ju-young\AppData\Roaming\Mozilla\Firefox\Profiles\ldcvc3na.default\ConduitCommon
Folder Deleted : C:\Users\Ju-young\AppData\Roaming\Mozilla\Firefox\Profiles\ldcvc3na.default\CT3198785
Folder Deleted : C:\Users\Ju-young\AppData\Roaming\Mozilla\Firefox\Profiles\ldcvc3na.default\extensions\{cce665dd-f6dd-4808-968e-eaec971f70ef}
Folder Deleted : C:\Users\Ju-young\AppData\Roaming\splashtop

***** [Registry] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Google\Chrome\Extensions\bdhffggcfjnkigeciffmipblemhphbjl
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3198785
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bdhffggcfjnkigeciffmipblemhphbjl
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v3.5.4 (en-US)

Profile name : default
File : C:\Users\Ju-young\AppData\Roaming\Mozilla\Firefox\Profiles\ldcvc3na.default\prefs.js

Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Deleted : user_pref("browser.search.defaultthis.engineName", "WhiteSmoke US Customized Web Search");
Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");
Deleted : user_pref("browser.startup.homepage", "hxxps://isearch.avg.com/?cid=%GUID%&mid=%MID%&lang=%LANG%&ds=[...]

-\\ Google Chrome v22.0.1229.94

File : C:\Users\Ju-young\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S2].txt - [7995 octets] - [17/10/2012 06:36:25]

########## EOF - C:\AdwCleaner[S2].txt - [8055 octets] ##########





Junkware Removal Tool Scan:
Junkware Removal Tool (JRT) by Thisisu
Version: 1.7.1 (10.17.2012)
OS: Windows 7 Home Premium x64
Ran by Ju-young on 10/17/2012 Wed at 6:27:37.09
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values:

Successfully deleted: [VALUE] hkey_current_user\software\microsoft\internet explorer\urlsearchhooks\\{cce665dd-f6dd-4808-968e-eaec971f70ef}



*** Registry Keys:

Successfully deleted: [KEY] "hkey_local_machine\software\conduit"
Successfully deleted: [KEY] "hkey_local_machine\software\freeze.com"
Successfully deleted: [KEY] hkey_classes_root\clsid\{3c471948-f874-49f5-b338-4f214a2ee0b1}



*** Files:

Successfully deleted: [FILE] C:\Program Files (x86)\application updater\ApplicationUpdater.exe
Successfully deleted: [FILE] C:\Program Files (x86)\application updater\config.ini
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\English.ini
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\file_id.diz
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\HomePage.url
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptimizerPro.chm
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptProGuard.exe
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptProLauncher.exe
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptProReminder.exe
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptProSchedule.exe
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptProSmartScan.exe
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptProStart.exe
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\OptProUninstaller.exe
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\scan.gif
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\sqlite3.dll
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\unins000.dat
Successfully deleted: [FILE] C:\Program Files (x86)\optimizer pro\unins000.exe
Successfully deleted: [FILE] C:\eula.1028.txt
Successfully deleted: [FILE] C:\eula.1031.txt
Successfully deleted: [FILE] C:\eula.1033.txt
Successfully deleted: [FILE] C:\eula.1036.txt
Successfully deleted: [FILE] C:\eula.1040.txt
Successfully deleted: [FILE] C:\eula.1041.txt
Successfully deleted: [FILE] C:\eula.1042.txt
Successfully deleted: [FILE] C:\eula.2052.txt
Successfully deleted: [FILE] C:\install.res.1028.dll
Successfully deleted: [FILE] C:\install.res.1031.dll
Successfully deleted: [FILE] C:\install.res.1033.dll
Successfully deleted: [FILE] C:\install.res.1036.dll
Successfully deleted: [FILE] C:\install.res.1040.dll
Successfully deleted: [FILE] C:\install.res.1041.dll
Successfully deleted: [FILE] C:\install.res.1042.dll
Successfully deleted: [FILE] C:\install.res.2052.dll
Successfully deleted: [FILE] C:\install.res.3082.dll



