Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Redirect Virus and banner popups


  • Please log in to reply
6 replies to this topic

#1 Jaxs1234

Jaxs1234

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:13 PM

Posted 28 November 2012 - 11:27 AM

Hello, I need help.

For a few days now when ever i'm browsing the internet I randomly get redirected to an ad page whenever I click on a link (it seems pretty popular right now)
and also randomly during my web browsing I get this small banner popup on the bottom-right of my screen.

Help would be much appreciated.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:13 PM

Posted 28 November 2012 - 11:35 AM

Hello and welcome. please run these and let me know how it is after.

MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.




Posted Image Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.



ESET ONLINE

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Jaxs1234

Jaxs1234
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:13 PM

Posted 28 November 2012 - 05:04 PM

Sorry it took so long, the ESET scan took around 4 hours.
----------------------------------------------------------------------------

MiniToolBox by Farbar Version: 25-11-2012
Ran by Daniel (administrator) on 28-11-2012 at 11:47:30
Running from "C:\Users\Daniel\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================




========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set subinterface interface=?%$ subinterface=ethernet_13 mtu=1477
set subinterface interface=?%$ subinterface=ethernet_12 mtu=1477


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Daniel-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Tunngle:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Win32 Adapter V9 (Tunngle)
Physical Address. . . . . . . . . : 00-FF-21-E2-2A-26
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-02-72-21-A0-B7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : C8-60-00-09-53-56
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::24cf:89b7:6899:b516%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : November-28-12 11:09:22 AM
Lease Expires . . . . . . . . . . : December-01-12 11:09:21 AM
Default Gateway . . . . . . . . . : fe80::1%12
192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 264790016
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-C2-D0-B7-C8-60-00-09-53-56
DNS Servers . . . . . . . . . . . : 192.168.1.1
Primary WINS Server . . . . . . . : 192.168.1.1
Secondary WINS Server . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{21E22A26-368B-4C92-822A-DFB2D8D834EB}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6F6157BA-975E-46CA-9E9F-2620D513FB1A}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:58:32e0:bb17:b8fa(Preferred)
Link-local IPv6 Address . . . . . : fe80::58:32e0:bb17:b8fa%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{CBF57938-7C4D-41D3-949D-B62DA677988C}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:400b:800::1009
74.125.226.0
74.125.226.1
74.125.226.2
74.125.226.3
74.125.226.4
74.125.226.5
74.125.226.6
74.125.226.7
74.125.226.8
74.125.226.9
74.125.226.14


Pinging google.com [74.125.226.14] with 32 bytes of data:
Reply from 74.125.226.14: bytes=32 time=93ms TTL=58
Reply from 74.125.226.14: bytes=32 time=113ms TTL=58

Ping statistics for 74.125.226.14:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 93ms, Maximum = 113ms, Average = 103ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=384ms TTL=47
Reply from 98.139.183.24: bytes=32 time=598ms TTL=47

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 384ms, Maximum = 598ms, Average = 491ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=4ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 4ms, Average = 2ms
===========================================================================
Interface List
22...00 ff 21 e2 2a 26 ......TAP-Win32 Adapter V9 (Tunngle)
18...00 02 72 21 a0 b7 ......Bluetooth Device (Personal Area Network)
12...c8 60 00 09 53 56 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
11...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.6 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.6 276
192.168.1.6 255.255.255.255 On-link 192.168.1.6 276
192.168.1.255 255.255.255.255 On-link 192.168.1.6 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.6 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.6 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 276 ::/0 fe80::1
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:9d38:6ab8:58:32e0:bb17:b8fa/128
On-link
12 276 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::58:32e0:bb17:b8fa/128
On-link
12 276 fe80::24cf:89b7:6899:b516/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
12 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/28/2012 11:10:51 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 09:54:23 PM) (Source: Application Hang) (User: )
Description: The program dlords2012.exe version 1.0.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: ba0

Start Time: 01cdcd13823569da

Termination Time: 90

Application Path: C:\Users\Daniel\Desktop\Dungeon Lords MMXII\dlords2012.exe

Report Id:

Error: (11/27/2012 01:30:40 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 01:22:27 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 11:00:41 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 10:56:48 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 08:53:27 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 08:18:45 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/26/2012 09:02:32 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/25/2012 07:48:09 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (11/28/2012 11:11:57 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (11/28/2012 11:11:57 AM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (11/28/2012 11:09:45 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (11/28/2012 02:52:50 AM) (Source: DCOM) (User: )
Description: {51FA2736-5DEE-11D4-98E8-006008BF430C}

Error: (11/27/2012 01:31:43 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (11/27/2012 01:31:43 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (11/27/2012 01:28:53 PM) (Source: BTHUSB) (User: )
Description: The Bluetooth driver expected an HCI event with a certain size but did not receive it.

Error: (11/27/2012 01:28:08 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (11/27/2012 01:23:30 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (11/27/2012 01:23:30 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================
Error: (11/28/2012 11:10:51 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 09:54:23 PM) (Source: Application Hang)(User: )
Description: dlords2012.exe1.0.0.1ba001cdcd13823569da90C:\Users\Daniel\Desktop\Dungeon Lords MMXII\dlords2012.exe

