Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I think I might have Alureon or svchost trojan, need help with removal


  • Please log in to reply
26 replies to this topic

#1 sourguy

sourguy

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 30 November 2012 - 05:25 PM

Yesterday I was browsing the net and my computer suddenly restarted. I ran a scan and I received many warning. My security programs are : Microsoft Security Essentials, Malwarebytes(Free), IObit Malware fighter (free). They all detected the same thing. Here is a picture of what they showed me: http://imgur.com/HGlgN
I tried to delete/remove it but after I restarted and scanned again, it was still there. MSE even said that I need to get Windows Defender Offline for more cleaning. I did that and it said that it detected nothing. However after the WDO was done and I restarted and scanned again, the virus was still there.
Some of my know issues are : many blue screens from trying to uninstall something or going on the net and no internet service. I have tried restoring my computer to an earlier time but that didn't help at all.
I DO NOT care about any of my files. If I need to do a full cleanup it doesn't bother me. However I bought this computer custom made so I do not have the Windows CD to reinstall or go back to factory settings. Svchost also does not appear on my process list in the task manager. Right now I am writing from the infected computer because somehow it let me connect. I am not sure how to show you log without you telling me how. Please help me, I do not have money to buy a new computer and I really want this one to last.
Last thing. I accidentally posted this on the log forms and am not sure how to delete that post.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 30 November 2012 - 05:27 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 30 November 2012 - 05:54 PM