*** Folders:

Failed to delete: [FOLDER-LOCKED!] "C:\Program Files (x86)\Common Files\spigot"
Failed to delete: [FOLDER-LOCKED!] "C:\Program Files (x86)\Common Files\spigot"
Successfully deleted: [FOLDER] "C:\Users\Ju-young\appdata\local\conduit"
Successfully deleted: [FOLDER] "C:\Users\Ju-young\appdata\locallow\conduit"
Successfully deleted: [FOLDER] "C:\Users\Ju-young\appdata\locallow\pricegong"
Successfully deleted: [FOLDER] "C:\Users\Ju-young\appdata\locallow\search settings"
Failed to delete: [FOLDER-LOCKED!] "C:\Program Files (x86)\application updater"
Successfully deleted: [FOLDER] "C:\Program Files (x86)\conduit"
Successfully deleted: [FOLDER] "C:\Program Files (x86)\optimizer pro"



*** FireFox detected and repaired

Failed to delete: [wtxpcom@mybrowserbar.com] from C:\Users\Ju-young\AppData\Roaming\Mozilla\Firefox\Profiles\ldcvc3na.default\extensions
Successfully deleted: [conduit.xml] from C:\Users\Ju-young\AppData\Roaming\Mozilla\Firefox\Profiles\ldcvc3na.default\searchplugins
Removed the following from [PREFS.JS] :