Error: (11/27/2012 01:30:40 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 01:22:27 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 11:00:41 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 10:56:48 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 08:53:27 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2012 08:18:45 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/26/2012 09:02:32 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/25/2012 07:48:09 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
Date: 2012-06-15 18:52:16.576
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-15 18:44:52.672
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-15 08:47:43.738
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-15 01:41:37.504
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-15 01:35:07.001
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-14 20:45:00.133
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-14 19:11:22.754
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-14 18:58:41.953
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-14 16:28:51.857
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-06-14 16:14:47.986
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00146_004\avcuf64.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.5.0.600)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.5.502.110)
Adobe Reader 9.5.2 (Version: 9.5.2)
AI Suite II (Version: 1.01.34)
Alone in the Dark 2
Alone in the Dark 3
Amnesia: The Dark Descent
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Asmedia ASM104x USB 3.0 Host Controller Driver (Version: 1.10.0.0)
ATI Catalyst Install Manager (Version: 3.0.812.0)
AVG 2013 (Version: 13.0.2634)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 2013.0.2793)
AVG PC Tuneup (Version: 10.0.0.27)
AVG Security Toolbar
Baldur's Gate
Bastion
Betrayal Pack
BioShock (Version: 1.0.0.0)
BioShock 2
BitTorrent (Version: 7.6.1)
Blake Stone Aliens of Gold
Blake Stone Planet Strike
Bloons TD 5 Deluxe version 1.10 (Version: 1.10)
Bonjour (Version: 3.0.0.10)
Borderlands
Braid
Breath of Death VII
Bulletstorm
Call of Cthulhu: Dark Corners of the Earth
Call To Power 2
Cave Story+
CCleaner (Version: 3.25)
CopyTrans Suite Remove Only (Version: 2.35)
CPUID HWMonitor 1.19
Cthulhu Saves the World
D-Fend Reloaded 1.3.2 (deinstall) (Version: 1.3.2)
D2SE V2.2.0 (Version: 2.2.0)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.3.0297)
Dead Space 2
Deus Ex: Game of the Year Edition
Deus Ex: Invisible War
Diablo II
Diablo III (Version: 1.0.4.11327)
Din's Curse 1.02
DirectX 9 Runtime (Version: 1.00.0000)
Divine Divinity
DivX Setup (Version: 2.6.1.8)
DOOM 3
DOOM 3: Resurrection of Evil
DOOM II: Hell on Earth
Duke Nukem 3D
Dungeon Defenders
Dungeons of Dredmor
Dwarfs!?
Empire Earth Gold Edition
F.E.A.R. 2: Project Origin
Fallout 2
Fallout: New Vegas
Fleet Operations version 3.2.3 (Version: 3.2.3)
Fortix
GameFly (Version: 1.2.106)
GameSpy Arcade
Garry's Mod
GCFScape 1.8.2
GOG.com Downloader version 3.2.14 (Version: 3.2.14)
Google Chrome (Version: 23.0.1271.91)
GPL MPEG-1/2 DirectShow Decoder Filter (Version: 0.1.2)
Graboid Video 3.21 (Version: 3.21)
Hack, Slash, Loot
Half-Life 2
Half-Life 2: Deathmatch
Half-Life 2: Episode One
Half-Life 2: Episode Two
Half-Life 2: Lost Coast
Half-Life Deathmatch: Source
Half-Life: Blue Shift
Half-Life: Opposing Force
Half-Life: Source
Heretic: Shadow of the Serpent Riders
Heroes Of Might And Magic
Heroes of Might and Magic 2 GOLD
Heroes of Might and Magic 3 Complete
Heroes of Might and Magic V
Heroes of Might and Magic V: Hammers of Fate
Heroes of Might and Magic V: Tribes of the East
HeXen II
HeXen: Beyond Heretic
HeXen: Deathkings of the Dark Citadel
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
Inside a Star-filled Sky
iTunes (Version: 10.7.0.21)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 31 (64-bit) (Version: 6.0.310)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
Lagarith lossless video codec (Remove Only)
Left 4 Dead 2
Legend of Grimrock
LIMBO
Lone Survivor
Magicka
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MapleStory
Master Levels for DOOM II
Master of Orion 1 and 2
Media Player Classic - Home Cinema 1.6.1.4235 x64 (Version: 1.6.1.4235)
Messenger Companion (Version: 15.4.3502.0922)
Metro 2033
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MTX (Version: 1.0.0)
NVIDIA 3D Vision Controller Driver 306.23 (Version: 306.23)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
On the Rain-Slick Precipice of Darkness, Episode One
On the Rain-Slick Precipice of Darkness, Episode Two
One Unit Whole Blood
OpenAL
Orcs Must Die!
Orcs Must Die! 2
Painkiller Overdose
Painkiller: Black Edition
Painkiller: Recurring Evil
Painkiller: Redemption
Painkiller: Resurrection
Pando Media Booster (Version: 2.6.0.7)
Penny Arcade's On the Rain-Slick Precipice of Darkness 3
Penumbra: Black Plague
Penumbra: Overture
Penumbra: Requiem
Plants vs. Zombies: Game of the Year
PlugY, The Survival Kit (Version: 10.00)
Portal
Portal 2
Portal 2 Publishing Tool
Project64 1.6 (Version: 1.6)
Psychonauts
Quake II: Ground Zero
Quake II: The Reckoning
Quake III Arena
Quake III: Team Arena
Quake Mission Pack 1: Scourge of Armagon
Quake Mission Pack 2: Dissolution of Eternity
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver (Version: 7.44.421.2011)
Recettear: An Item Shop's Tale
Redneck Rampage Collection
Return to Castle Wolfenstein
Rise of The Triad
RollerCoaster Tycoon Deluxe
Roxio Game Capture (Version: 1.0)
Roxio Game Capture (Version: 1.0.076)
Roxio GAMECAP (Version: 1.01.0000)
ROXIO GAMECAP (Version: 1.06.0000)
Serious Sam 3: BFE
Serious Sam Classic: The First Encounter
Serious Sam Classic: The Second Encounter
Serious Sam HD: The First Encounter
Serious Sam HD: The Second Encounter
Shadow Warrior Complete (Version: 2.0.0.7)
Sid Meier's Alpha Centauri
SimCity 2000 Special Edition
Skype Click to Call (Version: 6.4.11328)
Skype™ 5.10 (Version: 5.10.116)
Smart Defrag 2 (Version: 2.6)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Speccy (Version: 1.16)
Stacking
Star Wars Jedi Knight: Dark Forces II
Star Wars: Dark Forces
Star Wars: Knights of the Old Republic
StarCraft
Steam (Version: 1.0.0.0)
Super Meat Boy
SUPERAntiSpyware (Version: 5.6.1014)
Sword of the Stars Complete Collection
Sword of the Stars II
System Requirements Lab CYRI (64-bit) (Version: 4.5.1.0)
System Requirements Lab CYRI (Version: 5.0.6.0)
Team Fortress 2
Team Fortress 2 Beta
Team Fortress Classic
Terraria
The Binding Of Isaac
The Complete Ultima VII
The Incredible Machine Series
The Misadventures of P.B. Winterbottom
The Witcher Enhanced Edition Director's Cut
Theme Hospital
Torchlight
Tribes Ascend (Version: 1.0.1016.7)
Trine 2
Tunngle beta
UFO: Extraterrestrials Gold
Ultima 4 - Quest of the Avatar
Ultima Second Trilogy
Ultima Trilogy
Ultima Underworld 1 and 2
UnHackMe 5.99 release
Universe Sandbox
Unreal Tournament 2004
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 1.0.1 (Version: 1.0.1)
VVVVVV
WIDCOMM Bluetooth Software (Version: 6.3.0.7500)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Wing Commander 1 and 2
Wing Commander III - Heart of the Tiger
Wing Commander Privateer
WinRAR 4.11 (64-bit) (Version: 4.11.0)
Wolfenstein 3D
Wolfenstein 3D: Spear of Destiny
Worms 2
Worms Armageddon
Worms Revolution
Worms United
X-COM: Apocalypse
X-COM: Enforcer
X-COM: Interceptor
X-COM: Terror from the Deep
X-COM: UFO Defense
XCOM: Enemy Unknown Demo
Ys: The Oath in Felghana
Zandronum (Version: 1.0)
Zip Motion Block Video codec (Remove Only)

========================= Memory info: ===================================

Percentage of memory in use: 56%
Total physical RAM: 8138.43 MB
Available physical RAM: 3569.29 MB
Total Pagefile: 16275.06 MB
Available Pagefile: 11955.1 MB
Total Virtual: 4095.88 MB
Available Virtual: 3976.29 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.41 GB) (Free:101.29 GB) NTFS