TDSSKiller LOGS:
[Window Title]
17:44:01.0253 6656 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:44:01.0648 6656 ============================================================
17:44:01.0648 6656 Current date / time: 2012/11/30 17:44:01.0648
17:44:01.0648 6656 SystemInfo:
17:44:01.0648 6656
17:44:01.0648 6656 OS Version: 6.1.7601 ServicePack: 1.0
17:44:01.0648 6656 Product type: Workstation
17:44:01.0648 6656 ComputerName: CCAPC00061
17:44:01.0649 6656 UserName: User
17:44:01.0649 6656 Windows directory: C:\Windows
17:44:01.0649 6656 System windows directory: C:\Windows
17:44:01.0649 6656 Running under WOW64
17:44:01.0649 6656 Processor architecture: Intel x64
17:44:01.0649 6656 Number of processors: 4
17:44:01.0649 6656 Page size: 0x1000
17:44:01.0649 6656 Boot type: Normal boot
17:44:01.0649 6656 ============================================================
17:44:05.0759 6656 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:44:05.0763 6656 ============================================================
17:44:05.0763 6656 \Device\Harddisk0\DR0:
17:44:05.0763 6656 MBR partitions:
17:44:05.0763 6656 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x5B706000
17:44:05.0782 6656 ============================================================
17:44:05.0786 6656 C: <-> \Device\Harddisk0\DR0\Partition1
17:44:05.0786 6656 ============================================================
17:44:05.0786 6656 Initialize success
17:44:05.0786 6656 ============================================================
17:44:36.0645 7040 ============================================================
17:44:36.0645 7040 Scan started
17:44:36.0645 7040 Mode: Manual; TDLFS;
17:44:36.0645 7040 ============================================================
17:44:38.0353 7040 ================ Scan system memory ========================
17:44:38.0353 7040 System memory - ok
17:44:38.0354 7040 ================ Scan services =============================
17:44:38.0518 7040 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:44:38.0521 7040 1394ohci - ok
17:44:38.0539 7040 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:44:38.0542 7040 ACPI - ok
17:44:38.0559 7040 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:44:38.0560 7040 AcpiPmi - ok
17:44:38.0748 7040 [ 2FA64C2E62F1B30E2FF70578B9BABDCD ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
17:44:38.0753 7040 AcrSch2Svc - ok
17:44:38.0841 7040 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:44:38.0842 7040 AdobeARMservice - ok
17:44:39.0170 7040 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:44:39.0173 7040 AdobeFlashPlayerUpdateSvc - ok
17:44:39.0221 7040 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:44:39.0228 7040 adp94xx - ok
17:44:39.0278 7040 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:44:39.0282 7040 adpahci - ok
17:44:39.0320 7040 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:44:39.0331 7040 adpu320 - ok
17:44:39.0559 7040 [ 18BA414C06B667FA2CB48DC3E27C8F97 ] AdvancedSystemCareService C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
17:44:39.0561 7040 AdvancedSystemCareService - ok
17:44:39.0597 7040 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:44:39.0599 7040 AeLookupSvc - ok
17:44:39.0701 7040 [ AE1FCE2CD1E99BEA89183BA8CD320872 ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
17:44:39.0703 7040 afcdp - ok
17:44:39.0809 7040 [ AF44F7E027037628F1FAC3C13CDE73E6 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
17:44:39.0822 7040 afcdpsrv - ok
17:44:39.0896 7040 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:44:39.0908 7040 AFD - ok
17:44:39.0996 7040 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:44:40.0004 7040 agp440 - ok
17:44:40.0045 7040 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:44:40.0049 7040 ALG - ok
17:44:40.0094 7040 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:44:40.0178 7040 aliide - ok
17:44:40.0210 7040 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:44:40.0212 7040 amdide - ok
17:44:40.0260 7040 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:44:40.0261 7040 AmdK8 - ok
17:44:40.0270 7040 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:44:40.0272 7040 AmdPPM - ok
17:44:40.0289 7040 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:44:40.0291 7040 amdsata - ok
17:44:40.0330 7040 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:44:40.0333 7040 amdsbs - ok
17:44:40.0349 7040 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:44:40.0350 7040 amdxata - ok
17:44:40.0402 7040 [ 48CD7E6520D47D62EAB0E6CE3EC30C65 ] Andbus C:\Windows\system32\DRIVERS\lgandbus64.sys
17:44:40.0404 7040 Andbus - ok
17:44:40.0427 7040 [ 08CBACC00D15DCDBBAAE1A7C8F231C61 ] AndDiag C:\Windows\system32\DRIVERS\lganddiag64.sys
17:44:40.0428 7040 AndDiag - ok
17:44:40.0436 7040 [ CEA9A4CD6B3A83428CE8501240833668 ] AndGps C:\Windows\system32\DRIVERS\lgandgps64.sys
17:44:40.0437 7040 AndGps - ok
17:44:40.0449 7040 [ E2B5663E547FA5E756B253EFA8EC8286 ] ANDModem C:\Windows\system32\DRIVERS\lgandmodem64.sys
17:44:40.0450 7040 ANDModem - ok
17:44:40.0486 7040 [ 9C1751B2E733471AE07561028B7D2A9B ] androidusb C:\Windows\system32\Drivers\lgandadb.sys
17:44:40.0487 7040 androidusb - ok
17:44:40.0534 7040 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:44:40.0536 7040 AppID - ok
17:44:40.0550 7040 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:44:40.0552 7040 AppIDSvc - ok
17:44:40.0604 7040 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:44:40.0606 7040 Appinfo - ok
17:44:40.0674 7040 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:44:40.0675 7040 Apple Mobile Device - ok
17:44:40.0765 7040 [ 70968A726D9DE0F0259D4AEB965FAD61 ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
17:44:40.0770 7040 Application Updater - ok
17:44:40.0781 7040 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:44:40.0782 7040 arc - ok
17:44:40.0794 7040 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:44:40.0799 7040 arcsas - ok
17:44:40.0883 7040 aspnet_state - ok
17:44:40.0903 7040 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:44:40.0904 7040 AsyncMac - ok
17:44:40.0923 7040 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:44:40.0923 7040 atapi - ok
17:44:40.0978 7040 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:44:40.0984 7040 AudioEndpointBuilder - ok
17:44:40.0993 7040 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:44:40.0996 7040 AudioSrv - ok
17:44:41.0067 7040 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
17:44:41.0068 7040 avgtp - ok
17:44:41.0119 7040 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:44:41.0127 7040 AxInstSV - ok
17:44:41.0188 7040 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:44:41.0193 7040 b06bdrv - ok
17:44:41.0242 7040 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:44:41.0245 7040 b57nd60a - ok
17:44:41.0271 7040 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:44:41.0274 7040 BDESVC - ok
17:44:41.0285 7040 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:44:41.0286 7040 Beep - ok
17:44:41.0336 7040 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:44:41.0342 7040 BFE - ok
17:44:41.0363 7040 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:44:41.0371 7040 BITS - ok
17:44:41.0418 7040 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:44:41.0419 7040 blbdrive - ok
17:44:41.0464 7040 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:44:41.0466 7040 Bonjour Service - ok
17:44:41.0517 7040 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:44:41.0519 7040 bowser - ok
17:44:41.0529 7040 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:44:41.0531 7040 BrFiltLo - ok
17:44:41.0538 7040 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:44:41.0539 7040 BrFiltUp - ok
17:44:41.0586 7040 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:44:41.0588 7040 Browser - ok
17:44:41.0734 7040 [ 52C724DAC8ADDC50F593E331A9863979 ] Browser Defender Update Service C:\Program Files (x86)\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
17:44:41.0737 7040 Browser Defender Update Service - ok
17:44:41.0760 7040 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:44:41.0763 7040 Brserid - ok
17:44:41.0776 7040 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:44:41.0779 7040 BrSerWdm - ok
17:44:41.0788 7040 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:44:41.0789 7040 BrUsbMdm - ok
17:44:41.0807 7040 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:44:41.0809 7040 BrUsbSer - ok
17:44:41.0820 7040 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:44:41.0822 7040 BTHMODEM - ok
17:44:41.0832 7040 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:44:41.0834 7040 bthserv - ok
17:44:41.0850 7040 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:44:41.0852 7040 cdfs - ok
17:44:41.0917 7040 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:44:41.0919 7040 cdrom - ok
17:44:41.0969 7040 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:44:41.0971 7040 CertPropSvc - ok
17:44:42.0013 7040 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:44:42.0015 7040 circlass - ok
17:44:42.0031 7040 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:44:42.0034 7040 CLFS - ok
17:44:42.0055 7040 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:44:42.0069 7040 clr_optimization_v2.0.50727_32 - ok
17:44:42.0111 7040 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:44:42.0115 7040 clr_optimization_v2.0.50727_64 - ok
17:44:42.0280 7040 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:44:42.0348 7040 clr_optimization_v4.0.30319_32 - ok
17:44:42.0396 7040 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:44:42.0444 7040 clr_optimization_v4.0.30319_64 - ok
17:44:42.0497 7040 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:44:42.0498 7040 CmBatt - ok
17:44:42.0544 7040 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:44:42.0546 7040 cmdide - ok
17:44:42.0597 7040 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:44:42.0601 7040 CNG - ok
17:44:42.0611 7040 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:44:42.0612 7040 Compbatt - ok
17:44:42.0653 7040 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:44:42.0654 7040 CompositeBus - ok
17:44:42.0676 7040 COMSysApp - ok
17:44:42.0720 7040 cpuz135 - ok
17:44:42.0734 7040 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:44:42.0736 7040 crcdisk - ok
17:44:42.0755 7040 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:44:42.0758 7040 CryptSvc - ok
17:44:42.0814 7040 [ 7F61FBE259C18666D8DDF862F13A5EB0 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
17:44:42.0816 7040 dc3d - ok
17:44:42.0840 7040 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:44:42.0846 7040 DcomLaunch - ok
17:44:42.0865 7040 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:44:42.0868 7040 defragsvc - ok
17:44:42.0888 7040 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:44:42.0890 7040 DfsC - ok
17:44:42.0947 7040 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:44:42.0951 7040 Dhcp - ok
17:44:42.0959 7040 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:44:42.0960 7040 discache - ok
17:44:42.0967 7040 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:44:42.0968 7040 Disk - ok
17:44:42.0991 7040 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:44:42.0993 7040 Dnscache - ok
17:44:43.0018 7040 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:44:43.0021 7040 dot3svc - ok
17:44:43.0040 7040 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:44:43.0042 7040 DPS - ok
17:44:43.0092 7040 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:44:43.0094 7040 drmkaud - ok
17:44:43.0196 7040 dump_wmimmc - ok
17:44:43.0229 7040 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:44:43.0233 7040 DXGKrnl - ok
17:44:43.0254 7040 EagleX64 - ok
17:44:43.0276 7040 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:44:43.0279 7040 EapHost - ok
17:44:43.0341 7040 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:44:43.0384 7040 ebdrv - ok
17:44:43.0402 7040 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:44:43.0404 7040 EFS - ok
17:44:43.0435 7040 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:44:43.0443 7040 ehRecvr - ok
17:44:43.0457 7040 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:44:43.0459 7040 ehSched - ok
17:44:43.0516 7040 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:44:43.0521 7040 elxstor - ok
17:44:43.0546 7040 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:44:43.0547 7040 ErrDev - ok
17:44:43.0603 7040 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:44:43.0607 7040 EventSystem - ok
17:44:43.0624 7040 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:44:43.0627 7040 exfat - ok
17:44:43.0640 7040 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:44:43.0643 7040 fastfat - ok
17:44:43.0700 7040 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:44:43.0707 7040 Fax - ok
17:44:43.0718 7040 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:44:43.0720 7040 fdc - ok
17:44:43.0731 7040 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:44:43.0732 7040 fdPHost - ok
17:44:43.0740 7040 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:44:43.0742 7040 FDResPub - ok
17:44:43.0751 7040 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:44:43.0752 7040 FileInfo - ok
17:44:43.0815 7040 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
17:44:43.0815 7040 FileMonitor - ok
17:44:43.0827 7040 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:44:43.0829 7040 Filetrace - ok
17:44:43.0910 7040 [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
17:44:44.0025 7040 FLEXnet Licensing Service 64 - ok
17:44:44.0094 7040 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:44:44.0102 7040 flpydisk - ok
17:44:44.0156 7040 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:44:44.0159 7040 FltMgr - ok
17:44:44.0189 7040 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:44:44.0206 7040 FontCache - ok
17:44:44.0315 7040 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:44:44.0319 7040 FontCache3.0.0.0 - ok
17:44:44.0330 7040 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:44:44.0332 7040 FsDepends - ok
17:44:44.0345 7040 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:44:44.0345 7040 Fs_Rec - ok
17:44:44.0378 7040 [ A33BCF3FAB19DB7D0B501036722F311B ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
17:44:44.0409 7040 Futuremark SystemInfo Service - ok
17:44:44.0613 7040 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:44:44.0629 7040 fvevol - ok
17:44:44.0694 7040 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:44:44.0708 7040 gagp30kx - ok
17:44:44.0820 7040 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:44:44.0821 7040 GEARAspiWDM - ok
17:44:44.0888 7040 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:44:44.0901 7040 gpsvc - ok
17:44:44.0975 7040 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:44:44.0976 7040 gupdate - ok
17:44:45.0038 7040 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:44:45.0039 7040 gupdatem - ok
17:44:45.0088 7040 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
17:44:45.0088 7040 hamachi - ok
17:44:45.0275 7040 [ 21D24138B736983F6E23823E092E9428 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
17:44:45.0326 7040 Hamachi2Svc - ok
17:44:45.0344 7040 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:44:45.0345 7040 hcw85cir - ok
17:44:45.0402 7040 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:44:45.0405 7040 HdAudAddService - ok
17:44:45.0444 7040 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:44:45.0446 7040 HDAudBus - ok
17:44:45.0457 7040 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:44:45.0459 7040 HidBatt - ok
17:44:45.0473 7040 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:44:45.0498 7040 HidBth - ok
17:44:45.0523 7040 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:44:45.0533 7040 HidIr - ok
17:44:45.0566 7040 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:44:45.0569 7040 hidserv - ok
17:44:45.0643 7040 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:44:45.0654 7040 HidUsb - ok
17:44:45.0708 7040 [ E4EF2B270971648EEBED0EEE39A6D594 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
17:44:45.0709 7040 HiPatchService - ok
17:44:45.0731 7040 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:44:45.0734 7040 hkmsvc - ok
17:44:45.0754 7040 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:44:45.0757 7040 HomeGroupListener - ok
17:44:45.0785 7040 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:44:45.0788 7040 HomeGroupProvider - ok
17:44:45.0831 7040 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:44:45.0833 7040 HpSAMD - ok
17:44:45.0941 7040 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:44:45.0954 7040 HTTP - ok
17:44:45.0980 7040 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:44:45.0980 7040 hwpolicy - ok
17:44:46.0016 7040 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:44:46.0019 7040 i8042prt - ok
17:44:46.0146 7040 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:44:46.0158 7040 iaStorV - ok
17:44:46.0226 7040 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:44:46.0234 7040 idsvc - ok
17:44:46.0416 7040 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:44:46.0636 7040 igfx - ok
17:44:46.0682 7040 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:44:46.0683 7040 iirsp - ok