user_pref("CT3198785..clientLogIsEnabled", false);
user_pref("CT3198785..clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
user_pref("CT3198785..uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
user_pref("CT3198785.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
user_pref("CT3198785.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
user_pref("CT3198785.BrowserCompStateIsOpen_129856231442562894", true);
user_pref("CT3198785.CTID", "CT3198785");
user_pref("CT3198785.CurrentServerDate", "21-7-2012");
user_pref("CT3198785.DSInstall", true);
user_pref("CT3198785.DialogsAlignMode", "LTR");
user_pref("CT3198785.DialogsGetterLastCheckTime", "Fri Jul 20 2012 23:44:41 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.DownloadReferralCookieData", "");
user_pref("CT3198785.FirstServerDate", "21-7-2012");
user_pref("CT3198785.FirstTime", true);
user_pref("CT3198785.FirstTimeFF3", true);
user_pref("CT3198785.FirstTimeHiddenVer", true);
user_pref("CT3198785.FixPageNotFoundErrors", true);
user_pref("CT3198785.GroupingServerCheckInterval", 1440);
user_pref("CT3198785.GroupingServiceUrl", "http://grouping.services.conduit.com/");
user_pref("CT3198785.HPInstall", true);
user_pref("CT3198785.HasUserGlobalKeys", true);
user_pref("CT3198785.HomePageProtectorEnabled", true);
user_pref("CT3198785.HomepageBeforeUnload", "http://search.conduit.com/?ctid=CT3198785&SearchSource=13");
user_pref("CT3198785.Initialize", true);
user_pref("CT3198785.InitializeCommonPrefs", true);
user_pref("CT3198785.InstallationAndCookieDataSentCount", 1);
user_pref("CT3198785.InstallationId", "ConduitNSISIntegration");
user_pref("CT3198785.InstallationType", "ConduitNSISIntegration");
user_pref("CT3198785.InstalledDate", "Fri Jul 20 2012 23:44:39 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.InvalidateCache", false);
user_pref("CT3198785.IsGrouping", false);
user_pref("CT3198785.IsInitSetupIni", true);
user_pref("CT3198785.IsOpenThankYouPage", false);
user_pref("CT3198785.IsOpenUninstallPage", true);
user_pref("CT3198785.IsProtectorsInit", true);
user_pref("CT3198785.LanguagePackLastCheckTime", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.LanguagePackReloadIntervalMM", 1440);
user_pref("CT3198785.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
user_pref("CT3198785.LastLogin_3.13.0.6", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.LatestVersion", "3.13.0.6");
user_pref("CT3198785.Locale", "en");
user_pref("CT3198785.MCDetectTooltipHeight", "83");
user_pref("CT3198785.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
user_pref("CT3198785.MCDetectTooltipWidth", "295");
user_pref("CT3198785.MyStuffEnabledAtInstallation", true);
user_pref("CT3198785.OriginalFirstVersion", "3.13.0.6");
user_pref("CT3198785.RadioIsPodcast", false);
user_pref("CT3198785.RadioLastCheckTime", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.RadioLastUpdateIPServer", "3");
user_pref("CT3198785.RadioLastUpdateServer", "3");
user_pref("CT3198785.RadioMediaID", "9962");
user_pref("CT3198785.RadioMediaType", "Media Player");
user_pref("CT3198785.RadioMenuSelectedID", "EBRadioMenu_CT31987859962");
user_pref("CT3198785.RadioShrinkedFromSetup", false);
user_pref("CT3198785.RadioStationName", "California%20Rock");
user_pref("CT3198785.RadioStationURL", "http://feedlive.net/california.asx");
user_pref("CT3198785.SavedHomepage", "resource:/browserconfig.properties");
user_pref("CT3198785.SearchCaption", "WhiteSmoke US Customized Web Search");
user_pref("CT3198785.SearchEngineBeforeUnload", "WhiteSmoke US Customized Web Search");
user_pref("CT3198785.SearchFromAddressBarIsInit", true);
user_pref("CT3198785.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3198785&SearchSource=2&q=");
user_pref("CT3198785.SearchInNewTabEnabled", true);
user_pref("CT3198785.SearchInNewTabIntervalMM", 1440);
user_pref("CT3198785.SearchInNewTabLastCheckTime", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
user_pref("CT3198785.SearchProtectorEnabled", true);
user_pref("CT3198785.SearchProtectorToolbarDisabled", false);
user_pref("CT3198785.SendProtectorDataViaLogin", true);
user_pref("CT3198785.ServiceMapLastCheckTime", "Fri Jul 20 2012 23:44:39 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.SettingsLastCheckTime", "Fri Jul 20 2012 23:44:39 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.SettingsLastUpdate", "1342807200");
user_pref("CT3198785.TBHomePageUrl", "http://search.conduit.com/?ctid=CT3198785&SearchSource=13");
user_pref("CT3198785.ThirdPartyComponentsInterval", 504);
user_pref("CT3198785.ThirdPartyComponentsLastCheck", "Fri Jul 20 2012 23:44:39 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.ThirdPartyComponentsLastUpdate", "1331805997");
user_pref("CT3198785.ToolbarShrinkedFromSetup", false);
user_pref("CT3198785.TrusteLinkUrl", "http://trust.conduit.com/CT3198785");