========================= Users: ========================================

User accounts for \\DANIEL-PC

Administrator Daniel Guest
UpdatusUser


**** End of log ****




---------------------------------------------------------------------------------------
11:50:45.0962 7068 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
11:50:46.0588 7068 ============================================================
11:50:46.0588 7068 Current date / time: 2012/11/28 11:50:46.0588
11:50:46.0588 7068 SystemInfo:
11:50:46.0588 7068
11:50:46.0588 7068 OS Version: 6.1.7601 ServicePack: 1.0
11:50:46.0588 7068 Product type: Workstation
11:50:46.0588 7068 ComputerName: DANIEL-PC
11:50:46.0588 7068 UserName: Daniel
11:50:46.0588 7068 Windows directory: C:\Windows
11:50:46.0589 7068 System windows directory: C:\Windows
11:50:46.0589 7068 Running under WOW64
11:50:46.0589 7068 Processor architecture: Intel x64
11:50:46.0589 7068 Number of processors: 8
11:50:46.0589 7068 Page size: 0x1000
11:50:46.0589 7068 Boot type: Normal boot
11:50:46.0589 7068 ============================================================
11:50:50.0765 7068 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:50:50.0786 7068 ============================================================
11:50:50.0786 7068 \Device\Harddisk0\DR0:
11:50:50.0798 7068 MBR partitions:
11:50:50.0798 7068 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:50:50.0798 7068 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
11:50:50.0798 7068 ============================================================
11:50:51.0090 7068 C: <-> \Device\Harddisk0\DR0\Partition2
11:50:51.0090 7068 ============================================================
11:50:51.0090 7068 Initialize success
11:50:51.0090 7068 ============================================================
11:51:13.0360 2400 ============================================================
11:51:13.0360 2400 Scan started
11:51:13.0360 2400 Mode: Manual; TDLFS;
11:51:13.0360 2400 ============================================================
11:51:15.0961 2400 ================ Scan system memory ========================
11:51:15.0961 2400 System memory - ok
11:51:15.0962 2400 ================ Scan services =============================
11:51:16.0406 2400 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
11:51:16.0409 2400 !SASCORE - ok
11:51:16.0790 2400 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:51:18.0941 2400 1394ohci - ok
11:51:19.0112 2400 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:51:19.0120 2400 ACPI - ok
11:51:19.0262 2400 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:51:19.0267 2400 AcpiPmi - ok
11:51:20.0469 2400 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:51:22.0636 2400 AdobeFlashPlayerUpdateSvc - ok
11:51:22.0851 2400 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:51:22.0861 2400 adp94xx - ok
11:51:22.0999 2400 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:51:23.0007 2400 adpahci - ok
11:51:23.0049 2400 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:51:23.0056 2400 adpu320 - ok
11:51:23.0119 2400 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:51:23.0122 2400 AeLookupSvc - ok
11:51:23.0153 2400 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:51:23.0165 2400 AFD - ok
11:51:23.0199 2400 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:51:23.0204 2400 agp440 - ok
11:51:23.0241 2400 [ 8B6625D53C18774F0102F690E285B5E8 ] AiChargerPlus C:\Windows\system32\DRIVERS\AiChargerPlus.sys
11:51:23.0245 2400 AiChargerPlus - ok
11:51:23.0262 2400 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:51:23.0267 2400 ALG - ok
11:51:23.0331 2400 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:51:23.0335 2400 aliide - ok
11:51:23.0358 2400 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:51:23.0364 2400 amdide - ok
11:51:23.0388 2400 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:51:23.0394 2400 AmdK8 - ok
11:51:23.0416 2400 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:51:23.0421 2400 AmdPPM - ok
11:51:23.0462 2400 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:51:23.0481 2400 amdsata - ok
11:51:23.0498 2400 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:51:23.0504 2400 amdsbs - ok
11:51:23.0560 2400 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:51:23.0565 2400 amdxata - ok
11:51:23.0601 2400 [ 2FBB00A7616106B95104574C6CD640C2 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
11:51:23.0604 2400 amd_sata - ok
11:51:23.0618 2400 [ 87D0D7645CB0D53220649BD5FE15D93E ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
11:51:23.0622 2400 amd_xata - ok
11:51:23.0639 2400 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:51:23.0645 2400 AppID - ok
11:51:23.0658 2400 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:51:23.0662 2400 AppIDSvc - ok
11:51:23.0682 2400 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:51:23.0686 2400 Appinfo - ok
11:51:23.0738 2400 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:51:23.0742 2400 Apple Mobile Device - ok
11:51:23.0761 2400 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
11:51:23.0767 2400 arc - ok
11:51:23.0793 2400 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:51:23.0798 2400 arcsas - ok
11:51:24.0017 2400 [ FB03A917C1294D3E6D671F24722E1BA3 ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
11:51:24.0033 2400 asComSvc - ok
11:51:24.0154 2400 [ A63173897EA1A73A75D0E65036DE5B15 ] asHmComSvc C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
11:51:24.0169 2400 asHmComSvc - ok
11:51:24.0291 2400 [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
11:51:24.0295 2400 AsIO - ok
11:51:24.0401 2400 [ 954950D11ADA98AC1B7EE3C770E4622C ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
11:51:24.0405 2400 asmthub3 - ok
11:51:24.0568 2400 [ 01DBB05DB1DB95803E3C9F2B49AFE79C ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
11:51:24.0576 2400 asmtxhci - ok
11:51:25.0411 2400 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:51:25.0415 2400 aspnet_state - ok
11:51:26.0120 2400 [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
11:51:26.0131 2400 AsSysCtrlService - ok
11:51:26.0275 2400 [ 1392B92179B07B672720763D9B1028A5 ] AsUpIO C:\Windows\syswow64\drivers\AsUpIO.sys
11:51:26.0279 2400 AsUpIO - ok
11:51:26.0479 2400 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:51:26.0484 2400 AsyncMac - ok
11:51:26.0636 2400 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:51:26.0640 2400 atapi - ok
11:51:26.0850 2400 [ 3EFD964D52221360AF0673CD61C2F4F5 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:51:26.0969 2400 atikmdag - ok
11:51:27.0039 2400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:51:27.0052 2400 AudioEndpointBuilder - ok
11:51:27.0067 2400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:51:27.0076 2400 AudioSrv - ok
11:51:27.0324 2400 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
11:51:27.0444 2400 AVGIDSAgent - ok
11:51:27.0549 2400 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
11:51:27.0554 2400 AVGIDSDriver - ok
11:51:27.0639 2400 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
11:51:27.0643 2400 AVGIDSHA - ok
11:51:27.0739 2400 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
11:51:27.0745 2400 Avgldx64 - ok
11:51:27.0869 2400 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
11:51:27.0876 2400 Avgloga - ok
11:51:27.0952 2400 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
11:51:28.0006 2400 Avgmfx64 - ok
11:51:28.0110 2400 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
11:51:28.0115 2400 Avgrkx64 - ok
11:51:28.0282 2400 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
11:51:28.0290 2400 Avgtdia - ok
11:51:28.0712 2400 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
11:51:28.0741 2400 avgtp - ok
11:51:28.0834 2400 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
11:51:28.0840 2400 avgwd - ok
11:51:28.0941 2400 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:51:28.0976 2400 AxInstSV - ok
11:51:29.0085 2400 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:51:29.0095 2400 b06bdrv - ok
11:51:29.0163 2400 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:51:29.0170 2400 b57nd60a - ok
11:51:29.0245 2400 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:51:29.0250 2400 BDESVC - ok
11:51:29.0336 2400 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:51:29.0343 2400 Beep - ok
11:51:29.0418 2400 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:51:29.0430 2400 BFE - ok
11:51:29.0496 2400 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
11:51:29.0512 2400 BITS - ok
11:51:29.0605 2400 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:51:29.0611 2400 blbdrive - ok
11:51:29.0702 2400 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:51:29.0710 2400 Bonjour Service - ok
11:51:29.0767 2400 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:51:29.0818 2400 bowser - ok
11:51:29.0930 2400 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:51:29.0935 2400 BrFiltLo - ok
11:51:30.0010 2400 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:51:30.0013 2400 BrFiltUp - ok
11:51:30.0067 2400 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:51:30.0072 2400 Browser - ok
11:51:30.0166 2400 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:51:30.0173 2400 Brserid - ok
11:51:30.0268 2400 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:51:30.0276 2400 BrSerWdm - ok
11:51:30.0451 2400 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:51:30.0526 2400 BrUsbMdm - ok
11:51:30.0664 2400 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:51:30.0669 2400 BrUsbSer - ok
11:51:30.0869 2400 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:51:30.0892 2400 BthEnum - ok
11:51:31.0039 2400 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:51:31.0043 2400 BTHMODEM - ok
11:51:31.0109 2400 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:51:31.0166 2400 BthPan - ok
11:51:31.0252 2400 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:51:31.0262 2400 BTHPORT - ok