17:44:46.0704 7040 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:44:46.0713 7040 IKEEXT - ok
17:44:46.0785 7040 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
17:44:46.0789 7040 IMFservice - ok
17:44:46.0813 7040 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
17:44:46.0828 7040 IntcDAud - ok
17:44:46.0840 7040 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:44:46.0842 7040 intelide - ok
17:44:46.0857 7040 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:44:46.0858 7040 intelppm - ok
17:44:46.0881 7040 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:44:46.0883 7040 IPBusEnum - ok
17:44:46.0899 7040 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:44:46.0902 7040 IpFilterDriver - ok
17:44:46.0927 7040 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:44:46.0933 7040 iphlpsvc - ok
17:44:46.0947 7040 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:44:46.0949 7040 IPMIDRV - ok
17:44:46.0963 7040 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:44:46.0965 7040 IPNAT - ok
17:44:47.0036 7040 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:44:47.0045 7040 iPod Service - ok
17:44:47.0063 7040 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:44:47.0064 7040 IRENUM - ok
17:44:47.0080 7040 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:44:47.0082 7040 isapnp - ok
17:44:47.0099 7040 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:44:47.0102 7040 iScsiPrt - ok
17:44:47.0140 7040 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:44:47.0141 7040 kbdclass - ok
17:44:47.0177 7040 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:44:47.0179 7040 kbdhid - ok
17:44:47.0190 7040 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:44:47.0191 7040 KeyIso - ok
17:44:47.0230 7040 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:44:47.0231 7040 KSecDD - ok
17:44:47.0242 7040 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:44:47.0243 7040 KSecPkg - ok
17:44:47.0253 7040 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:44:47.0254 7040 ksthunk - ok
17:44:47.0275 7040 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:44:47.0280 7040 KtmRm - ok
17:44:47.0339 7040 [ A4A9CA24E54E81C6C3E469EAEB4B3F42 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
17:44:47.0348 7040 L1C - ok
17:44:47.0397 7040 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:44:47.0401 7040 LanmanServer - ok
17:44:47.0445 7040 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:44:47.0448 7040 LanmanWorkstation - ok
17:44:47.0489 7040 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:44:47.0491 7040 lltdio - ok
17:44:47.0510 7040 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:44:47.0514 7040 lltdsvc - ok
17:44:47.0523 7040 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:44:47.0525 7040 lmhosts - ok
17:44:47.0577 7040 [ 98B16E756243BEA9410E32025B19C06F ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:44:47.0579 7040 LMS - ok
17:44:47.0628 7040 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:44:47.0631 7040 LSI_FC - ok
17:44:47.0644 7040 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:44:47.0647 7040 LSI_SAS - ok
17:44:47.0660 7040 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:44:47.0662 7040 LSI_SAS2 - ok
17:44:47.0705 7040 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:44:47.0708 7040 LSI_SCSI - ok
17:44:47.0720 7040 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:44:47.0721 7040 luafv - ok
17:44:47.0790 7040 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
17:44:47.0796 7040 LVRS64 - ok
17:44:47.0884 7040 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
17:44:47.0952 7040 LVUVC64 - ok
17:44:48.0029 7040 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:44:48.0029 7040 MBAMProtector - ok
17:44:48.0126 7040 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:44:48.0128 7040 MBAMScheduler - ok
17:44:48.0154 7040 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:44:48.0157 7040 MBAMService - ok
17:44:48.0186 7040 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:44:48.0210 7040 Mcx2Svc - ok
17:44:48.0260 7040 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:44:48.0262 7040 megasas - ok
17:44:48.0277 7040 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:44:48.0281 7040 MegaSR - ok
17:44:48.0297 7040 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:44:48.0298 7040 MEIx64 - ok
17:44:48.0337 7040 Microsoft SharePoint Workspace Audit Service - ok
17:44:48.0387 7040 [ 29731E3F45A70312E82A72EA96483171 ] mitsijm2012 C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
17:44:48.0392 7040 mitsijm2012 - ok
17:44:48.0441 7040 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:44:48.0445 7040 MMCSS - ok
17:44:48.0454 7040 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:44:48.0456 7040 Modem - ok
17:44:48.0509 7040 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:44:48.0510 7040 monitor - ok
17:44:48.0546 7040 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:44:48.0547 7040 mouclass - ok
17:44:48.0593 7040 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:44:48.0595 7040 mouhid - ok
17:44:48.0619 7040 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:44:48.0627 7040 mountmgr - ok
17:44:48.0709 7040 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:44:48.0712 7040 MpFilter - ok
17:44:48.0737 7040 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:44:48.0740 7040 mpio - ok
17:44:48.0901 7040 [ 0EBB390B7AEEC45EC061D9870A34FD42 ] MpKsl02788fea c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4B3769D6-D77A-4EF1-8F1C-AF7D1CC2717C}\MpKsl02788fea.sys
17:44:48.0901 7040 MpKsl02788fea - ok
17:44:48.0920 7040 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:44:48.0922 7040 mpsdrv - ok
17:44:48.0953 7040 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:44:48.0961 7040 MpsSvc - ok
17:44:48.0990 7040 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:44:48.0992 7040 MRxDAV - ok
17:44:49.0006 7040 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:44:49.0008 7040 mrxsmb - ok
17:44:49.0030 7040 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:44:49.0033 7040 mrxsmb10 - ok
17:44:49.0047 7040 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:44:49.0049 7040 mrxsmb20 - ok
17:44:49.0062 7040 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:44:49.0063 7040 msahci - ok
17:44:49.0077 7040 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:44:49.0080 7040 msdsm - ok
17:44:49.0090 7040 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:44:49.0093 7040 MSDTC - ok
17:44:49.0106 7040 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:44:49.0108 7040 Msfs - ok
17:44:49.0144 7040 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:44:49.0146 7040 mshidkmdf - ok
17:44:49.0154 7040 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:44:49.0155 7040 msisadrv - ok
17:44:49.0178 7040 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:44:49.0182 7040 MSiSCSI - ok
17:44:49.0185 7040 msiserver - ok
17:44:49.0226 7040 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:44:49.0228 7040 MSKSSRV - ok
17:44:49.0282 7040 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:44:49.0282 7040 MsMpSvc - ok
17:44:49.0324 7040 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:44:49.0326 7040 MSPCLOCK - ok
17:44:49.0390 7040 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:44:49.0392 7040 MSPQM - ok
17:44:49.0411 7040 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:44:49.0415 7040 MsRPC - ok
17:44:49.0438 7040 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:44:49.0438 7040 mssmbios - ok
17:44:49.0457 7040 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:44:49.0459 7040 MSTEE - ok
17:44:49.0470 7040 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:44:49.0472 7040 MTConfig - ok
17:44:49.0515 7040 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:44:49.0516 7040 Mup - ok
17:44:49.0541 7040 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:44:49.0546 7040 napagent - ok
17:44:49.0596 7040 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:44:49.0599 7040 NativeWifiP - ok
17:44:49.0687 7040 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:44:49.0695 7040 NDIS - ok
17:44:49.0712 7040 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:44:49.0714 7040 NdisCap - ok
17:44:49.0725 7040 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:44:49.0726 7040 NdisTapi - ok
17:44:49.0748 7040 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:44:49.0750 7040 Ndisuio - ok
17:44:49.0775 7040 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:44:49.0777 7040 NdisWan - ok
17:44:49.0797 7040 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:44:49.0799 7040 NDProxy - ok
17:44:49.0839 7040 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:44:49.0841 7040 NetBIOS - ok
17:44:49.0854 7040 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:44:49.0857 7040 NetBT - ok
17:44:49.0871 7040 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:44:49.0872 7040 Netlogon - ok
17:44:49.0885 7040 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:44:49.0890 7040 Netman - ok
17:44:49.0951 7040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:44:49.0971 7040 NetMsmqActivator - ok
17:44:49.0994 7040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:44:49.0995 7040 NetPipeActivator - ok
17:44:50.0025 7040 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:44:50.0031 7040 netprofm - ok
17:44:50.0100 7040 [ E005682AE8F8EC4EB05F2A70A16EA1C5 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
17:44:50.0124 7040 netr28ux - ok
17:44:50.0148 7040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:44:50.0149 7040 NetTcpActivator - ok
17:44:50.0153 7040 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:44:50.0154 7040 NetTcpPortSharing - ok
17:44:50.0180 7040 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:44:50.0182 7040 nfrd960 - ok
17:44:50.0257 7040 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:44:50.0258 7040 NisDrv - ok
17:44:50.0283 7040 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:44:50.0285 7040 NisSrv - ok
17:44:50.0303 7040 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:44:50.0307 7040 NlaSvc - ok
17:44:50.0314 7040 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:44:50.0315 7040 Npfs - ok
17:44:50.0318 7040 npggsvc - ok
17:44:50.0322 7040 NPPTNT2 - ok
17:44:50.0334 7040 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:44:50.0356 7040 nsi - ok
17:44:50.0385 7040 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:44:50.0386 7040 nsiproxy - ok
17:44:50.0427 7040 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:44:50.0450 7040 Ntfs - ok
17:44:50.0463 7040 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:44:50.0464 7040 Null - ok
17:44:50.0517 7040 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
17:44:50.0518 7040 NVHDA - ok
17:44:51.0189 7040 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:44:51.0248 7040 nvlddmkm - ok
17:44:51.0295 7040 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:44:51.0297 7040 nvraid - ok
17:44:51.0310 7040 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:44:51.0313 7040 nvstor - ok
17:44:51.0439 7040 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] NVSvc C:\Windows\system32\nvvsvc.exe
17:44:51.0450 7040 NVSvc - ok
17:44:51.0640 7040 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:44:51.0677 7040 nvUpdatusService - ok
17:44:51.0692 7040 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:44:51.0694 7040 nv_agp - ok
17:44:51.0711 7040 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:44:51.0713 7040 ohci1394 - ok
17:44:51.0769 7040 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:44:51.0772 7040 ose64 - ok
17:44:52.0060 7040 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:44:52.0141 7040 osppsvc - ok
17:44:52.0191 7040 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:44:52.0196 7040 p2pimsvc - ok
17:44:52.0207 7040 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:44:52.0213 7040 p2psvc - ok
17:44:52.0260 7040 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:44:52.0262 7040 Parport - ok
17:44:52.0304 7040 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:44:52.0306 7040 partmgr - ok
17:44:52.0321 7040 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:44:52.0324 7040 PcaSvc - ok
17:44:52.0346 7040 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:44:52.0348 7040 pci - ok
17:44:52.0355 7040 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:44:52.0355 7040 pciide - ok
17:44:52.0378 7040 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:44:52.0381 7040 pcmcia - ok
17:44:52.0425 7040 [ 51019118F4715E6DA58B3372246C281A ] PCTBD C:\Windows\system32\Drivers\PCTBD64.sys
17:44:52.0427 7040 PCTBD - ok
17:44:52.0499 7040 [ 0012046DEE36BF3D241F027B4417B433 ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
17:44:52.0503 7040 PCTCore - ok
17:44:52.0531 7040 [ BA1F42A42F405F62CEFF6B69A2797F7C ] pctDS C:\Windows\system32\drivers\pctDS64.sys
17:44:52.0535 7040 pctDS - ok
17:44:52.0581 7040 [ E5F6DA5B178028A750C5B8D7B09B3383 ] pctgntdi C:\Windows\System32\drivers\pctgntdi64.sys
17:44:52.0583 7040 pctgntdi - ok
17:44:52.0613 7040 [ F9FC1B700D16ED0AE96A36A758E18F31 ] pctplsm C:\Windows\System32\drivers\pctplsm64.sys
17:44:52.0616 7040 pctplsm - ok
17:44:52.0662 7040 [ DB2BA2D9585101947C5A60D785A63491 ] PCTSD C:\Windows\system32\Drivers\PCTSD64.sys
17:44:52.0664 7040 PCTSD - ok
17:44:52.0687 7040 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:44:52.0688 7040 pcw - ok
17:44:52.0707 7040 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:44:52.0714 7040 PEAUTH - ok
17:44:52.0767 7040 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:44:52.0770 7040 PerfHost - ok
17:44:52.0811 7040 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:44:52.0836 7040 pla - ok
17:44:52.0894 7040 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:44:52.0899 7040 PlugPlay - ok
17:44:52.0948 7040 PnkBstrA - ok
17:44:52.0977 7040 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:44:52.0980 7040 PNRPAutoReg - ok
17:44:52.0998 7040 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:44:53.0001 7040 PNRPsvc - ok
17:44:53.0041 7040 [ 33328FA8A580885AB0065BE6DB266E9F ] Point64 C:\Windows\system32\DRIVERS\point64.sys
17:44:53.0043 7040 Point64 - ok
17:44:53.0074 7040 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:44:53.0079 7040 PolicyAgent - ok
17:44:53.0104 7040 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:44:53.0112 7040 Power - ok
17:44:53.0181 7040 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:44:53.0188 7040 PptpMiniport - ok
17:44:53.0203 7040 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:44:53.0213 7040 Processor - ok
17:44:53.0294 7040 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:44:53.0300 7040 ProfSvc - ok
17:44:53.0309 7040 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:44:53.0310 7040 ProtectedStorage - ok
17:44:53.0368 7040 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:44:53.0370 7040 Psched - ok
17:44:53.0512 7040 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:44:53.0562 7040 ql2300 - ok
17:44:53.0776 7040 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:44:53.0798 7040 ql40xx - ok
17:44:53.0840 7040 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:44:53.0858 7040 QWAVE - ok
17:44:53.0867 7040 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:44:53.0868 7040 QWAVEdrv - ok
17:44:53.0878 7040 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:44:53.0883 7040 RasAcd - ok
17:44:53.0930 7040 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:44:53.0932 7040 RasAgileVpn - ok
17:44:53.0943 7040 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:44:53.0948 7040 RasAuto - ok
17:44:53.0977 7040 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:44:53.0980 7040 Rasl2tp - ok
17:44:54.0113 7040 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:44:54.0119 7040 RasMan - ok
17:44:54.0129 7040 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:44:54.0139 7040 RasPppoe - ok
17:44:54.0178 7040 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:44:54.0190 7040 RasSstp - ok
17:44:54.0219 7040 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:44:54.0235 7040 rdbss - ok
17:44:54.0246 7040 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:44:54.0248 7040 rdpbus - ok
17:44:54.0262 7040 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:44:54.0265 7040 RDPCDD - ok
17:44:54.0319 7040 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:44:54.0320 7040 RDPENCDD - ok
17:44:54.0336 7040 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:44:54.0337 7040 RDPREFMP - ok
17:44:54.0365 7040 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:44:54.0368 7040 RDPWD - ok
17:44:54.0388 7040 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:44:54.0390 7040 rdyboost - ok
17:44:54.0689 7040 [ 5F9AC3243C206EC95F32E4348AE67C13 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
17:44:54.0689 7040 RegFilter - ok
17:44:54.0710 7040 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:44:54.0725 7040 RemoteAccess - ok
17:44:54.0751 7040 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:44:54.0756 7040 RemoteRegistry - ok
17:44:54.0769 7040 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:44:54.0774 7040 RpcEptMapper - ok