user_pref("CT3198785.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCityToolbar.com,MyCollegeToolbar.com,MyFamilyToolbar.com,MyForumToolbar.com,MyLibraryToolbar.com,MyRadioToolbar.com,MyStoreToolbar.com,MyTownToolbar.com,MyUniversityToolbar.com,OurChurchToolbar.com,MyXangaToolbar.com,Media-Toolbar.com,LoyaltyToolbar.com,MyTeamToolbar.com,GreatToolbars.com,OurOrganizationToolbar.com,OurBusinessToolbar.com,Toolbar.fm");
user_pref("CT3198785.UserID", "UN52200206507085833");
user_pref("CT3198785.alertChannelId", "1616454");
user_pref("CT3198785.autoDisableScopes", 0);
user_pref("CT3198785.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"http://appdownload.conduit.com/\",\"RevertSettingsEnabled\":\"FALSE\"}");
user_pref("CT3198785.globalFirstTimeInfoLastCheckTime", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.homepageProtectorEnableByLogin", true);
user_pref("CT3198785.initDone", true);
user_pref("CT3198785.isAppTrackingManagerOn", true);
user_pref("CT3198785.isFirstRadioInstallation", false);
user_pref("CT3198785.myStuffEnabled", true);
user_pref("CT3198785.myStuffPublihserMinWidth", 400);
user_pref("CT3198785.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
user_pref("CT3198785.myStuffServiceIntervalMM", 1440);
user_pref("CT3198785.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
user_pref("CT3198785.navigateToUrlOnSearch", false);
user_pref("CT3198785.revertSettingsEnabled", false);
user_pref("CT3198785.searchProtectorDialogDelayInSec", 10);
user_pref("CT3198785.searchProtectorEnableByLogin", true);
user_pref("CT3198785.testingCtid", "");
user_pref("CT3198785.toolbarAppMetaDataLastCheckTime", "Fri Jul 20 2012 23:44:39 GMT-0700 (Pacific Daylight Time)");
user_pref("CT3198785.toolbarContextMenuLastCheckTime", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CommunityToolbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3198785&SearchSource=13");
user_pref("CommunityToolbar.ConduitSearchList", "WhiteSmoke US Customized Web Search");
user_pref("CommunityToolbar.ETag.http://Settings.toolbar.search.conduit.com/root/CT3198785/CT3198785", "\"8b128fad662118de6eabfcf83ece21b42\"");
user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/1616454/1609893/CA", "\"0\"");
user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-services.com/?ctid=CT3198785", "\"1341149544\"");
user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "C5ZJe6gL80JBW5CuLy+wkg==");
user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "2E1/v7EfCEDbv3VaBQMELg==");
user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "UgzXjW7BIkfdx+x39Ruv3w==");
user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "FqddrIU7eyJgaaLyHDeVMQ==");
user_pref("CommunityToolbar.ETag.http://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:14f9\"");
user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"04afd94b864cd1:0\"");
user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/Toolbar/?ownerId=CT3198785", "\"5a3bfb736bf65ca0cca630a3f0917948\"");
user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-services.com/?locale=en", "\"2292e5c1512a30b86b91a7e3313d799f\"");
user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Ju-young\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\ldcvc3na.default\\conduitCommon\\modules\\3.13.0.6");
user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.13.0.6");
user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
user_pref("CommunityToolbar.ToolbarsList", "CT3198785");
user_pref("CommunityToolbar.ToolbarsList2", "CT3198785");
user_pref("CommunityToolbar.ToolbarsList4", "CT3198785");
user_pref("CommunityToolbar.globalUserId", "1c70967b-a42c-4444-9239-cf64ebf1836d");
user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3198785");
user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Fri Jul 20 2012 23:44:41 GMT-0700 (Pacific Daylight Time)");
user_pref("CommunityToolbar.notifications.alertEnabled", true);
user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);
user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CommunityToolbar.notifications.clientsServerUrl", "http://alert.client.conduit.com");
user_pref("CommunityToolbar.notifications.locale", "en");
user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Jul 20 2012 23:44:40 GMT-0700 (Pacific Daylight Time)");
user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
user_pref("CommunityToolbar.notifications.servicesServerUrl", "http://alert.services.conduit.com");
user_pref("CommunityToolbar.notifications.showTrayIcon", false);
user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
user_pref("CommunityToolbar.notifications.userId", "9e9726aa-0752-4267-b296-2dbf73b7668b");
user_pref("CommunityToolbar.originalHomepage", "resource:/browserconfig.properties");
user_pref("CommunityToolbar.originalSearchEngine", "AVG Secure Search");
user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3198785&SearchSource=3&q={searchTerms}");
user_pref("extensions.crossrider.bic", "138a8453ce2f6f9a72a221e294814933");
user_pref("extensions.stconnect.saved_homepage", "http://search.conduit.com/?ctid=CT3198785&SearchSource=13");