11:51:31.0395 2400 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:51:31.0398 2400 bthserv - ok
11:51:31.0425 2400 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:51:31.0427 2400 BTHUSB - ok
11:51:31.0577 2400 [ 9DE56FA4533E485AE5409D3C11747143 ] BTWAMPFL C:\Windows\system32\DRIVERS\btwampfl.sys
11:51:31.0584 2400 BTWAMPFL - ok
11:51:31.0626 2400 [ F6135859A582A7294BA7A3336E08BAA1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
11:51:31.0743 2400 btwaudio - ok
11:51:31.0924 2400 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
11:51:31.0929 2400 btwavdt - ok
11:51:32.0104 2400 [ 6F38E50CFB506991B9D51E0F134B0DF7 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
11:51:32.0120 2400 btwdins - ok
11:51:32.0185 2400 [ E8D2BCD080EA91E74775B9F5EA051F97 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
11:51:32.0195 2400 btwl2cap - ok
11:51:32.0319 2400 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
11:51:32.0327 2400 btwrchid - ok
11:51:32.0454 2400 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:51:32.0460 2400 cdfs - ok
11:51:32.0937 2400 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:51:32.0949 2400 cdrom - ok
11:51:33.0359 2400 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:51:33.0362 2400 CertPropSvc - ok
11:51:33.0402 2400 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
11:51:33.0406 2400 circlass - ok
11:51:33.0436 2400 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:51:33.0443 2400 CLFS - ok
11:51:33.0565 2400 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:51:33.0616 2400 clr_optimization_v2.0.50727_32 - ok
11:51:33.0796 2400 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:51:33.0801 2400 clr_optimization_v2.0.50727_64 - ok
11:51:34.0191 2400 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:51:34.0345 2400 clr_optimization_v4.0.30319_32 - ok
11:51:34.0412 2400 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:51:34.0417 2400 clr_optimization_v4.0.30319_64 - ok
11:51:34.0591 2400 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
11:51:34.0598 2400 CmBatt - ok
11:51:34.0648 2400 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:51:34.0656 2400 cmdide - ok
11:51:34.0718 2400 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
11:51:34.0728 2400 CNG - ok
11:51:34.0788 2400 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:51:34.0791 2400 Compbatt - ok
11:51:34.0856 2400 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:51:34.0861 2400 CompositeBus - ok
11:51:34.0890 2400 COMSysApp - ok
11:51:34.0962 2400 [ C08063F052308B6F5882482615387F30 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
11:51:34.0988 2400 cpuz135 - ok
11:51:35.0088 2400 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:51:35.0092 2400 crcdisk - ok
11:51:35.0359 2400 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:51:35.0364 2400 CryptSvc - ok
11:51:35.0810 2400 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:51:35.0822 2400 DcomLaunch - ok
11:51:35.0952 2400 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:51:35.0959 2400 defragsvc - ok
11:51:36.0291 2400 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:51:36.0298 2400 DfsC - ok
11:51:36.0417 2400 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:51:36.0423 2400 Dhcp - ok
11:51:36.0468 2400 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:51:36.0475 2400 discache - ok
11:51:36.0619 2400 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
11:51:36.0628 2400 Disk - ok
11:51:36.0719 2400 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:51:36.0723 2400 Dnscache - ok
11:51:36.0793 2400 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:51:36.0800 2400 dot3svc - ok
11:51:36.0870 2400 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:51:36.0875 2400 DPS - ok
11:51:36.0962 2400 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:51:36.0965 2400 drmkaud - ok
11:51:37.0013 2400 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:51:37.0042 2400 dtsoftbus01 - ok
11:51:37.0091 2400 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:51:37.0108 2400 DXGKrnl - ok
11:51:37.0143 2400 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:51:37.0147 2400 EapHost - ok
11:51:37.0344 2400 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:51:37.0428 2400 ebdrv - ok
11:51:37.0483 2400 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:51:37.0486 2400 EFS - ok
11:51:37.0664 2400 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:51:37.0734 2400 ehRecvr - ok
11:51:37.0828 2400 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:51:37.0833 2400 ehSched - ok
11:51:37.0925 2400 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:51:37.0936 2400 elxstor - ok
11:51:37.0992 2400 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:51:37.0997 2400 ErrDev - ok
11:51:38.0504 2400 esgiguard - ok
11:51:38.0676 2400 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:51:38.0684 2400 EventSystem - ok
11:51:38.0763 2400 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:51:38.0770 2400 exfat - ok
11:51:38.0924 2400 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:51:38.0931 2400 fastfat - ok
11:51:39.0025 2400 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:51:39.0038 2400 Fax - ok
11:51:39.0131 2400 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
11:51:39.0135 2400 fdc - ok
11:51:39.0227 2400 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:51:39.0230 2400 fdPHost - ok
11:51:39.0310 2400 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:51:39.0385 2400 FDResPub - ok
11:51:39.0414 2400 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:51:39.0421 2400 FileInfo - ok
11:51:39.0448 2400 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:51:39.0451 2400 Filetrace - ok
11:51:39.0472 2400 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
11:51:39.0475 2400 flpydisk - ok
11:51:39.0505 2400 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:51:39.0510 2400 FltMgr - ok
11:51:39.0624 2400 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
11:51:39.0644 2400 FontCache - ok
11:51:39.0698 2400 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:51:39.0704 2400 FontCache3.0.0.0 - ok
11:51:39.0725 2400 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:51:39.0733 2400 FsDepends - ok
11:51:39.0779 2400 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:51:39.0786 2400 Fs_Rec - ok
11:51:40.0008 2400 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:51:40.0014 2400 fvevol - ok
11:51:40.0031 2400 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:51:40.0037 2400 gagp30kx - ok
11:51:40.0090 2400 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:51:40.0093 2400 GEARAspiWDM - ok
11:51:40.0168 2400 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:51:40.0182 2400 gpsvc - ok
11:51:40.0232 2400 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:51:40.0236 2400 hcw85cir - ok
11:51:40.0269 2400 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:51:40.0278 2400 HdAudAddService - ok
11:51:40.0325 2400 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:51:40.0330 2400 HDAudBus - ok
11:51:40.0358 2400 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:51:40.0361 2400 HidBatt - ok
11:51:40.0417 2400 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:51:40.0422 2400 HidBth - ok
11:51:40.0443 2400 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
11:51:40.0449 2400 HidIr - ok
11:51:40.0476 2400 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
11:51:40.0478 2400 hidserv - ok
11:51:40.0525 2400 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:51:40.0528 2400 HidUsb - ok
11:51:40.0651 2400 [ 8D1F00F4254C3EF428B715484940427C ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
11:51:40.0652 2400 HiPatchService - ok
11:51:40.0664 2400 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:51:40.0669 2400 hkmsvc - ok
11:51:40.0698 2400 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:51:40.0705 2400 HomeGroupListener - ok
11:51:40.0736 2400 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:51:40.0742 2400 HomeGroupProvider - ok
11:51:40.0761 2400 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:51:40.0767 2400 HpSAMD - ok
11:51:40.0800 2400 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:51:40.0822 2400 HTTP - ok
11:51:40.0847 2400 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:51:40.0851 2400 hwpolicy - ok
11:51:40.0870 2400 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:51:40.0875 2400 i8042prt - ok
11:51:40.0922 2400 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:51:40.0943 2400 iaStorV - ok
11:51:41.0006 2400 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
11:51:41.0038 2400 IDriverT - ok
11:51:41.0134 2400 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:51:41.0150 2400 idsvc - ok
11:51:41.0173 2400 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:51:41.0177 2400 iirsp - ok
11:51:41.0210 2400 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:51:41.0226 2400 IKEEXT - ok
11:51:41.0236 2400 IntcAzAudAddService - ok
11:51:41.0285 2400 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:51:41.0289 2400 intelide - ok
11:51:41.0328 2400 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
11:51:41.0333 2400 intelppm - ok
11:51:41.0370 2400 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:51:41.0376 2400 IPBusEnum - ok
11:51:41.0383 2400 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:51:41.0387 2400 IpFilterDriver - ok
11:51:41.0455 2400 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:51:41.0466 2400 iphlpsvc - ok
11:51:41.0519 2400 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:51:41.0524 2400 IPMIDRV - ok
11:51:41.0563 2400 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:51:41.0569 2400 IPNAT - ok
11:51:41.0632 2400 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:51:41.0648 2400 iPod Service - ok
11:51:41.0680 2400 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:51:41.0684 2400 IRENUM - ok