17:44:54.0786 7040 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:44:54.0788 7040 RpcLocator - ok
17:44:54.0829 7040 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:44:54.0832 7040 RpcSs - ok
17:44:54.0846 7040 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:44:54.0848 7040 rspndr - ok
17:44:54.0857 7040 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:44:54.0858 7040 SamSs - ok
17:44:54.0881 7040 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:44:54.0884 7040 sbp2port - ok
17:44:54.0915 7040 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:44:54.0920 7040 SCardSvr - ok
17:44:55.0071 7040 [ 3AC948640421E3891A49AA83C6B77B7A ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
17:44:55.0089 7040 SCDEmu - ok
17:44:55.0109 7040 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:44:55.0115 7040 scfilter - ok
17:44:55.0198 7040 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:44:55.0224 7040 Schedule - ok
17:44:55.0256 7040 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:44:55.0256 7040 SCPolicySvc - ok
17:44:55.0583 7040 [ AE88672774DF12BEDF76768E52D23424 ] sdAuxService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe
17:44:55.0585 7040 sdAuxService - ok
17:44:55.0631 7040 [ 5FC31ADB3B47E00349B92E57117D2C07 ] sdCoreService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsSvc.exe
17:44:55.0636 7040 sdCoreService - ok
17:44:55.0662 7040 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:44:55.0666 7040 SDRSVC - ok
17:44:55.0728 7040 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:44:55.0732 7040 secdrv - ok
17:44:55.0754 7040 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:44:55.0762 7040 seclogon - ok
17:44:55.0822 7040 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:44:55.0826 7040 SENS - ok
17:44:56.0211 7040 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:44:56.0299 7040 SensrSvc - ok
17:44:56.0332 7040 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:44:56.0334 7040 Serenum - ok
17:44:56.0349 7040 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:44:56.0351 7040 Serial - ok
17:44:56.0405 7040 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:44:56.0408 7040 sermouse - ok
17:44:56.0443 7040 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:44:56.0446 7040 SessionEnv - ok
17:44:56.0471 7040 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:44:56.0473 7040 sffdisk - ok
17:44:56.0485 7040 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:44:56.0486 7040 sffp_mmc - ok
17:44:56.0493 7040 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:44:56.0495 7040 sffp_sd - ok
17:44:56.0504 7040 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:44:56.0507 7040 sfloppy - ok
17:44:56.0537 7040 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:44:56.0542 7040 SharedAccess - ok
17:44:56.0559 7040 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:44:56.0565 7040 ShellHWDetection - ok
17:44:56.0579 7040 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:44:56.0582 7040 SiSRaid2 - ok
17:44:56.0607 7040 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:44:56.0609 7040 SiSRaid4 - ok
17:44:56.0723 7040 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:44:56.0724 7040 SkypeUpdate - ok
17:44:56.0746 7040 [ 94CE7845AF6A2065B829E0126CD56236 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
17:44:56.0747 7040 SmartDefragDriver - ok
17:44:56.0767 7040 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:44:56.0769 7040 Smb - ok
17:44:56.0829 7040 [ 10450F432811D7FDA60A97FCC674D7B2 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
17:44:56.0832 7040 snapman - ok
17:44:56.0871 7040 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:44:56.0873 7040 SNMPTRAP - ok
17:44:56.0883 7040 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:44:56.0883 7040 spldr - ok
17:44:56.0957 7040 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:44:56.0968 7040 Spooler - ok
17:44:57.0140 7040 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:44:57.0157 7040 sppsvc - ok
17:44:57.0172 7040 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:44:57.0174 7040 sppuinotify - ok
17:44:57.0190 7040 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:44:57.0195 7040 srv - ok
17:44:57.0213 7040 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:44:57.0219 7040 srv2 - ok
17:44:57.0235 7040 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:44:57.0237 7040 srvnet - ok
17:44:57.0284 7040 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:44:57.0287 7040 SSDPSRV - ok
17:44:57.0295 7040 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:44:57.0297 7040 SstpSvc - ok
17:44:57.0440 7040 Steam Client Service - ok
17:44:57.0592 7040 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:44:57.0594 7040 Stereo Service - ok
17:44:57.0605 7040 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:44:57.0620 7040 stexstor - ok
17:44:57.0729 7040 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:44:57.0743 7040 stisvc - ok
17:44:57.0760 7040 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:44:57.0761 7040 swenum - ok
17:44:57.0787 7040 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:44:57.0794 7040 swprv - ok
17:44:57.0846 7040 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:44:57.0878 7040 SysMain - ok
17:44:57.0900 7040 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:44:57.0903 7040 TabletInputService - ok
17:44:57.0924 7040 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:44:57.0928 7040 TapiSrv - ok
17:44:57.0940 7040 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:44:57.0941 7040 TBS - ok
17:44:58.0015 7040 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:44:58.0038 7040 Tcpip - ok
17:44:58.0169 7040 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:44:58.0177 7040 TCPIP6 - ok
17:44:58.0208 7040 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:44:58.0210 7040 tcpipreg - ok
17:44:58.0236 7040 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:44:58.0238 7040 TDPIPE - ok
17:44:58.0268 7040 [ 99527D49EE0A96FC25537C61B270A372 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys
17:44:58.0293 7040 tdrpman273 - ok
17:44:58.0319 7040 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:44:58.0321 7040 TDTCP - ok
17:44:58.0356 7040 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:44:58.0358 7040 tdx - ok
17:44:58.0371 7040 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:44:58.0372 7040 TermDD - ok
17:44:58.0393 7040 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:44:58.0401 7040 TermService - ok
17:44:58.0417 7040 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:44:58.0420 7040 Themes - ok
17:44:58.0439 7040 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:44:58.0440 7040 THREADORDER - ok
17:44:58.0453 7040 [ EBBAEA02F0095A798000C7E06B16D41B ] timounter C:\Windows\system32\DRIVERS\timntr.sys
17:44:58.0465 7040 timounter - ok
17:44:58.0482 7040 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:44:58.0486 7040 TrkWks - ok
17:44:58.0522 7040 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:44:58.0523 7040 TrustedInstaller - ok
17:44:58.0540 7040 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:44:58.0542 7040 tssecsrv - ok
17:44:58.0611 7040 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:44:58.0614 7040 TsUsbFlt - ok
17:44:58.0735 7040 [ 535A376629A37E03F993D769490E8EED ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
17:44:58.0743 7040 TuneUp.UtilitiesSvc - ok
17:44:58.0792 7040 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
17:44:58.0793 7040 TuneUpUtilitiesDrv - ok
17:44:58.0852 7040 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:44:58.0854 7040 tunnel - ok
17:44:58.0873 7040 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:44:58.0876 7040 uagp35 - ok
17:44:58.0908 7040 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:44:58.0912 7040 udfs - ok
17:44:58.0935 7040 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:44:58.0938 7040 UI0Detect - ok
17:44:58.0949 7040 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:44:58.0952 7040 uliagpkx - ok
17:44:58.0966 7040 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:44:58.0968 7040 umbus - ok
17:44:58.0981 7040 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:44:58.0983 7040 UmPass - ok
17:44:59.0338 7040 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:44:59.0340 7040 UMVPFSrv - ok
17:44:59.0403 7040 [ 7A78ED1088890114DFDE2C4AB038D6B6 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:44:59.0415 7040 UNS - ok
17:44:59.0429 7040 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:44:59.0434 7040 upnphost - ok
17:44:59.0492 7040 [ 241080F1B28E68F0D00F8F1066A3780D ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
17:44:59.0493 7040 UrlFilter - ok
17:44:59.0515 7040 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:44:59.0517 7040 USBAAPL64 - ok
17:44:59.0572 7040 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:44:59.0574 7040 usbaudio - ok
17:44:59.0596 7040 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:44:59.0598 7040 usbccgp - ok
17:44:59.0611 7040 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:44:59.0613 7040 usbcir - ok
17:44:59.0623 7040 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:44:59.0625 7040 usbehci - ok
17:44:59.0639 7040 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:44:59.0643 7040 usbhub - ok
17:44:59.0672 7040 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:44:59.0674 7040 usbohci - ok
17:44:59.0709 7040 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:44:59.0711 7040 usbprint - ok
17:44:59.0765 7040 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:44:59.0767 7040 usbscan - ok
17:44:59.0778 7040 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:44:59.0780 7040 USBSTOR - ok
17:44:59.0798 7040 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:44:59.0799 7040 usbuhci - ok
17:44:59.0835 7040 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:44:59.0838 7040 usbvideo - ok
17:44:59.0857 7040 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:44:59.0865 7040 UxSms - ok
17:44:59.0909 7040 [ 6F10C7FF1F1E3F45D7E20DD6E398682E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
17:44:59.0913 7040 UxTuneUp - ok
17:44:59.0918 7040 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:44:59.0920 7040 VaultSvc - ok
17:44:59.0925 7040 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:44:59.0926 7040 vdrvroot - ok
17:45:00.0003 7040 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:45:00.0019 7040 vds - ok
17:45:00.0035 7040 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:45:00.0037 7040 vga - ok
17:45:00.0053 7040 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:45:00.0054 7040 VgaSave - ok
17:45:00.0060 7040 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:45:00.0063 7040 vhdmp - ok
17:45:00.0197 7040 [ D928C90CC759499E916B8FB5B8F32DDC ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
17:45:00.0217 7040 VIAHdAudAddService - ok
17:45:00.0235 7040 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:45:00.0236 7040 viaide - ok
17:45:00.0248 7040 [ 224153C26FABE55CD6D751BFDF94FD3B ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
17:45:00.0268 7040 VIAKaraokeService - ok
17:45:00.0287 7040 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:45:00.0289 7040 volmgr - ok
17:45:00.0309 7040 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:45:00.0317 7040 volmgrx - ok
17:45:00.0325 7040 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:45:00.0328 7040 volsnap - ok
17:45:00.0354 7040 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:45:00.0357 7040 vsmraid - ok
17:45:00.0427 7040 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:45:00.0452 7040 VSS - ok
17:45:00.0550 7040 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
17:45:00.0554 7040 vToolbarUpdater13.2.0 - ok
17:45:00.0558 7040 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:45:00.0559 7040 vwifibus - ok
17:45:00.0601 7040 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:45:00.0603 7040 vwififlt - ok
17:45:00.0661 7040 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:45:00.0666 7040 W32Time - ok
17:45:00.0672 7040 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:45:00.0673 7040 WacomPen - ok
17:45:00.0721 7040 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:45:00.0723 7040 WANARP - ok
17:45:00.0727 7040 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:45:00.0728 7040 Wanarpv6 - ok
17:45:00.0799 7040 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:45:00.0816 7040 WatAdminSvc - ok
17:45:00.0852 7040 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:45:00.0878 7040 wbengine - ok
17:45:00.0890 7040 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:45:00.0894 7040 WbioSrvc - ok
17:45:00.0917 7040 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:45:00.0922 7040 wcncsvc - ok
17:45:00.0935 7040 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:45:00.0938 7040 WcsPlugInService - ok
17:45:00.0941 7040 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:45:00.0943 7040 Wd - ok
17:45:00.0978 7040 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:45:00.0985 7040 Wdf01000 - ok
17:45:01.0000 7040 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:45:01.0003 7040 WdiServiceHost - ok
17:45:01.0006 7040 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:45:01.0008 7040 WdiSystemHost - ok
17:45:01.0022 7040 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:45:01.0026 7040 WebClient - ok
17:45:01.0041 7040 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:45:01.0045 7040 Wecsvc - ok
17:45:01.0056 7040 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:45:01.0058 7040 wercplsupport - ok
17:45:01.0102 7040 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:45:01.0105 7040 WerSvc - ok
17:45:01.0118 7040 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:45:01.0119 7040 WfpLwf - ok
17:45:01.0123 7040 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:45:01.0124 7040 WIMMount - ok
17:45:01.0138 7040 WinDefend - ok
17:45:01.0145 7040 WinHttpAutoProxySvc - ok
17:45:01.0176 7040 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:45:01.0179 7040 Winmgmt - ok
17:45:01.0217 7040 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:45:01.0251 7040 WinRM - ok
17:45:01.0318 7040 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:45:01.0320 7040 WinUsb - ok
17:45:01.0344 7040 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:45:01.0354 7040 Wlansvc - ok
17:45:01.0801 7040 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:45:01.0810 7040 wlidsvc - ok
17:45:01.0915 7040 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:45:01.0922 7040 WmiAcpi - ok
17:45:01.0957 7040 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:45:02.0022 7040 wmiApSrv - ok
17:45:02.0088 7040 WMPNetworkSvc - ok
17:45:02.0098 7040 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:45:02.0183 7040 WPCSvc - ok
17:45:02.0269 7040 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:45:02.0272 7040 WPDBusEnum - ok
17:45:02.0284 7040 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:45:02.0286 7040 ws2ifsl - ok
17:45:02.0293 7040 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:45:02.0296 7040 wscsvc - ok
17:45:02.0300 7040 WSearch - ok
17:45:02.0374 7040 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:45:02.0408 7040 wuauserv - ok
17:45:02.0485 7040 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:45:02.0495 7040 WudfPf - ok
17:45:02.0525 7040 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:45:02.0535 7040 WUDFRd - ok
17:45:02.0575 7040 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:45:02.0585 7040 wudfsvc - ok
17:45:02.0640 7040 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:45:02.0651 7040 WwanSvc - ok
17:45:02.0720 7040 ================ Scan global ===============================
17:45:02.0769 7040 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:45:02.0802 7040 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:45:02.0808 7040 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:45:02.0821 7040 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:45:02.0853 7040 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:45:02.0857 7040 [Global] - ok
17:45:02.0857 7040 ================ Scan MBR ==================================
17:45:02.0862 7040 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:45:02.0863 7040 Suspicious mbr (Forged): \Device\Harddisk0\DR0
17:45:02.0885 7040 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
17:45:02.0885 7040 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
17:45:03.0026 7040 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:45:03.0026 7040 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:45:03.0027 7040 ================ Scan VBR ==================================
17:45:03.0028 7040 [ E2129EA126E5CA24311BCECB72085690 ] \Device\Harddisk0\DR0\Partition1
17:45:03.0030 7040 \Device\Harddisk0\DR0\Partition1 - ok
17:45:03.0031 7040 ============================================================
17:45:03.0031 7040 Scan finished
17:45:03.0031 7040 ============================================================
17:45:03.0045 6988 Detected object count: 2
17:45:03.0045 6988 Actual detected object count: 2