*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on 10/17/2012 Wed at 6:34:33.60
End of Report


Those are all the scans, I hope they are satisfactory xD Thank you once again

Edited by dragon5281, 17 October 2012 - 08:42 AM.


#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:10 AM

Posted 17 October 2012 - 10:15 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#9 dragon5281

dragon5281
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 October 2012 - 03:21 PM

Thank you once again for the reply.


RKILL Scan:
Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/17/2012 01:14:46 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\Ju-young\Desktop\rkill\rkill-10-17-2012-01-14-49.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Firewall Disabled

[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 10/17/2012 01:14:53 PM
Execution time: 0 hours(s), 0 minute(s), and 6 seconds(s)



Autoruns Scan:
(I don't get this one)
I opened autoruns.exe, but it shows like tons of lists of programs, but I don't get where I start the scan. There's no option where it says scan xD.
Help please :P

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:10 AM

Posted 17 October 2012 - 04:45 PM

Extract and launch autoruns.exe.Scan will start automatically.

In lower left corner you will see READY option after scan gets completed.

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#11 dragon5281

dragon5281
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 October 2012 - 05:58 PM

Oh, okay thank you I just did it xD

Autoruns Scan:
"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Linksys Wireless Manager" "Linksys Wireless Manager" "Linksys, LLC" "c:\program files (x86)\linksys\linksys wireless manager\linksyswirelessmanager.exe"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "VIAxHCUtl" "usbmonitor" "VIA Technologies, Inc." "c:\via_xhci\usb3monitor.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "Aeria Ignite" "Aeria Ignite" "Aeria Games & Entertainment" "c:\program files (x86)\aeria games\ignite\aeriaignite.exe"
+ "AMD AVT" "" "" "File not found: start"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\groovemonitor.exe"
+ "HDAudDeck" "VIA HD Audio CPL" "VIA" "c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "ISUSScheduler" "InstallShield Update Service Scheduler" "InstallShield Software Corporation" "c:\program files (x86)\common files\installshield\updateservice\issch.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "nmctxth" "Pure Networks Platform Assistant" "Cisco Systems, Inc." "c:\program files (x86)\common files\pure networks shared\platform\nmctxth.exe"
+ "ROC_ROC_JULY_P1" "" "" "File not found: C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe"
+ "ROC_roc_ssl_v12" "" "" "File not found: C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "STCAgent" "" "" "File not found: C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "USB3MON" "Intel® USB 3.0 Monitor" "Intel Corporation" "c:\program files (x86)\intel\intel® usb 3.0 extensible host controller driver\application\iusb3mon.exe"
+ "vProt" "" "" "File not found: C:\Program Files (x86)\AVG Secure Search\vprot.exe"
+ "ZyngaGamesAgent" "" "" "File not found: C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce" "" "" ""
+ "RPMKickstart" "Smart Recovery Kickstart Application" "Gigabyte Technology CO., LTD." "c:\program files\gigabyte\smartrecovery2_x64\rpmkickstart.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce" "" "" ""
+ "GBTUpd" "PreRun" "PreRun" "c:\program files (x86)\gigabyte\updmanager\prerun.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Advanced SystemCare 5" "Advanced SystemCare 5 Tray" "IObit" "c:\program files (x86)\iobit\advanced systemcare 5\asctray.exe"
+ "Akamai NetSession Interface" "Akamai NetSession Client" "Akamai Technologies, Inc." "c:\users\ju-young\appdata\local\akamai\netsession_win.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\ju-young\appdata\local\google\update\googleupdate.exe"
+ "HideAnyWindow" "Hide Any Window" "MoRUN.net" "c:\program files (x86)\hideanywindow\haw.exe"
+ "ISUSPM Startup" "InstallShield Update Service Update Manager" "InstallShield Software Corporation" "c:\program files (x86)\common files\installshield\updateservice\isuspm.exe"
+ "LOLReplay Recorder" "LOL Replay Recorder" "LOL Replay" "c:\program files (x86)\lolreplay\lolrecorder.exe"
+ "msnmsgr" "Windows Live Messenger" "Microsoft Corporation" "c:\program files (x86)\windows live\messenger\msnmsgr.exe"
+ "Optimizer Pro" "" "" "File not found: C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "uTorrent" "µTorrent" "BitTorrent, Inc." "c:\program files (x86)\utorrent\utorrent.exe"