11:51:41.0703 2400 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:51:41.0707 2400 isapnp - ok
11:51:41.0728 2400 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:51:41.0736 2400 iScsiPrt - ok
11:51:41.0767 2400 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:51:41.0771 2400 kbdclass - ok
11:51:41.0785 2400 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:51:41.0789 2400 kbdhid - ok
11:51:41.0800 2400 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:51:41.0808 2400 KeyIso - ok
11:51:41.0866 2400 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:51:41.0872 2400 KSecDD - ok
11:51:41.0889 2400 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:51:41.0895 2400 KSecPkg - ok
11:51:41.0906 2400 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:51:41.0910 2400 ksthunk - ok
11:51:41.0935 2400 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:51:41.0945 2400 KtmRm - ok
11:51:41.0996 2400 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:51:42.0003 2400 LanmanServer - ok
11:51:42.0022 2400 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:51:42.0028 2400 LanmanWorkstation - ok
11:51:42.0053 2400 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:51:42.0057 2400 lltdio - ok
11:51:42.0077 2400 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:51:42.0086 2400 lltdsvc - ok
11:51:42.0105 2400 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:51:42.0108 2400 lmhosts - ok
11:51:42.0136 2400 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:51:42.0141 2400 LSI_FC - ok
11:51:42.0154 2400 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:51:42.0159 2400 LSI_SAS - ok
11:51:42.0171 2400 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
11:51:42.0176 2400 LSI_SAS2 - ok
11:51:42.0190 2400 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:51:42.0195 2400 LSI_SCSI - ok
11:51:42.0217 2400 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:51:42.0224 2400 luafv - ok
11:51:42.0286 2400 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:51:42.0336 2400 MBAMProtector - ok
11:51:42.0447 2400 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:51:42.0454 2400 MBAMScheduler - ok
11:51:42.0481 2400 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:51:42.0493 2400 MBAMService - ok
11:51:42.0511 2400 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:51:42.0518 2400 Mcx2Svc - ok
11:51:42.0537 2400 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
11:51:42.0542 2400 megasas - ok
11:51:42.0567 2400 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
11:51:42.0575 2400 MegaSR - ok
11:51:42.0601 2400 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:51:42.0605 2400 MMCSS - ok
11:51:42.0627 2400 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:51:42.0631 2400 Modem - ok
11:51:42.0667 2400 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:51:42.0671 2400 monitor - ok
11:51:42.0708 2400 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:51:42.0712 2400 mouclass - ok
11:51:42.0738 2400 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:51:42.0742 2400 mouhid - ok
11:51:42.0756 2400 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:51:42.0761 2400 mountmgr - ok
11:51:42.0780 2400 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:51:42.0787 2400 mpio - ok
11:51:42.0807 2400 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:51:42.0811 2400 mpsdrv - ok
11:51:42.0851 2400 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:51:42.0867 2400 MpsSvc - ok
11:51:42.0889 2400 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:51:42.0894 2400 MRxDAV - ok
11:51:42.0927 2400 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:51:42.0944 2400 mrxsmb - ok
11:51:42.0968 2400 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:51:42.0975 2400 mrxsmb10 - ok
11:51:43.0002 2400 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:51:43.0008 2400 mrxsmb20 - ok
11:51:43.0023 2400 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:51:43.0027 2400 msahci - ok
11:51:43.0048 2400 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:51:43.0054 2400 msdsm - ok
11:51:43.0085 2400 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:51:43.0092 2400 MSDTC - ok
11:51:43.0119 2400 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:51:43.0124 2400 Msfs - ok
11:51:43.0136 2400 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:51:43.0140 2400 mshidkmdf - ok
11:51:43.0155 2400 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:51:43.0160 2400 msisadrv - ok
11:51:43.0185 2400 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:51:43.0191 2400 MSiSCSI - ok
11:51:43.0199 2400 msiserver - ok
11:51:43.0240 2400 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:51:43.0244 2400 MSKSSRV - ok
11:51:43.0263 2400 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:51:43.0266 2400 MSPCLOCK - ok
11:51:43.0279 2400 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:51:43.0283 2400 MSPQM - ok
11:51:43.0307 2400 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:51:43.0316 2400 MsRPC - ok
11:51:43.0343 2400 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:51:43.0348 2400 mssmbios - ok
11:51:43.0380 2400 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:51:43.0384 2400 MSTEE - ok
11:51:43.0407 2400 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:51:43.0411 2400 MTConfig - ok
11:51:43.0452 2400 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:51:43.0456 2400 Mup - ok
11:51:43.0492 2400 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:51:43.0503 2400 napagent - ok
11:51:43.0531 2400 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:51:43.0539 2400 NativeWifiP - ok
11:51:43.0644 2400 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:51:43.0683 2400 NDIS - ok
11:51:43.0731 2400 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:51:43.0735 2400 NdisCap - ok
11:51:43.0756 2400 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:51:43.0760 2400 NdisTapi - ok
11:51:43.0779 2400 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:51:43.0784 2400 Ndisuio - ok
11:51:43.0807 2400 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:51:43.0814 2400 NdisWan - ok
11:51:43.0822 2400 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:51:43.0826 2400 NDProxy - ok
11:51:43.0845 2400 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:51:43.0850 2400 NetBIOS - ok
11:51:43.0861 2400 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:51:43.0868 2400 NetBT - ok
11:51:43.0916 2400 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
11:51:43.0919 2400 Netlogon - ok
11:51:43.0946 2400 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:51:43.0955 2400 Netman - ok
11:51:44.0025 2400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:51:44.0031 2400 NetMsmqActivator - ok
11:51:44.0037 2400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:51:44.0040 2400 NetPipeActivator - ok
11:51:44.0100 2400 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:51:44.0110 2400 netprofm - ok
11:51:44.0118 2400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:51:44.0120 2400 NetTcpActivator - ok
11:51:44.0127 2400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:51:44.0130 2400 NetTcpPortSharing - ok
11:51:44.0158 2400 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:51:44.0162 2400 nfrd960 - ok
11:51:44.0181 2400 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:51:44.0189 2400 NlaSvc - ok
11:51:44.0204 2400 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:51:44.0208 2400 Npfs - ok
11:51:44.0230 2400 npggsvc - ok
11:51:44.0245 2400 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:51:44.0249 2400 nsi - ok
11:51:44.0256 2400 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:51:44.0260 2400 nsiproxy - ok
11:51:44.0390 2400 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:51:44.0456 2400 Ntfs - ok
11:51:44.0475 2400 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:51:44.0479 2400 Null - ok
11:51:44.0511 2400 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
11:51:44.0535 2400 NVHDA - ok
11:51:44.0875 2400 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:51:45.0192 2400 nvlddmkm - ok
11:51:45.0247 2400 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:51:45.0253 2400 nvraid - ok
11:51:45.0265 2400 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:51:45.0271 2400 nvstor - ok
11:51:45.0346 2400 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
11:51:45.0363 2400 nvsvc - ok
11:51:45.0423 2400 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
11:51:45.0456 2400 nvUpdatusService - ok
11:51:45.0482 2400 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:51:45.0488 2400 nv_agp - ok
11:51:45.0510 2400 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:51:45.0515 2400 ohci1394 - ok
11:51:45.0576 2400 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:51:45.0584 2400 p2pimsvc - ok
11:51:45.0608 2400 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:51:45.0617 2400 p2psvc - ok
11:51:45.0638 2400 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
11:51:45.0646 2400 Parport - ok
11:51:45.0673 2400 Partizan - ok
11:51:45.0726 2400 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:51:45.0733 2400 partmgr - ok
11:51:45.0775 2400 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:51:45.0782 2400 PcaSvc - ok
11:51:45.0816 2400 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
11:51:45.0823 2400 pci - ok
11:51:45.0868 2400 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
11:51:45.0876 2400 pciide - ok
11:51:45.0912 2400 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:51:45.0919 2400 pcmcia - ok
11:51:45.0952 2400 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:51:45.0957 2400 pcw - ok
11:51:46.0000 2400 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:51:46.0012 2400 PEAUTH - ok
11:51:46.0082 2400 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:51:46.0103 2400 PerfHost - ok
11:51:46.0175 2400 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