#4 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 30 November 2012 - 05:56 PM

aswMBR Logs:
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-30 17:50:41
-----------------------------
17:50:41.294 OS Version: Windows x64 6.1.7601 Service Pack 1
17:50:41.295 Number of processors: 4 586 0x2A07
17:50:41.296 ComputerName: CCAPC00061 UserName: User
17:50:44.241 Initialize success
17:51:02.219 AVAST engine error: -1
17:52:04.200 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
17:52:04.202 Disk 0 Vendor: ST31000528AS CC38 Size: 953869MB BusType: 3
17:52:04.203 Device \Driver\atapi -> MajorFunction fffffa800812d5e8
17:52:04.205 Disk 0 MBR read successfully
17:52:04.207 Disk 0 MBR scan
17:52:04.208 Disk 0 Windows 7 default MBR code
17:52:04.210 Disk 0 MBR hidden
17:52:04.220 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 749068 MB offset 2048
17:52:04.222 Disk 0 Partition - 00 05 Extended 204800 MB offset 1534093312
17:52:04.263 Disk 0 Partition 2 00 BC NTFS 204799 MB offset 1534095360
17:52:04.294 Disk 0 scanning C:\Windows\system32\drivers
17:52:11.598 Service scanning
17:52:26.898 Modules scanning
17:52:26.905 Disk 0 trace - called modules:
17:52:26.910 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys ACPI.sys >>UNKNOWN [0xfffffa800812d5e8]<<
17:52:26.912 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80079ee060]
17:52:26.920 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa8007840cf0]
17:52:26.923 5 PCTCore64.sys[fffff88001184208] -> nt!IofCallDriver -> [0xfffffa8007698520]
17:52:26.934 7 ACPI.sys[fffff88000fa67a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0xfffffa8007695060]
17:52:26.941 \Driver\atapi[0xfffffa80073826a0] -> IRP_MJ_CREATE -> 0xfffffa800812d5e8
17:52:26.944 Scan finished successfully
17:54:13.012 Disk 0 MBR has been saved successfully to "C:\Users\User\Desktop\MBR.dat"
17:54:13.071 The log file has been saved successfully to "C:\Users\User\Desktop\aswMBR.txt"