+ "WinHide V1.2" "WinHide V1" "José C. Santos (ZCS)" "c:\users\ju-young\desktop\spares\win\winhide.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "pure-go" "Pure Service Provider DLL (64-bit)" "Cisco Systems, Inc." "c:\program files (x86)\common files\pure networks shared\platform\amd64\puresp4.dll"
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Advanced SystemCare" "ASCv5ExtMenu Module" "" "c:\program files (x86)\iobit\advanced systemcare 5\ascv5extmenu_64.dll"
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62_64.dll"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62.dll"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Advanced SystemCare" "ASCv5ExtMenu Module" "" "c:\program files (x86)\iobit\advanced systemcare 5\ascv5extmenu_64.dll"
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62_64.dll"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62_64.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62_64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62_64.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62.dll"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62_64.dll"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "ALSee" "ASShellExt ShellExtension" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\asshlext62.dll"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshlstb.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "NJStarBHO Class" "NJStar Communicator Plugin for IE9" "NJStar Software Corp." "c:\program files (x86)\njstar communicator\x64\njstarbho64.dll"
+ "Skype add-on for Internet Explorer" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Bing Bar Helper" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bingext.dll"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "NJStarBHO Class" "NJStar Communicator Plugin for IE9" "NJStar Software Corp." "c:\program files (x86)\njstar communicator\njstarbho32.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Bing" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bingext.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Messenger Companion (Ctrl+Shift+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler" "" "" ""
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\ESTsoft RunAsStdUser 278805345Task" "ALSee" "ESTsoft Corp." "c:\program files (x86)\estsoft\alsee\alsee.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-659857966-1869069899-1536271641-1000Core" "Google Installer" "Google Inc." "c:\users\ju-young\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-659857966-1869069899-1536271641-1000UA" "Google Installer" "Google Inc." "c:\users\ju-young\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\SmartDefrag_Startup" "Smart Defrag v2" "IObit" "c:\program files (x86)\iobit\smart defrag 2\smartdefrag.exe"
+ "\SmartDefragUpdate" "SmartDefrag Updater" "IObit" "c:\program files (x86)\iobit\smart defrag 2\autoupdate.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdvancedSystemCareService5" "Advanced SystemCare Service" "IObit" "c:\program files (x86)\iobit\advanced systemcare 5\ascservice.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AppleChargerSrv" "Apple mobile devices charging service" "" "c:\windows\system32\applechargersrv.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bbsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "cvhsvc" "Client Virtualization Handler Service (unlocalized description)" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files (x86)\windows live\family safety\fsssvc.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "ICCS" "Intel® Integrated Clock Controller Service - Intel® ICCS" "Intel Corporation" "c:\program files (x86)\intel\intel® integrated clock controller service\iccproxy.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "Intel® Capability Licensing Service Interface" "Version: 1.23.216.0" "Intel® Corporation" "c:\program files\intel\icls client\heciserver.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "jhi_service" "Intel® Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel ® DAL" "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\dal\jhi_service.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveauditservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\nissrv.exe"
+ "nmservice" "Enables Pure Networks Platform services such as file sharing, printer sharing, and network monitoring." "Cisco Systems, Inc." "c:\program files (x86)\common files\pure networks shared\platform\nmsrvc.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "SCBackService" "Splashtop Connect Back Service" "Splashtop Inc." "c:\program files (x86)\splashtop\splashtop connect\backservice.exe"