11:51:46.0208 2400 pla - ok
11:51:46.0310 2400 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:51:46.0318 2400 PlugPlay - ok
11:51:46.0350 2400 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:51:46.0356 2400 PNRPAutoReg - ok
11:51:46.0377 2400 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:51:46.0383 2400 PNRPsvc - ok
11:51:46.0431 2400 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:51:46.0440 2400 PolicyAgent - ok
11:51:46.0471 2400 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:51:46.0476 2400 Power - ok
11:51:46.0501 2400 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:51:46.0506 2400 PptpMiniport - ok
11:51:46.0521 2400 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
11:51:46.0526 2400 Processor - ok
11:51:46.0574 2400 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
11:51:46.0579 2400 ProfSvc - ok
11:51:46.0587 2400 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:51:46.0589 2400 ProtectedStorage - ok
11:51:46.0603 2400 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:51:46.0608 2400 Psched - ok
11:51:46.0725 2400 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
11:51:46.0754 2400 PxHlpa64 - ok
11:51:46.0798 2400 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:51:46.0826 2400 ql2300 - ok
11:51:46.0873 2400 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:51:46.0877 2400 ql40xx - ok
11:51:46.0898 2400 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:51:46.0905 2400 QWAVE - ok
11:51:46.0918 2400 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:51:46.0922 2400 QWAVEdrv - ok
11:51:46.0943 2400 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:51:46.0946 2400 RasAcd - ok
11:51:46.0977 2400 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:51:46.0980 2400 RasAgileVpn - ok
11:51:46.0995 2400 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:51:47.0000 2400 RasAuto - ok
11:51:47.0059 2400 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:51:47.0063 2400 Rasl2tp - ok
11:51:47.0082 2400 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
11:51:47.0090 2400 RasMan - ok
11:51:47.0100 2400 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:51:47.0104 2400 RasPppoe - ok
11:51:47.0121 2400 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:51:47.0124 2400 RasSstp - ok
11:51:47.0140 2400 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:51:47.0146 2400 rdbss - ok
11:51:47.0158 2400 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
11:51:47.0161 2400 rdpbus - ok
11:51:47.0177 2400 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:51:47.0180 2400 RDPCDD - ok
11:51:47.0239 2400 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:51:47.0242 2400 RDPENCDD - ok
11:51:47.0250 2400 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:51:47.0252 2400 RDPREFMP - ok
11:51:47.0307 2400 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:51:47.0322 2400 RDPWD - ok
11:51:47.0331 2400 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:51:47.0335 2400 rdyboost - ok
11:51:47.0364 2400 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:51:47.0369 2400 RemoteAccess - ok
11:51:47.0387 2400 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:51:47.0392 2400 RemoteRegistry - ok
11:51:47.0483 2400 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:51:47.0489 2400 RFCOMM - ok
11:51:47.0636 2400 [ E1AAAFF55A3CB098B80D6E8D932FBC98 ] RoxMediaDBGame1X C:\Program Files (x86)\Common Files\Roxio Shared\Game1X\SharedCOM\RoxMediaDBGame1X.exe
11:51:47.0655 2400 RoxMediaDBGame1X - ok
11:51:47.0684 2400 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:51:47.0689 2400 RpcEptMapper - ok
11:51:47.0697 2400 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:51:47.0702 2400 RpcLocator - ok
11:51:47.0726 2400 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
11:51:47.0735 2400 RpcSs - ok
11:51:47.0752 2400 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:51:47.0757 2400 rspndr - ok
11:51:47.0793 2400 [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:51:47.0802 2400 RTL8167 - ok
11:51:47.0824 2400 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
11:51:47.0827 2400 SamSs - ok
11:51:47.0958 2400 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
11:51:47.0977 2400 SASDIFSV - ok
11:51:48.0024 2400 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
11:51:48.0040 2400 SASKUTIL - ok
11:51:48.0067 2400 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:51:48.0072 2400 sbp2port - ok
11:51:48.0131 2400 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:51:48.0139 2400 SCardSvr - ok
11:51:48.0150 2400 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:51:48.0153 2400 scfilter - ok
11:51:48.0207 2400 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
11:51:48.0227 2400 Schedule - ok
11:51:48.0258 2400 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:51:48.0261 2400 SCPolicySvc - ok
11:51:48.0277 2400 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:51:48.0286 2400 SDRSVC - ok
11:51:48.0298 2400 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:51:48.0303 2400 secdrv - ok
11:51:48.0362 2400 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
11:51:48.0367 2400 seclogon - ok
11:51:48.0381 2400 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
11:51:48.0386 2400 SENS - ok
11:51:48.0401 2400 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:51:48.0407 2400 SensrSvc - ok
11:51:48.0415 2400 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:51:48.0418 2400 Serenum - ok
11:51:48.0433 2400 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:51:48.0439 2400 Serial - ok
11:51:48.0467 2400 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:51:48.0472 2400 sermouse - ok
11:51:48.0492 2400 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:51:48.0497 2400 SessionEnv - ok
11:51:48.0524 2400 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:51:48.0528 2400 sffdisk - ok
11:51:48.0542 2400 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:51:48.0546 2400 sffp_mmc - ok
11:51:48.0573 2400 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:51:48.0577 2400 sffp_sd - ok
11:51:48.0620 2400 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:51:48.0624 2400 sfloppy - ok
11:51:48.0651 2400 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:51:48.0660 2400 SharedAccess - ok
11:51:48.0684 2400 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:51:48.0693 2400 ShellHWDetection - ok
11:51:48.0715 2400 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:51:48.0718 2400 SiSRaid2 - ok
11:51:48.0745 2400 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:51:48.0764 2400 SiSRaid4 - ok
11:51:48.0985 2400 [ 3740B83AEC21D981065D7E819BD7E878 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:51:49.0073 2400 Skype C2C Service - ok
11:51:49.0175 2400 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:51:49.0179 2400 SkypeUpdate - ok
11:51:49.0286 2400 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
11:51:49.0291 2400 SmartDefragDriver - ok
11:51:49.0314 2400 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:51:49.0318 2400 Smb - ok
11:51:49.0355 2400 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:51:49.0361 2400 SNMPTRAP - ok
11:51:49.0369 2400 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:51:49.0372 2400 spldr - ok
11:51:49.0437 2400 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
11:51:49.0448 2400 Spooler - ok
11:51:49.0545 2400 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
11:51:49.0610 2400 sppsvc - ok
11:51:49.0626 2400 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:51:49.0632 2400 sppuinotify - ok
11:51:49.0656 2400 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
11:51:49.0665 2400 srv - ok
11:51:49.0693 2400 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:51:49.0700 2400 srv2 - ok
11:51:49.0741 2400 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:51:49.0745 2400 srvnet - ok
11:51:49.0768 2400 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:51:49.0773 2400 SSDPSRV - ok
11:51:49.0787 2400 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:51:49.0792 2400 SstpSvc - ok
11:51:49.0800 2400 Steam Client Service - ok
11:51:49.0913 2400 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:51:49.0919 2400 Stereo Service - ok
11:51:49.0959 2400 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:51:49.0962 2400 stexstor - ok
11:51:49.0990 2400 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
11:51:50.0000 2400 stisvc - ok
11:51:50.0006 2400 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:51:50.0009 2400 swenum - ok
11:51:50.0050 2400 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:51:50.0060 2400 swprv - ok
11:51:50.0100 2400 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
11:51:50.0173 2400 SysMain - ok
11:51:50.0201 2400 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:51:50.0206 2400 TabletInputService - ok
11:51:50.0230 2400 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
11:51:50.0234 2400 tap0901t - ok
11:51:50.0244 2400 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:51:50.0251 2400 TapiSrv - ok
11:51:50.0262 2400 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:51:50.0267 2400 TBS - ok
11:51:50.0358 2400 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:51:50.0409 2400 Tcpip - ok
11:51:50.0472 2400 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:51:50.0487 2400 TCPIP6 - ok
11:51:50.0500 2400 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:51:50.0503 2400 tcpipreg - ok
11:51:50.0522 2400 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:51:50.0525 2400 TDPIPE - ok
11:51:50.0555 2400 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:51:50.0558 2400 TDTCP - ok
11:51:50.0575 2400 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:51:50.0579 2400 tdx - ok
11:51:50.0584 2400 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:51:50.0586 2400 TermDD - ok
11:51:50.0606 2400 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