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 30 November 2012 - 06:06 PM

17:45:02.0885 7040 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
17:45:02.0885 7040 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
17:45:03.0026 7040 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:45:03.0026 7040 \Device\Harddisk0\DR0 - detected TDSS File System (1)


Run TDSSkiller again and select

Rootkit.Boot.Pihar.c-CURE
TDSS File System -DELETE

Restart the PC,run TDSSkiller again and post the new log

#6 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 30 November 2012 - 06:25 PM

The new TDSS Killer log :
18:22:30.0992 5892 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:22:31.0353 5892 ============================================================
18:22:31.0353 5892 Current date / time: 2012/11/30 18:22:31.0353
18:22:31.0353 5892 SystemInfo:
18:22:31.0353 5892
18:22:31.0353 5892 OS Version: 6.1.7601 ServicePack: 1.0
18:22:31.0353 5892 Product type: Workstation
18:22:31.0353 5892 ComputerName: CCAPC00061
18:22:31.0353 5892 UserName: User
18:22:31.0353 5892 Windows directory: C:\Windows
18:22:31.0353 5892 System windows directory: C:\Windows
18:22:31.0353 5892 Running under WOW64
18:22:31.0353 5892 Processor architecture: Intel x64
18:22:31.0353 5892 Number of processors: 4
18:22:31.0353 5892 Page size: 0x1000
18:22:31.0353 5892 Boot type: Normal boot
18:22:31.0353 5892 ============================================================
18:22:32.0699 5892 BG loaded
18:22:35.0796 5892 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:22:35.0812 5892 ============================================================
18:22:35.0812 5892 \Device\Harddisk0\DR0:
18:22:35.0812 5892 MBR partitions:
18:22:35.0812 5892 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x5B706000
18:22:35.0834 5892 ============================================================
18:22:36.0160 5892 C: <-> \Device\Harddisk0\DR0\Partition1
18:22:36.0161 5892 ============================================================
18:22:36.0161 5892 Initialize success
18:22:36.0161 5892 ============================================================
18:22:43.0181 5936 ============================================================
18:22:43.0181 5936 Scan started
18:22:43.0181 5936 Mode: Manual; TDLFS;
18:22:43.0181 5936 ============================================================
18:22:46.0812 5936 ================ Scan system memory ========================
18:22:46.0812 5936 System memory - ok
18:22:46.0813 5936 ================ Scan services =============================
18:22:46.0934 5936 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:22:46.0936 5936 1394ohci - ok
18:22:46.0979 5936 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:22:46.0981 5936 ACPI - ok
18:22:46.0991 5936 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:22:46.0992 5936 AcpiPmi - ok
18:22:47.0079 5936 [ 2FA64C2E62F1B30E2FF70578B9BABDCD ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
18:22:47.0085 5936 AcrSch2Svc - ok
18:22:47.0157 5936 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:22:47.0158 5936 AdobeARMservice - ok
18:22:47.0328 5936 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:22:47.0332 5936 AdobeFlashPlayerUpdateSvc - ok
18:22:47.0412 5936 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:22:47.0414 5936 adp94xx - ok
18:22:47.0427 5936 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:22:47.0429 5936 adpahci - ok
18:22:47.0466 5936 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:22:47.0467 5936 adpu320 - ok
18:22:47.0527 5936 [ 18BA414C06B667FA2CB48DC3E27C8F97 ] AdvancedSystemCareService C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
18:22:47.0528 5936 AdvancedSystemCareService - ok
18:22:47.0547 5936 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:22:47.0548 5936 AeLookupSvc - ok
18:22:47.0574 5936 [ AE1FCE2CD1E99BEA89183BA8CD320872 ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
18:22:47.0575 5936 afcdp - ok
18:22:47.0792 5936 [ AF44F7E027037628F1FAC3C13CDE73E6 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
18:22:47.0805 5936 afcdpsrv - ok
18:22:47.0913 5936 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:22:47.0915 5936 AFD - ok
18:22:47.0995 5936 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:22:47.0996 5936 agp440 - ok
18:22:48.0053 5936 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:22:48.0066 5936 ALG - ok
18:22:48.0102 5936 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:22:48.0103 5936 aliide - ok
18:22:48.0118 5936 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:22:48.0118 5936 amdide - ok
18:22:48.0193 5936 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:22:48.0193 5936 AmdK8 - ok
18:22:48.0212 5936 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:22:48.0212 5936 AmdPPM - ok
18:22:48.0272 5936 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:22:48.0273 5936 amdsata - ok
18:22:48.0311 5936 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:22:48.0312 5936 amdsbs - ok
18:22:48.0349 5936 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:22:48.0349 5936 amdxata - ok
18:22:48.0477 5936 [ 48CD7E6520D47D62EAB0E6CE3EC30C65 ] Andbus C:\Windows\system32\DRIVERS\lgandbus64.sys
18:22:48.0477 5936 Andbus - ok
18:22:48.0526 5936 [ 08CBACC00D15DCDBBAAE1A7C8F231C61 ] AndDiag C:\Windows\system32\DRIVERS\lganddiag64.sys
18:22:48.0526 5936 AndDiag - ok
18:22:48.0560 5936 [ CEA9A4CD6B3A83428CE8501240833668 ] AndGps C:\Windows\system32\DRIVERS\lgandgps64.sys
18:22:48.0561 5936 AndGps - ok
18:22:48.0590 5936 [ E2B5663E547FA5E756B253EFA8EC8286 ] ANDModem C:\Windows\system32\DRIVERS\lgandmodem64.sys
18:22:48.0591 5936 ANDModem - ok
18:22:48.0627 5936 [ 9C1751B2E733471AE07561028B7D2A9B ] androidusb C:\Windows\system32\Drivers\lgandadb.sys
18:22:48.0627 5936 androidusb - ok
18:22:48.0650 5936 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:22:48.0650 5936 AppID - ok
18:22:48.0716 5936 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:22:48.0719 5936 AppIDSvc - ok
18:22:48.0737 5936 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:22:48.0737 5936 Appinfo - ok
18:22:49.0015 5936 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:22:49.0049 5936 Apple Mobile Device - ok
18:22:49.0281 5936 [ 70968A726D9DE0F0259D4AEB965FAD61 ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
18:22:49.0284 5936 Application Updater - ok
18:22:49.0346 5936 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:22:49.0347 5936 arc - ok
18:22:49.0393 5936 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:22:49.0394 5936 arcsas - ok
18:22:49.0644 5936 aspnet_state - ok
18:22:49.0715 5936 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:22:49.0715 5936 AsyncMac - ok
18:22:49.0763 5936 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:22:49.0764 5936 atapi - ok
18:22:49.0843 5936 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:22:49.0847 5936 AudioEndpointBuilder - ok
18:22:49.0859 5936 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:22:49.0862 5936 AudioSrv - ok
18:22:49.0924 5936 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
18:22:49.0925 5936 avgtp - ok
18:22:50.0010 5936 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:22:50.0021 5936 AxInstSV - ok
18:22:50.0053 5936 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:22:50.0055 5936 b06bdrv - ok
18:22:50.0099 5936 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:22:50.0100 5936 b57nd60a - ok
18:22:50.0128 5936 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:22:50.0131 5936 BDESVC - ok
18:22:50.0142 5936 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:22:50.0142 5936 Beep - ok
18:22:50.0245 5936 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:22:50.0250 5936 BFE - ok
18:22:50.0356 5936 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:22:50.0367 5936 BITS - ok
18:22:50.0408 5936 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:22:50.0409 5936 blbdrive - ok
18:22:50.0512 5936 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:22:50.0515 5936 Bonjour Service - ok
18:22:50.0541 5936 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:22:50.0541 5936 bowser - ok
18:22:50.0553 5936 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:22:50.0553 5936 BrFiltLo - ok
18:22:50.0578 5936 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:22:50.0578 5936 BrFiltUp - ok
18:22:50.0626 5936 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:22:50.0627 5936 Browser - ok
18:22:50.0875 5936 [ 52C724DAC8ADDC50F593E331A9863979 ] Browser Defender Update Service C:\Program Files (x86)\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
18:22:50.0877 5936 Browser Defender Update Service - ok
18:22:50.0925 5936 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:22:50.0927 5936 Brserid - ok
18:22:50.0949 5936 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:22:50.0950 5936 BrSerWdm - ok
18:22:50.0961 5936 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:22:50.0961 5936 BrUsbMdm - ok
18:22:51.0014 5936 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:22:51.0014 5936 BrUsbSer - ok
18:22:51.0069 5936 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:22:51.0070 5936 BTHMODEM - ok
18:22:51.0089 5936 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:22:51.0091 5936 bthserv - ok
18:22:51.0106 5936 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:22:51.0107 5936 cdfs - ok
18:22:51.0165 5936 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:22:51.0166 5936 cdrom - ok
18:22:51.0217 5936 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:22:51.0219 5936 CertPropSvc - ok
18:22:51.0236 5936 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:22:51.0237 5936 circlass - ok
18:22:51.0287 5936 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:22:51.0289 5936 CLFS - ok
18:22:51.0311 5936 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:22:51.0323 5936 clr_optimization_v2.0.50727_32 - ok
18:22:51.0368 5936 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:22:51.0371 5936 clr_optimization_v2.0.50727_64 - ok
18:22:51.0470 5936 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:22:51.0539 5936 clr_optimization_v4.0.30319_32 - ok
18:22:51.0577 5936 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:22:51.0613 5936 clr_optimization_v4.0.30319_64 - ok
18:22:51.0695 5936 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:22:51.0696 5936 CmBatt - ok
18:22:51.0742 5936 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:22:51.0743 5936 cmdide - ok
18:22:51.0804 5936 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
18:22:51.0806 5936 CNG - ok
18:22:51.0817 5936 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:22:51.0818 5936 Compbatt - ok
18:22:51.0843 5936 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:22:51.0843 5936 CompositeBus - ok
18:22:51.0876 5936 COMSysApp - ok
18:22:51.0996 5936 cpuz135 - ok
18:22:52.0007 5936 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:22:52.0008 5936 crcdisk - ok
18:22:52.0062 5936 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:22:52.0063 5936 CryptSvc - ok
18:22:52.0120 5936 [ 7F61FBE259C18666D8DDF862F13A5EB0 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
18:22:52.0121 5936 dc3d - ok
18:22:52.0171 5936 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:22:52.0174 5936 DcomLaunch - ok
18:22:52.0196 5936 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:22:52.0200 5936 defragsvc - ok
18:22:52.0209 5936 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:22:52.0210 5936 DfsC - ok
18:22:52.0254 5936 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:22:52.0256 5936 Dhcp - ok
18:22:52.0265 5936 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:22:52.0266 5936 discache - ok
18:22:52.0323 5936 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:22:52.0324 5936 Disk - ok
18:22:52.0347 5936 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:22:52.0349 5936 Dnscache - ok
18:22:52.0374 5936 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:22:52.0378 5936 dot3svc - ok
18:22:52.0396 5936 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:22:52.0398 5936 DPS - ok
18:22:52.0449 5936 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:22:52.0449 5936 drmkaud - ok
18:22:52.0528 5936 dump_wmimmc - ok
18:22:52.0612 5936 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:22:52.0616 5936 DXGKrnl - ok
18:22:52.0631 5936 EagleX64 - ok
18:22:52.0658 5936 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:22:52.0659 5936 EapHost - ok
18:22:52.0747 5936 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:22:52.0760 5936 ebdrv - ok
18:22:52.0800 5936 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:22:52.0801 5936 EFS - ok
18:22:52.0891 5936 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:22:52.0914 5936 ehRecvr - ok
18:22:52.0938 5936 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:22:52.0940 5936 ehSched - ok
18:22:52.0981 5936 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:22:52.0983 5936 elxstor - ok
18:22:53.0010 5936 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:22:53.0011 5936 ErrDev - ok
18:22:53.0060 5936 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:22:53.0062 5936 EventSystem - ok
18:22:53.0114 5936 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:22:53.0115 5936 exfat - ok
18:22:53.0130 5936 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:22:53.0131 5936 fastfat - ok
18:22:53.0173 5936 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:22:53.0176 5936 Fax - ok
18:22:53.0191 5936 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:22:53.0192 5936 fdc - ok
18:22:53.0224 5936 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:22:53.0225 5936 fdPHost - ok
18:22:53.0247 5936 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:22:53.0247 5936 FDResPub - ok
18:22:53.0257 5936 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:22:53.0258 5936 FileInfo - ok
18:22:53.0346 5936 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
18:22:53.0346 5936 FileMonitor - ok
18:22:53.0359 5936 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:22:53.0359 5936 Filetrace - ok
18:22:53.0457 5936 [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
18:22:53.0563 5936 FLEXnet Licensing Service 64 - ok
18:22:53.0599 5936 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:22:53.0600 5936 flpydisk - ok
18:22:53.0662 5936 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:22:53.0663 5936 FltMgr - ok
18:22:53.0881 5936 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:22:53.0887 5936 FontCache - ok
18:22:53.0971 5936 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:22:53.0988 5936 FontCache3.0.0.0 - ok
18:22:54.0002 5936 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:22:54.0003 5936 FsDepends - ok
18:22:54.0033 5936 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:22:54.0034 5936 Fs_Rec - ok
18:22:54.0108 5936 [ A33BCF3FAB19DB7D0B501036722F311B ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
18:22:54.0151 5936 Futuremark SystemInfo Service - ok
18:22:54.0210 5936 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:22:54.0211 5936 fvevol - ok
18:22:54.0265 5936 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:22:54.0266 5936 gagp30kx - ok
18:22:54.0392 5936 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:22:54.0392 5936 GEARAspiWDM - ok
18:22:54.0521 5936 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:22:54.0525 5936 gpsvc - ok
18:22:54.0614 5936 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:22:54.0615 5936 gupdate - ok
18:22:54.0644 5936 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:22:54.0645 5936 gupdatem - ok
18:22:54.0685 5936 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:22:54.0685 5936 hamachi - ok
18:22:54.0944 5936 [ 21D24138B736983F6E23823E092E9428 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
18:22:55.0023 5936 Hamachi2Svc - ok
18:22:55.0050 5936 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:22:55.0050 5936 hcw85cir - ok
18:22:55.0200 5936 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:22:55.0202 5936 HdAudAddService - ok
18:22:55.0275 5936 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:22:55.0275 5936 HDAudBus - ok
18:22:55.0288 5936 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:22:55.0288 5936 HidBatt - ok
18:22:55.0321 5936 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:22:55.0322 5936 HidBth - ok
18:22:55.0362 5936 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:22:55.0363 5936 HidIr - ok
18:22:55.0380 5936 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:22:55.0381 5936 hidserv - ok
18:22:55.0441 5936 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:22:55.0441 5936 HidUsb - ok
18:22:55.0524 5936 [ E4EF2B270971648EEBED0EEE39A6D594 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
18:22:55.0525 5936 HiPatchService - ok
18:22:55.0546 5936 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:22:55.0549 5936 hkmsvc - ok
18:22:55.0576 5936 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:22:55.0584 5936 HomeGroupListener - ok
18:22:55.0616 5936 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:22:55.0618 5936 HomeGroupProvider - ok
18:22:55.0670 5936 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:22:55.0671 5936 HpSAMD - ok
18:22:55.0700 5936 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:22:55.0704 5936 HTTP - ok
18:22:55.0727 5936 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:22:55.0728 5936 hwpolicy - ok
18:22:55.0759 5936 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:22:55.0760 5936 i8042prt - ok
18:22:55.0801 5936 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:22:55.0804 5936 iaStorV - ok
18:22:55.0919 5936 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:22:55.0941 5936 idsvc - ok