+ "SeaPort" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation" "c:\program files (x86)\microsoft\bingbar\seaport.exe"
+ "sftlist" "Streams and manages applications." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"
+ "sftvsa" "Monitors global service events and launches virtual services." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "SmoothPingProxy" "SmoothPingProxy Service" "SmoothPing" "c:\program files (x86)\smoothping elite\smoothpingproxy.exe"
+ "SSUService" "Splashtop software updater enables updates and enhancements to the SmartView browser extension." "Splashtop Inc." "c:\program files (x86)\splashtop\splashtop software updater\ssuservice.exe"
+ "TeamViewer7" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files (x86)\teamviewer\version7\teamviewer_service.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "VIAKaraokeService" "Service binary" "VIA Technologies, Inc." "c:\windows\system32\viakaraokesrv.exe"
+ "vToolbarUpdater13.2.0" "ToolbarU Application" "" "c:\program files (x86)\common files\avg secure search\vtoolbarupdater\13.2.0\toolbarupdater.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "xsherlock" "XIGNCODE3 Game Start Service" "Wellbia.com Co., Ltd." "c:\windows\syswow64\xsherlock.xem"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AppleCharger" "Apple mobile devices charging program" "" "c:\windows\system32\drivers\applecharger.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "AtiHDAudioService" "AMD High Definition Audio Function Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\atihdw76.sys"
+ "avgtp" "" "AVG Technologies" "c:\windows\system32\drivers\avgtpx64.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "cpuz135" "CPUID Driver" "CPUID" "c:\windows\system32\drivers\cpuz135_x64.sys"
+ "EagleX64" "" "" "File not found: C:\Windows\system32\drivers\EagleX64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "gdrv" "GIGABYTE Tools" "Windows ® Server 2003 DDK provider" "c:\windows\gdrv.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "GVTDrv64" "" "" "c:\windows\gvtdrv64.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "iusb3hcs" "Intel® USB 3.0 Host Controller Switch Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3hcs.sys"
+ "iusb3hub" "Intel® USB 3.0 Hub Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3hub.sys"
+ "iusb3xhc" "Intel® USB 3.0 eXtensible Host Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3xhc.sys"
+ "L1C" "Atheros Ar81xx series PCI-E Gigabit Ethernet Controller" "Atheros Communications, Inc." "c:\windows\system32\drivers\l1c62x64.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "mvs91xx" "Marvell magni Windows Driver" "Marvell Semiconductor, Inc." "c:\windows\system32\drivers\mvs91xx.sys"
+ "netr28x" "Ralink 802.11 Wireless Adapter Driver" "Ralink Technology, Corp." "c:\windows\system32\drivers\netr28x.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "pnarp" "Provides support for Pure Networks Platform device discovery." "Cisco Systems, Inc." "c:\windows\system32\drivers\pnarp.sys"
+ "purendis" "Provides support for Pure Networks Platform wireless adapter configuration." "Cisco Systems, Inc." "c:\windows\system32\drivers\purendis.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SmartDefragDriver" "File driver of SmartDefrag" "" "c:\windows\system32\drivers\smartdefragdriver.sys"
+ "ssadbus" "SAMSUNG Android USB Composite Device Driver" "MCCI Corporation" "c:\windows\system32\drivers\ssadbus.sys"
+ "ssadmdfl" "SAMSUNG Android USB Modem (Filter)" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdfl.sys"
+ "ssadmdm" "SAMSUNG Android USB Modem Drivers" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdm.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "VIAHdAudAddService" "VIA High Definition Audio Function Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viahduaa.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "VirtDiskBus" "3TB+ Unlock Bus Enumerator" "Giga-Byte Technology CO., LTD." "c:\windows\system32\drivers\virtdiskbus64.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "VUSB3HUB" "Framework Version of ViaHub3 Dynamic Bus Enumerator" "VIA Technologies, Inc." "c:\windows\system32\drivers\viahub3.sys"
+ "X6va005" "" "" "File not found: C:\Users\Ju-young\AppData\Local\Temp\005B578.tmp"
+ "xhcdrv" "WDF Driver for VIA eXtensible Host Controller" "VIA Technologies, Inc." "c:\windows\system32\drivers\xhcdrv.sys"
+ "xspirit" "" "" "File not found: C:\Windows\xspirit.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.bdmpeg" "" "" "c:\windows\syswow64\bdmpega.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "VIDC.FFDS" "ffdshow VFW" "" "c:\windows\syswow64\ff_vfw.dll"