11:51:50.0614 2400 TermService - ok
11:51:50.0651 2400 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:51:50.0654 2400 Themes - ok
11:51:50.0733 2400 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:51:50.0736 2400 THREADORDER - ok
11:51:50.0779 2400 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:51:50.0782 2400 TrkWks - ok
11:51:50.0894 2400 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:51:50.0900 2400 TrustedInstaller - ok
11:51:50.0916 2400 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:51:50.0920 2400 tssecsrv - ok
11:51:50.0997 2400 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:51:51.0002 2400 TsUsbFlt - ok
11:51:51.0026 2400 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:51:51.0031 2400 TsUsbGD - ok
11:51:51.0040 2400 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:51:51.0045 2400 tunnel - ok
11:51:51.0172 2400 [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
11:51:51.0184 2400 TunngleService - ok
11:51:51.0218 2400 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:51:51.0222 2400 uagp35 - ok
11:51:51.0253 2400 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:51:51.0261 2400 udfs - ok
11:51:51.0283 2400 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:51:51.0294 2400 UI0Detect - ok
11:51:51.0337 2400 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:51:51.0341 2400 uliagpkx - ok
11:51:51.0365 2400 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:51:51.0371 2400 umbus - ok
11:51:51.0391 2400 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
11:51:51.0395 2400 UmPass - ok
11:51:51.0423 2400 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:51:51.0432 2400 upnphost - ok
11:51:51.0535 2400 [ 27B8B55B1F19AD8C8757620C444D36CA ] USB28xxBGA C:\Windows\system32\DRIVERS\emBDA64.sys
11:51:51.0548 2400 USB28xxBGA - ok
11:51:51.0626 2400 [ FF63409B4F1D67A04CB4728A5DC68389 ] USB28xxOEM C:\Windows\system32\DRIVERS\emOEM64.sys
11:51:51.0652 2400 USB28xxOEM - ok
11:51:51.0702 2400 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
11:51:51.0707 2400 USBAAPL64 - ok
11:51:51.0762 2400 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
11:51:51.0810 2400 usbaudio - ok
11:51:51.0870 2400 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:51:51.0876 2400 usbccgp - ok
11:51:51.0905 2400 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:51:51.0910 2400 usbcir - ok
11:51:51.0930 2400 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:51:51.0954 2400 usbehci - ok
11:51:51.0990 2400 [ 573D192E268F0C5B486B7E96F661E538 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
11:51:51.0996 2400 usbfilter - ok
11:51:52.0048 2400 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:51:52.0056 2400 usbhub - ok
11:51:52.0082 2400 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:51:52.0086 2400 usbohci - ok
11:51:52.0106 2400 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
11:51:52.0110 2400 usbprint - ok
11:51:52.0138 2400 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:51:52.0144 2400 USBSTOR - ok
11:51:52.0172 2400 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:51:52.0176 2400 usbuhci - ok
11:51:52.0193 2400 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:51:52.0197 2400 UxSms - ok
11:51:52.0232 2400 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
11:51:52.0234 2400 VaultSvc - ok
11:51:52.0301 2400 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:51:52.0305 2400 vdrvroot - ok
11:51:52.0373 2400 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
11:51:52.0386 2400 vds - ok
11:51:52.0412 2400 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:51:52.0417 2400 vga - ok
11:51:52.0436 2400 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:51:52.0440 2400 VgaSave - ok
11:51:52.0465 2400 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:51:52.0472 2400 vhdmp - ok
11:51:52.0506 2400 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:51:52.0510 2400 viaide - ok
11:51:52.0559 2400 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:51:52.0565 2400 volmgr - ok
11:51:52.0629 2400 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:51:52.0637 2400 volmgrx - ok
11:51:52.0652 2400 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:51:52.0658 2400 volsnap - ok
11:51:52.0682 2400 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:51:52.0688 2400 vsmraid - ok
11:51:52.0734 2400 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
11:51:52.0767 2400 VSS - ok
11:51:52.0919 2400 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
11:51:52.0931 2400 vToolbarUpdater13.2.0 - ok
11:51:52.0948 2400 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:51:52.0953 2400 vwifibus - ok
11:51:52.0967 2400 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:51:52.0975 2400 W32Time - ok
11:51:53.0001 2400 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:51:53.0006 2400 WacomPen - ok
11:51:53.0069 2400 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:51:53.0074 2400 WANARP - ok
11:51:53.0085 2400 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:51:53.0087 2400 Wanarpv6 - ok
11:51:53.0170 2400 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:51:53.0217 2400 WatAdminSvc - ok
11:51:53.0272 2400 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
11:51:53.0330 2400 wbengine - ok
11:51:53.0351 2400 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:51:53.0360 2400 WbioSrvc - ok
11:51:53.0373 2400 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:51:53.0384 2400 wcncsvc - ok
11:51:53.0399 2400 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:51:53.0406 2400 WcsPlugInService - ok
11:51:53.0427 2400 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
11:51:53.0431 2400 Wd - ok
11:51:53.0495 2400 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:51:53.0509 2400 Wdf01000 - ok
11:51:53.0542 2400 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:51:53.0547 2400 WdiServiceHost - ok
11:51:53.0555 2400 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:51:53.0559 2400 WdiSystemHost - ok
11:51:53.0577 2400 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:51:53.0587 2400 WebClient - ok
11:51:53.0598 2400 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:51:53.0605 2400 Wecsvc - ok
11:51:53.0615 2400 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:51:53.0619 2400 wercplsupport - ok
11:51:53.0647 2400 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:51:53.0650 2400 WerSvc - ok
11:51:53.0662 2400 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:51:53.0665 2400 WfpLwf - ok
11:51:53.0686 2400 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:51:53.0690 2400 WIMMount - ok
11:51:53.0760 2400 WinDefend - ok
11:51:53.0771 2400 WinHttpAutoProxySvc - ok
11:51:53.0792 2400 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:51:53.0796 2400 Winmgmt - ok
11:51:53.0946 2400 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
11:51:53.0992 2400 WinRM - ok
11:51:54.0042 2400 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:51:54.0103 2400 WinUsb - ok
11:51:54.0142 2400 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:51:54.0161 2400 Wlansvc - ok
11:51:54.0250 2400 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:51:54.0294 2400 wlidsvc - ok
11:51:54.0305 2400 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:51:54.0309 2400 WmiAcpi - ok
11:51:54.0335 2400 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:51:54.0342 2400 wmiApSrv - ok
11:51:54.0350 2400 WMPNetworkSvc - ok
11:51:54.0365 2400 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:51:54.0372 2400 WPCSvc - ok
11:51:54.0387 2400 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:51:54.0395 2400 WPDBusEnum - ok
11:51:54.0430 2400 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:51:54.0435 2400 ws2ifsl - ok
11:51:54.0480 2400 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
11:51:54.0486 2400 wscsvc - ok
11:51:54.0494 2400 WSearch - ok
11:51:54.0657 2400 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:51:54.0709 2400 wuauserv - ok
11:51:54.0770 2400 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:51:54.0831 2400 WudfPf - ok
11:51:54.0853 2400 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:51:54.0874 2400 WUDFRd - ok
11:51:54.0926 2400 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:51:54.0932 2400 wudfsvc - ok
11:51:54.0951 2400 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
11:51:54.0960 2400 WwanSvc - ok
11:51:55.0044 2400 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
11:51:55.0049 2400 xusb21 - ok
11:51:55.0077 2400 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
11:51:55.0087 2400 yukonw7 - ok
11:51:55.0132 2400 ================ Scan global ===============================
11:51:55.0147 2400 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:51:55.0200 2400 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
11:51:55.0214 2400 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
11:51:55.0294 2400 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:51:55.0313 2400 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:51:55.0321 2400 [Global] - ok
11:51:55.0321 2400 ================ Scan MBR ==================================
11:51:55.0353 2400 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:51:55.0647 2400 \Device\Harddisk0\DR0 - ok
11:51:55.0647 2400 ================ Scan VBR ==================================
11:51:55.0650 2400 [ 1DEE6D9B2B1349E387AC035A74840621 ] \Device\Harddisk0\DR0\Partition1
11:51:55.0652 2400 \Device\Harddisk0\DR0\Partition1 - ok
11:51:55.0656 2400 [ 0347CE79939E7AA759333AE951EA3BAC ] \Device\Harddisk0\DR0\Partition2
11:51:55.0657 2400 \Device\Harddisk0\DR0\Partition2 - ok
11:51:55.0659 2400 ============================================================
11:51:55.0659 2400 Scan finished
11:51:55.0659 2400 ============================================================
11:51:55.0672 6000 Detected object count: 0
11:51:55.0673 6000 Actual detected object count: 0
11:52:30.0885 4640 Deinitialize success