18:22:56.0502 5936 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:22:56.0552 5936 igfx - ok
18:22:56.0654 5936 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:22:56.0655 5936 iirsp - ok
18:22:56.0702 5936 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:22:56.0710 5936 IKEEXT - ok
18:22:56.0835 5936 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
18:22:56.0838 5936 IMFservice - ok
18:22:56.0918 5936 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
18:22:56.0920 5936 IntcDAud - ok
18:22:56.0938 5936 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:22:56.0938 5936 intelide - ok
18:22:57.0046 5936 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:22:57.0046 5936 intelppm - ok
18:22:57.0111 5936 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:22:57.0114 5936 IPBusEnum - ok
18:22:57.0130 5936 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:22:57.0130 5936 IpFilterDriver - ok
18:22:57.0157 5936 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:22:57.0160 5936 iphlpsvc - ok
18:22:57.0178 5936 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:22:57.0178 5936 IPMIDRV - ok
18:22:57.0202 5936 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:22:57.0203 5936 IPNAT - ok
18:22:57.0291 5936 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:22:57.0301 5936 iPod Service - ok
18:22:57.0343 5936 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:22:57.0344 5936 IRENUM - ok
18:22:57.0411 5936 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:22:57.0411 5936 isapnp - ok
18:22:57.0462 5936 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:22:57.0463 5936 iScsiPrt - ok
18:22:57.0479 5936 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:22:57.0479 5936 kbdclass - ok
18:22:57.0499 5936 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:22:57.0500 5936 kbdhid - ok
18:22:57.0512 5936 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:22:57.0513 5936 KeyIso - ok
18:22:57.0585 5936 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:22:57.0586 5936 KSecDD - ok
18:22:57.0605 5936 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:22:57.0607 5936 KSecPkg - ok
18:22:57.0616 5936 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:22:57.0617 5936 ksthunk - ok
18:22:57.0639 5936 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:22:57.0648 5936 KtmRm - ok
18:22:57.0694 5936 [ A4A9CA24E54E81C6C3E469EAEB4B3F42 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
18:22:57.0695 5936 L1C - ok
18:22:57.0761 5936 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:22:57.0764 5936 LanmanServer - ok
18:22:58.0001 5936 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:22:58.0003 5936 LanmanWorkstation - ok
18:22:58.0044 5936 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:22:58.0044 5936 lltdio - ok
18:22:58.0057 5936 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:22:58.0061 5936 lltdsvc - ok
18:22:58.0070 5936 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:22:58.0071 5936 lmhosts - ok
18:22:58.0097 5936 [ 98B16E756243BEA9410E32025B19C06F ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:22:58.0098 5936 LMS - ok
18:22:58.0150 5936 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:22:58.0151 5936 LSI_FC - ok
18:22:58.0199 5936 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:22:58.0200 5936 LSI_SAS - ok
18:22:58.0223 5936 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:22:58.0224 5936 LSI_SAS2 - ok
18:22:58.0244 5936 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:22:58.0245 5936 LSI_SCSI - ok
18:22:58.0258 5936 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:22:58.0259 5936 luafv - ok
18:22:58.0404 5936 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:22:58.0405 5936 LVRS64 - ok
18:22:58.0648 5936 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
18:22:58.0668 5936 LVUVC64 - ok
18:22:58.0892 5936 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
18:22:58.0892 5936 MBAMProtector - ok
18:22:59.0047 5936 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:22:59.0049 5936 MBAMScheduler - ok
18:22:59.0148 5936 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:22:59.0151 5936 MBAMService - ok
18:22:59.0174 5936 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:22:59.0180 5936 Mcx2Svc - ok
18:22:59.0207 5936 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:22:59.0207 5936 megasas - ok
18:22:59.0257 5936 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:22:59.0258 5936 MegaSR - ok
18:22:59.0310 5936 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:22:59.0311 5936 MEIx64 - ok
18:22:59.0408 5936 Microsoft SharePoint Workspace Audit Service - ok
18:22:59.0576 5936 [ 29731E3F45A70312E82A72EA96483171 ] mitsijm2012 C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
18:22:59.0580 5936 mitsijm2012 - ok
18:22:59.0670 5936 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:22:59.0672 5936 MMCSS - ok
18:22:59.0692 5936 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:22:59.0692 5936 Modem - ok
18:22:59.0739 5936 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:22:59.0739 5936 monitor - ok
18:22:59.0784 5936 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:22:59.0784 5936 mouclass - ok
18:22:59.0997 5936 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:22:59.0998 5936 mouhid - ok
18:23:00.0148 5936 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:23:00.0149 5936 mountmgr - ok
18:23:00.0320 5936 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
18:23:00.0322 5936 MpFilter - ok
18:23:00.0491 5936 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:23:00.0492 5936 mpio - ok
18:23:00.0516 5936 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:23:00.0517 5936 mpsdrv - ok
18:23:00.0548 5936 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:23:00.0553 5936 MpsSvc - ok
18:23:00.0598 5936 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:23:00.0599 5936 MRxDAV - ok
18:23:00.0681 5936 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:23:00.0682 5936 mrxsmb - ok
18:23:00.0961 5936 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:23:00.0962 5936 mrxsmb10 - ok
18:23:01.0017 5936 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:23:01.0018 5936 mrxsmb20 - ok
18:23:01.0049 5936 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
18:23:01.0050 5936 msahci - ok
18:23:01.0082 5936 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:23:01.0083 5936 msdsm - ok
18:23:01.0116 5936 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:23:01.0127 5936 MSDTC - ok
18:23:01.0143 5936 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:23:01.0143 5936 Msfs - ok
18:23:01.0164 5936 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:23:01.0165 5936 mshidkmdf - ok
18:23:01.0191 5936 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:23:01.0192 5936 msisadrv - ok
18:23:01.0270 5936 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:23:01.0288 5936 MSiSCSI - ok
18:23:01.0295 5936 msiserver - ok
18:23:01.0371 5936 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:23:01.0371 5936 MSKSSRV - ok
18:23:01.0595 5936 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:23:01.0596 5936 MsMpSvc - ok
18:23:01.0719 5936 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:23:01.0719 5936 MSPCLOCK - ok
18:23:01.0771 5936 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:23:01.0772 5936 MSPQM - ok
18:23:01.0946 5936 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:23:01.0948 5936 MsRPC - ok
18:23:02.0040 5936 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:23:02.0041 5936 mssmbios - ok
18:23:02.0093 5936 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:23:02.0094 5936 MSTEE - ok
18:23:02.0106 5936 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:23:02.0107 5936 MTConfig - ok
18:23:02.0118 5936 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:23:02.0119 5936 Mup - ok
18:23:02.0378 5936 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:23:02.0409 5936 napagent - ok
18:23:02.0607 5936 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:23:02.0609 5936 NativeWifiP - ok
18:23:02.0945 5936 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:23:02.0949 5936 NDIS - ok
18:23:02.0997 5936 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:23:02.0998 5936 NdisCap - ok
18:23:03.0010 5936 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:23:03.0011 5936 NdisTapi - ok
18:23:03.0067 5936 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:23:03.0068 5936 Ndisuio - ok
18:23:03.0121 5936 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:23:03.0122 5936 NdisWan - ok
18:23:03.0174 5936 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:23:03.0175 5936 NDProxy - ok
18:23:03.0201 5936 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:23:03.0202 5936 NetBIOS - ok
18:23:03.0223 5936 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:23:03.0225 5936 NetBT - ok
18:23:03.0256 5936 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:23:03.0258 5936 Netlogon - ok
18:23:03.0312 5936 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:23:03.0315 5936 Netman - ok
18:23:03.0386 5936 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:03.0429 5936 NetMsmqActivator - ok
18:23:03.0461 5936 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:03.0463 5936 NetPipeActivator - ok
18:23:03.0494 5936 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:23:03.0497 5936 netprofm - ok
18:23:03.0732 5936 [ E005682AE8F8EC4EB05F2A70A16EA1C5 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
18:23:03.0738 5936 netr28ux - ok
18:23:03.0763 5936 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:03.0764 5936 NetTcpActivator - ok
18:23:03.0769 5936 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:03.0770 5936 NetTcpPortSharing - ok
18:23:03.0798 5936 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:23:03.0799 5936 nfrd960 - ok
18:23:03.0850 5936 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:23:03.0851 5936 NisDrv - ok
18:23:03.0994 5936 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
18:23:03.0996 5936 NisSrv - ok
18:23:04.0061 5936 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:23:04.0064 5936 NlaSvc - ok
18:23:04.0074 5936 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:23:04.0074 5936 Npfs - ok
18:23:04.0103 5936 npggsvc - ok
18:23:04.0109 5936 NPPTNT2 - ok
18:23:04.0128 5936 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:23:04.0129 5936 nsi - ok
18:23:04.0145 5936 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:23:04.0145 5936 nsiproxy - ok
18:23:04.0205 5936 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:23:04.0214 5936 Ntfs - ok
18:23:04.0239 5936 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:23:04.0240 5936 Null - ok
18:23:04.0294 5936 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:23:04.0295 5936 NVHDA - ok
18:23:04.0660 5936 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:23:04.0718 5936 nvlddmkm - ok
18:23:04.0797 5936 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:23:04.0799 5936 nvraid - ok
18:23:04.0839 5936 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:23:04.0840 5936 nvstor - ok
18:23:05.0056 5936 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] NVSvc C:\Windows\system32\nvvsvc.exe
18:23:05.0080 5936 NVSvc - ok
18:23:05.0166 5936 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:23:05.0201 5936 nvUpdatusService - ok
18:23:05.0219 5936 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:23:05.0220 5936 nv_agp - ok
18:23:05.0304 5936 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:23:05.0305 5936 ohci1394 - ok
18:23:05.0380 5936 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:23:05.0384 5936 ose64 - ok
18:23:05.0770 5936 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:23:05.0930 5936 osppsvc - ok
18:23:05.0976 5936 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:23:05.0980 5936 p2pimsvc - ok
18:23:05.0992 5936 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:23:05.0997 5936 p2psvc - ok
18:23:06.0045 5936 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:23:06.0046 5936 Parport - ok
18:23:06.0081 5936 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:23:06.0082 5936 partmgr - ok
18:23:06.0089 5936 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:23:06.0091 5936 PcaSvc - ok
18:23:06.0173 5936 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:23:06.0174 5936 pci - ok
18:23:06.0206 5936 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:23:06.0207 5936 pciide - ok
18:23:06.0288 5936 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:23:06.0289 5936 pcmcia - ok
18:23:06.0359 5936 [ 51019118F4715E6DA58B3372246C281A ] PCTBD C:\Windows\system32\Drivers\PCTBD64.sys
18:23:06.0360 5936 PCTBD - ok
18:23:06.0664 5936 [ 0012046DEE36BF3D241F027B4417B433 ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
18:23:06.0666 5936 PCTCore - ok
18:23:06.0795 5936 [ BA1F42A42F405F62CEFF6B69A2797F7C ] pctDS C:\Windows\system32\drivers\pctDS64.sys
18:23:06.0797 5936 pctDS - ok
18:23:06.0891 5936 [ E5F6DA5B178028A750C5B8D7B09B3383 ] pctgntdi C:\Windows\System32\drivers\pctgntdi64.sys
18:23:06.0892 5936 pctgntdi - ok
18:23:06.0948 5936 [ F9FC1B700D16ED0AE96A36A758E18F31 ] pctplsm C:\Windows\System32\drivers\pctplsm64.sys
18:23:06.0949 5936 pctplsm - ok
18:23:07.0069 5936 [ DB2BA2D9585101947C5A60D785A63491 ] PCTSD C:\Windows\system32\Drivers\PCTSD64.sys
18:23:07.0071 5936 PCTSD - ok
18:23:07.0105 5936 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:23:07.0106 5936 pcw - ok
18:23:07.0176 5936 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:23:07.0179 5936 PEAUTH - ok
18:23:07.0418 5936 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:23:07.0420 5936 PerfHost - ok
18:23:07.0494 5936 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:23:07.0519 5936 pla - ok
18:23:07.0714 5936 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:23:07.0717 5936 PlugPlay - ok
18:23:07.0908 5936 PnkBstrA - ok
18:23:08.0003 5936 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:23:08.0019 5936 PNRPAutoReg - ok
18:23:08.0080 5936 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:23:08.0082 5936 PNRPsvc - ok
18:23:08.0166 5936 [ 33328FA8A580885AB0065BE6DB266E9F ] Point64 C:\Windows\system32\DRIVERS\point64.sys
18:23:08.0166 5936 Point64 - ok
18:23:08.0289 5936 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:23:08.0292 5936 PolicyAgent - ok
18:23:08.0319 5936 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:23:08.0321 5936 Power - ok
18:23:08.0381 5936 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:23:08.0382 5936 PptpMiniport - ok
18:23:08.0394 5936 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:23:08.0395 5936 Processor - ok
18:23:08.0411 5936 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:23:08.0413 5936 ProfSvc - ok
18:23:08.0425 5936 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:23:08.0426 5936 ProtectedStorage - ok
18:23:08.0546 5936 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:23:08.0546 5936 Psched - ok
18:23:09.0045 5936 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:23:09.0052 5936 ql2300 - ok
18:23:09.0076 5936 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:23:09.0077 5936 ql40xx - ok
18:23:09.0192 5936 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:23:09.0204 5936 QWAVE - ok
18:23:09.0250 5936 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:23:09.0250 5936 QWAVEdrv - ok
18:23:09.0270 5936 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:23:09.0270 5936 RasAcd - ok
18:23:09.0355 5936 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:23:09.0355 5936 RasAgileVpn - ok
18:23:09.0394 5936 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:23:09.0407 5936 RasAuto - ok
18:23:09.0427 5936 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:23:09.0428 5936 Rasl2tp - ok
18:23:09.0455 5936 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:23:09.0461 5936 RasMan - ok
18:23:09.0468 5936 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:23:09.0469 5936 RasPppoe - ok
18:23:09.0486 5936 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:23:09.0488 5936 RasSstp - ok
18:23:09.0500 5936 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:23:09.0502 5936 rdbss - ok
18:23:09.0513 5936 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:23:09.0513 5936 rdpbus - ok
18:23:09.0554 5936 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:23:09.0555 5936 RDPCDD - ok
18:23:09.0577 5936 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:23:09.0578 5936 RDPENCDD - ok
18:23:09.0627 5936 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:23:09.0628 5936 RDPREFMP - ok
18:23:09.0690 5936 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:23:09.0691 5936 RDPWD - ok
18:23:09.0721 5936 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:23:09.0723 5936 rdyboost - ok
18:23:09.0822 5936 [ 5F9AC3243C206EC95F32E4348AE67C13 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
18:23:09.0823 5936 RegFilter - ok
18:23:09.0844 5936 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:23:09.0847 5936 RemoteAccess - ok
18:23:09.0863 5936 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:23:09.0867 5936 RemoteRegistry - ok
18:23:09.0877 5936 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:23:09.0879 5936 RpcEptMapper - ok
18:23:09.0886 5936 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:23:09.0888 5936 RpcLocator - ok
18:23:09.0903 5936 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:23:09.0907 5936 RpcSs - ok
18:23:09.0921 5936 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:23:09.0922 5936 rspndr - ok
18:23:09.0927 5936 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:23:09.0928 5936 SamSs - ok
18:23:09.0948 5936 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:23:09.0949 5936 sbp2port - ok