+ "vidc.mpeg" "" "" "c:\windows\syswow64\bdmpegv.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AMD MJPEG Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AMD MJPEG Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "Bandisoft MPEG-1 Audio Decoder" "Bandisoft Directshow Filter" "www.Bandisoft.com" "c:\program files (x86)\bandimpeg1\bdfilters.dll"
+ "Bandisoft MPEG-1 Video Decoder" "Bandisoft Directshow Filter" "www.Bandisoft.com" "c:\program files (x86)\bandimpeg1\bdfilters.dll"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "ColorFilter" "ColorFilter " "Technology Co.,Ltd" "c:\qvodplayer\codecs\colorfilter.ax"
+ "DivX for Blizzard Decoder Filter" "DivX ™ Decoder Filter" "DivXNetworks, Inc." "c:\users\ju-young\desktop\frozen throne\blizzard.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\ffdshow\ffdshow.ax"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "QVOD ASF Splliter" "DirectShow WMV/WMA Parser" "TASK (www.task.com.cn)" "c:\qvodplayer\codecs\asfsplliter.ax"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\qvodplayer\codecs\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\qvodplayer\codecs\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\qvodplayer\codecs\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\qvodplayer\codecs\realmediasplitter.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "SoundFilter" "ColorFilter " "Technology Co.,Ltd" "c:\qvodplayer\codecs\colorfilter.ax"
+ "VHAudioGain" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHCropResize" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHDeinterlace" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHFrameRateConv" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHMixerSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHMultiReader" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHMultiWriter" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHSplitProcSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHYV12Decoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHYV12Encoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries" "" "" ""
+ "SmoothPingLSP" "" "" "File not found: C:\Windows\system32\SmoothPingProxy.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [TCP/IP]]" "" "" "File not found: C:\Windows\system32\SmoothPingProxy.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [TCP/IPv6]]" "" "" "File not found: C:\Windows\system32\SmoothPingProxy.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [UDP/IP]]" "" "" "File not found: C:\Windows\system32\SmoothPingProxy.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [UDP/IPv6]]" "" "" "File not found: C:\Windows\system32\SmoothPingProxy.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64" "" "" ""
+ "SmoothPingLSP" "SmoothPingProxy.dll" "SmoothPing" "c:\windows\system32\smoothpingproxy64.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [TCP/IP]]" "SmoothPingProxy.dll" "SmoothPing" "c:\windows\system32\smoothpingproxy64.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [TCP/IPv6]]" "SmoothPingProxy.dll" "SmoothPing" "c:\windows\system32\smoothpingproxy64.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [UDP/IP]]" "SmoothPingProxy.dll" "SmoothPing" "c:\windows\system32\smoothpingproxy64.dll"
+ "SmoothPingLSP over [MSAFD Tcpip [UDP/IPv6]]" "SmoothPingProxy.dll" "SmoothPing" "c:\windows\system32\smoothpingproxy64.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "HP 5412 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinksts5412lm.dll"
+ "HP Discovery Port Monitor (HP Officejet 6500 E710n-z)" "HP Discovery Port Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpdiscopm5412.dll"
"C:\Users\Ju-young\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "WinZip Gadget" "" "WinZip" "C:\Program Files\Windows Sidebar\Shared Gadgets\WinZip.Gadget\en-US\Gadget.xml"


Is that all that's needed then? Still not sure how to solve this problem :3

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:10 AM

Posted 17 October 2012 - 06:04 PM

Do you still have redirects?

which browser?

#13 dragon5281

dragon5281
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 18 October 2012 - 02:22 AM

the redirects have stopped considerably, but not entirely. It happens on Google Chrome sometimes and on IE once now, but that means the virus is still present right ;3

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:10 AM

Posted 18 October 2012 - 03:48 AM

Lets take a deeper look

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here with logs

http://www.bleepingcomputer.com/forums/forum22.html

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users