---------------------------------------------------------------------------------------


# AdwCleaner v2.009 - Logfile created 11/28/2012 at 11:54:18
# Updated 24/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Daniel - DANIEL-PC
# Boot Mode : Normal
# Running from : C:\Users\Daniel\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Daniel\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Daniel\AppData\Local\Wajam
Folder Deleted : C:\Users\Daniel\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Daniel\AppData\LocalLow\boost_interprocess

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v23.0.1271.91

File : C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3295 octets] - [28/11/2012 11:54:18]

########## EOF - C:\AdwCleaner[S1].txt - [3355 octets] ##########


----------------------------------------------------------------------------------




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 3.5.7 (11.28.2012:1)
OS: Windows 7 Home Premium x64
Ran by Daniel on 28/11/2012 at 12:00:09.26
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\windows\currentversion\run\\vProt



~~~ Registry Keys

Successfully deleted: [Registry Key] "hkey_current_user\software\sweetim"
Successfully deleted: [Registry Key] "hkey_local_machine\software\systweak"
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{21a51130-7285-49fe-b3f6-2385cc71cdea}



~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.1049.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.1049.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 28/11/2012 at 12:08:07.76
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

--------------------------------------------------------------------------

ESETscan

C:\Users\Daniel\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\120806045415401.rsc multiple threats deleted - quarantined
C:\Users\Daniel\Downloads\System.Shock.2.PC.Game.[FROSTY].iso a variant of Win32/Tool.TPE.A application deleted - quarantined

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:13 PM

Posted 28 November 2012 - 08:53 PM

How is it now? I suspect you infected yourself loading games thru torrents. These have many infections.

Please run these 2 also...

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.



Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.

Edited by boopme, 28 November 2012 - 09:11 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Jaxs1234

Jaxs1234
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:13 PM

Posted 28 November 2012 - 10:49 PM

I was going to say "not sure" because the times in which it redirects me is completely random but then the second I clicked to download aswMBR, it started the download and sent me to a Findgala search engine.

Edited by Jaxs1234, 29 November 2012 - 12:35 PM.


#6 Jaxs1234

Jaxs1234
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:13 PM

Posted 29 November 2012 - 12:38 PM

Sorry for the double post but I wasn't sure that you could tell if I posted my results.

Also the problem is back, nothing has changed. It seems that whenever I work at getting rid of it during that day I see improvement but if I restart my computer then I get hit with a banner ad and a redirect in seconds.



aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-28 22:30:47
-----------------------------
22:30:47.402 OS Version: Windows x64 6.1.7601 Service Pack 1
22:30:47.402 Number of processors: 8 586 0x102
22:30:47.404 ComputerName: DANIEL-PC UserName: Daniel
22:30:49.861 Initialize success
22:33:23.423 AVAST engine defs: 12112801
22:35:20.411 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000070
22:35:20.415 Disk 0 Vendor: ST1000DM CC4C Size: 953869MB BusType: 11
22:35:20.432 Disk 0 MBR read successfully
22:35:20.436 Disk 0 MBR scan
22:35:20.444 Disk 0 Windows 7 default MBR code
22:35:20.454 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:35:20.467 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953767 MB offset 206848
22:35:20.506 Disk 0 scanning C:\Windows\system32\drivers
22:35:31.760 Service scanning
22:35:50.662 Modules scanning
22:35:50.664 Disk 0 trace - called modules:
22:35:50.679 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
22:35:50.680 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80076f7790]
22:35:50.684 3 CLASSPNP.SYS[fffff8800195f43f] -> nt!IofCallDriver -> [0xfffffa8006782ac0]
22:35:50.685 5 amd_xata.sys[fffff880010d78f7] -> nt!IofCallDriver -> \Device\00000070[0xfffffa80067b1060]
22:35:52.768 AVAST engine scan C:\Windows
22:35:55.935 AVAST engine scan C:\Windows\system32
22:39:53.195 AVAST engine scan C:\Windows\system32\drivers
22:40:09.944 AVAST engine scan C:\Users\Daniel
23:33:05.890 AVAST engine scan C:\ProgramData
23:39:13.955 Scan finished successfully
23:41:41.912 Disk 0 MBR has been saved successfully to "C:\Users\Daniel\Desktop\MBR.dat"
23:41:41.919 The log file has been saved successfully to "C:\Users\Daniel\Desktop\aswMBR.txt"

------------------------------------------------------------------------

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 11/29/2012 at 03:40 AM

Application Version : 5.6.1014

Core Rules Database Version : 9655
Trace Rules Database Version: 7467

Scan type : Complete Scan
Total Scan Time : 01:01:20

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 654
Memory threats detected : 0
Registry items scanned : 75663
Registry threats detected : 0
File items scanned : 83771
File threats detected : 0

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:13 PM

Posted 29 November 2012 - 02:09 PM

Appears we should get a deeper look to find it. Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.

Include this link back to here...
http://www.bleepingcomputer.com/forums/topic476738.html/page__pid__2908268#top
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users