18:23:09.0965 5936 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:23:09.0969 5936 SCardSvr - ok
18:23:10.0038 5936 [ 3AC948640421E3891A49AA83C6B77B7A ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
18:23:10.0039 5936 SCDEmu - ok
18:23:10.0059 5936 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:23:10.0059 5936 scfilter - ok
18:23:10.0082 5936 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:23:10.0088 5936 Schedule - ok
18:23:10.0106 5936 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:23:10.0107 5936 SCPolicySvc - ok
18:23:10.0352 5936 [ AE88672774DF12BEDF76768E52D23424 ] sdAuxService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe
18:23:10.0354 5936 sdAuxService - ok
18:23:10.0398 5936 [ 5FC31ADB3B47E00349B92E57117D2C07 ] sdCoreService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsSvc.exe
18:23:10.0403 5936 sdCoreService - ok
18:23:10.0429 5936 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:23:10.0436 5936 SDRSVC - ok
18:23:10.0486 5936 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:23:10.0487 5936 secdrv - ok
18:23:10.0496 5936 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:23:10.0499 5936 seclogon - ok
18:23:10.0506 5936 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:23:10.0508 5936 SENS - ok
18:23:10.0545 5936 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:23:10.0548 5936 SensrSvc - ok
18:23:10.0592 5936 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:23:10.0592 5936 Serenum - ok
18:23:10.0608 5936 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:23:10.0609 5936 Serial - ok
18:23:10.0631 5936 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:23:10.0631 5936 sermouse - ok
18:23:10.0660 5936 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:23:10.0664 5936 SessionEnv - ok
18:23:10.0672 5936 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:23:10.0673 5936 sffdisk - ok
18:23:10.0686 5936 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:23:10.0687 5936 sffp_mmc - ok
18:23:10.0695 5936 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:23:10.0695 5936 sffp_sd - ok
18:23:10.0705 5936 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:23:10.0707 5936 sfloppy - ok
18:23:10.0737 5936 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:23:10.0741 5936 SharedAccess - ok
18:23:10.0768 5936 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:23:10.0771 5936 ShellHWDetection - ok
18:23:10.0821 5936 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:23:10.0822 5936 SiSRaid2 - ok
18:23:10.0841 5936 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:23:10.0842 5936 SiSRaid4 - ok
18:23:10.0913 5936 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:23:10.0914 5936 SkypeUpdate - ok
18:23:10.0931 5936 [ 94CE7845AF6A2065B829E0126CD56236 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
18:23:10.0932 5936 SmartDefragDriver - ok
18:23:10.0976 5936 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:23:10.0977 5936 Smb - ok
18:23:11.0030 5936 [ 10450F432811D7FDA60A97FCC674D7B2 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
18:23:11.0032 5936 snapman - ok
18:23:11.0081 5936 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:23:11.0082 5936 SNMPTRAP - ok
18:23:11.0094 5936 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:23:11.0095 5936 spldr - ok
18:23:11.0135 5936 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:23:11.0139 5936 Spooler - ok
18:23:11.0202 5936 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:23:11.0221 5936 sppsvc - ok
18:23:11.0240 5936 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:23:11.0244 5936 sppuinotify - ok
18:23:11.0258 5936 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:23:11.0261 5936 srv - ok
18:23:11.0290 5936 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:23:11.0292 5936 srv2 - ok
18:23:11.0303 5936 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:23:11.0305 5936 srvnet - ok
18:23:11.0353 5936 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:23:11.0355 5936 SSDPSRV - ok
18:23:11.0372 5936 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:23:11.0374 5936 SstpSvc - ok
18:23:11.0391 5936 Steam Client Service - ok
18:23:11.0472 5936 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:23:11.0474 5936 Stereo Service - ok
18:23:11.0490 5936 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:23:11.0491 5936 stexstor - ok
18:23:11.0552 5936 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:23:11.0557 5936 stisvc - ok
18:23:11.0578 5936 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:23:11.0578 5936 swenum - ok
18:23:11.0616 5936 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:23:11.0623 5936 swprv - ok
18:23:11.0664 5936 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:23:11.0673 5936 SysMain - ok
18:23:11.0693 5936 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:23:11.0696 5936 TabletInputService - ok
18:23:11.0713 5936 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:23:11.0718 5936 TapiSrv - ok
18:23:11.0733 5936 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:23:11.0735 5936 TBS - ok
18:23:11.0810 5936 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:23:11.0818 5936 Tcpip - ok
18:23:12.0283 5936 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:23:12.0291 5936 TCPIP6 - ok
18:23:12.0319 5936 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:23:12.0319 5936 tcpipreg - ok
18:23:12.0347 5936 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:23:12.0347 5936 TDPIPE - ok
18:23:12.0383 5936 [ 99527D49EE0A96FC25537C61B270A372 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys
18:23:12.0389 5936 tdrpman273 - ok
18:23:12.0413 5936 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:23:12.0413 5936 TDTCP - ok
18:23:12.0483 5936 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:23:12.0484 5936 tdx - ok
18:23:12.0506 5936 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:23:12.0507 5936 TermDD - ok
18:23:12.0529 5936 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:23:12.0536 5936 TermService - ok
18:23:12.0544 5936 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:23:12.0546 5936 Themes - ok
18:23:13.0040 5936 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:23:13.0042 5936 THREADORDER - ok
18:23:13.0230 5936 [ EBBAEA02F0095A798000C7E06B16D41B ] timounter C:\Windows\system32\DRIVERS\timntr.sys
18:23:13.0234 5936 timounter - ok
18:23:13.0284 5936 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:23:13.0286 5936 TrkWks - ok
18:23:13.0366 5936 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:23:13.0376 5936 TrustedInstaller - ok
18:23:13.0405 5936 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:23:13.0406 5936 tssecsrv - ok
18:23:13.0472 5936 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:23:13.0474 5936 TsUsbFlt - ok
18:23:13.0694 5936 [ 535A376629A37E03F993D769490E8EED ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
18:23:13.0704 5936 TuneUp.UtilitiesSvc - ok
18:23:13.0761 5936 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
18:23:13.0761 5936 TuneUpUtilitiesDrv - ok
18:23:13.0820 5936 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:23:13.0821 5936 tunnel - ok
18:23:13.0850 5936 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:23:13.0850 5936 uagp35 - ok
18:23:13.0883 5936 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:23:13.0885 5936 udfs - ok
18:23:13.0911 5936 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:23:13.0923 5936 UI0Detect - ok
18:23:13.0942 5936 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:23:13.0943 5936 uliagpkx - ok
18:23:13.0976 5936 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:23:13.0977 5936 umbus - ok
18:23:13.0991 5936 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:23:13.0991 5936 UmPass - ok
18:23:14.0057 5936 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
18:23:14.0060 5936 UMVPFSrv - ok
18:23:14.0158 5936 [ 7A78ED1088890114DFDE2C4AB038D6B6 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:23:14.0169 5936 UNS - ok
18:23:14.0190 5936 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:23:14.0193 5936 upnphost - ok
18:23:14.0277 5936 [ 241080F1B28E68F0D00F8F1066A3780D ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
18:23:14.0278 5936 UrlFilter - ok
18:23:14.0317 5936 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
18:23:14.0318 5936 USBAAPL64 - ok
18:23:14.0399 5936 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:23:14.0400 5936 usbaudio - ok
18:23:14.0439 5936 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:23:14.0440 5936 usbccgp - ok
18:23:14.0504 5936 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:23:14.0506 5936 usbcir - ok
18:23:14.0525 5936 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:23:14.0525 5936 usbehci - ok
18:23:14.0609 5936 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:23:14.0611 5936 usbhub - ok
18:23:14.0641 5936 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:23:14.0641 5936 usbohci - ok
18:23:14.0694 5936 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:23:14.0695 5936 usbprint - ok
18:23:14.0742 5936 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:23:14.0743 5936 usbscan - ok
18:23:14.0754 5936 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:23:14.0755 5936 USBSTOR - ok
18:23:14.0774 5936 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:23:14.0775 5936 usbuhci - ok
18:23:14.0828 5936 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:23:14.0830 5936 usbvideo - ok
18:23:14.0850 5936 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:23:14.0852 5936 UxSms - ok
18:23:14.0911 5936 [ 6F10C7FF1F1E3F45D7E20DD6E398682E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
18:23:14.0913 5936 UxTuneUp - ok
18:23:14.0945 5936 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:23:14.0947 5936 VaultSvc - ok
18:23:14.0996 5936 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:23:14.0997 5936 vdrvroot - ok
18:23:15.0028 5936 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:23:15.0035 5936 vds - ok
18:23:15.0053 5936 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:23:15.0054 5936 vga - ok
18:23:15.0071 5936 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:23:15.0072 5936 VgaSave - ok
18:23:15.0083 5936 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:23:15.0085 5936 vhdmp - ok
18:23:15.0181 5936 [ D928C90CC759499E916B8FB5B8F32DDC ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:23:15.0191 5936 VIAHdAudAddService - ok
18:23:15.0200 5936 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:23:15.0201 5936 viaide - ok
18:23:15.0216 5936 [ 224153C26FABE55CD6D751BFDF94FD3B ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
18:23:15.0238 5936 VIAKaraokeService - ok
18:23:15.0255 5936 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:23:15.0256 5936 volmgr - ok
18:23:15.0270 5936 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:23:15.0273 5936 volmgrx - ok
18:23:15.0287 5936 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:23:15.0289 5936 volsnap - ok
18:23:15.0314 5936 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:23:15.0316 5936 vsmraid - ok
18:23:15.0369 5936 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:23:15.0395 5936 VSS - ok
18:23:15.0485 5936 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
18:23:15.0489 5936 vToolbarUpdater13.2.0 - ok
18:23:15.0493 5936 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:23:15.0494 5936 vwifibus - ok
18:23:15.0536 5936 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:23:15.0536 5936 vwififlt - ok
18:23:15.0604 5936 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:23:15.0607 5936 W32Time - ok
18:23:15.0615 5936 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:23:15.0616 5936 WacomPen - ok
18:23:15.0664 5936 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:23:15.0665 5936 WANARP - ok
18:23:15.0670 5936 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:23:15.0671 5936 Wanarpv6 - ok
18:23:15.0751 5936 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:23:15.0776 5936 WatAdminSvc - ok
18:23:15.0812 5936 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:23:15.0838 5936 wbengine - ok
18:23:15.0850 5936 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:23:15.0853 5936 WbioSrvc - ok
18:23:15.0868 5936 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:23:15.0873 5936 wcncsvc - ok
18:23:15.0886 5936 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:23:15.0889 5936 WcsPlugInService - ok
18:23:15.0896 5936 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:23:15.0896 5936 Wd - ok
18:23:15.0929 5936 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:23:15.0933 5936 Wdf01000 - ok
18:23:15.0943 5936 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:23:15.0945 5936 WdiServiceHost - ok
18:23:15.0950 5936 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:23:15.0952 5936 WdiSystemHost - ok
18:23:15.0974 5936 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:23:15.0977 5936 WebClient - ok
18:23:15.0993 5936 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:23:15.0996 5936 Wecsvc - ok
18:23:16.0007 5936 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:23:16.0009 5936 wercplsupport - ok
18:23:16.0020 5936 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:23:16.0022 5936 WerSvc - ok
18:23:16.0036 5936 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:23:16.0036 5936 WfpLwf - ok
18:23:16.0061 5936 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:23:16.0062 5936 WIMMount - ok
18:23:16.0081 5936 WinDefend - ok
18:23:16.0091 5936 WinHttpAutoProxySvc - ok
18:23:16.0127 5936 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:23:16.0129 5936 Winmgmt - ok
18:23:16.0168 5936 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:23:16.0203 5936 WinRM - ok
18:23:16.0269 5936 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:23:16.0270 5936 WinUsb - ok
18:23:16.0295 5936 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:23:16.0300 5936 Wlansvc - ok
18:23:16.0427 5936 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:23:16.0437 5936 wlidsvc - ok
18:23:16.0458 5936 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:23:16.0458 5936 WmiAcpi - ok
18:23:16.0474 5936 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:23:16.0477 5936 wmiApSrv - ok
18:23:16.0522 5936 WMPNetworkSvc - ok
18:23:16.0549 5936 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:23:16.0553 5936 WPCSvc - ok
18:23:16.0570 5936 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:23:16.0572 5936 WPDBusEnum - ok
18:23:16.0594 5936 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:23:16.0594 5936 ws2ifsl - ok
18:23:16.0611 5936 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:23:16.0613 5936 wscsvc - ok
18:23:16.0618 5936 WSearch - ok
18:23:16.0692 5936 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:23:16.0704 5936 wuauserv - ok
18:23:16.0736 5936 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:23:16.0737 5936 WudfPf - ok
18:23:16.0756 5936 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:23:16.0757 5936 WUDFRd - ok
18:23:16.0793 5936 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:23:16.0795 5936 wudfsvc - ok
18:23:16.0810 5936 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:23:16.0815 5936 WwanSvc - ok
18:23:16.0867 5936 ================ Scan global ===============================
18:23:16.0895 5936 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:23:16.0920 5936 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
18:23:16.0927 5936 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
18:23:16.0947 5936 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:23:16.0965 5936 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:23:16.0968 5936 [Global] - ok
18:23:16.0969 5936 ================ Scan MBR ==================================
18:23:16.0980 5936 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:23:17.0127 5936 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:23:17.0128 5936 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:23:17.0129 5936 ================ Scan VBR ==================================
18:23:17.0131 5936 [ E2129EA126E5CA24311BCECB72085690 ] \Device\Harddisk0\DR0\Partition1
18:23:17.0132 5936 \Device\Harddisk0\DR0\Partition1 - ok
18:23:17.0133 5936 ============================================================
18:23:17.0133 5936 Scan finished
18:23:17.0133 5936 ============================================================
18:23:17.0140 5920 Detected object count: 1
18:23:17.0140 5920 Actual detected object count: 1
18:23:29.0522 5920 \Device\Harddisk0\DR0\TDLFS - deleted
18:23:29.0522 5920 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
18:23:37.0580 3484 ============================================================
18:23:37.0580 3484 Scan started
18:23:37.0580 3484 Mode: Manual; TDLFS;
18:23:37.0580 3484 ============================================================
18:23:39.0184 3484 ================ Scan system memory ========================
18:23:39.0185 3484 System memory - ok
18:23:39.0185 3484 ================ Scan services =============================
18:23:39.0280 3484 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:23:39.0281 3484 1394ohci - ok
18:23:39.0309 3484 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:23:39.0311 3484 ACPI - ok
18:23:39.0321 3484 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:23:39.0322 3484 AcpiPmi - ok
18:23:39.0384 3484 [ 2FA64C2E62F1B30E2FF70578B9BABDCD ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
18:23:39.0388 3484 AcrSch2Svc - ok
18:23:39.0429 3484 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:23:39.0429 3484 AdobeARMservice - ok
18:23:39.0516 3484 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:23:39.0517 3484 AdobeFlashPlayerUpdateSvc - ok
18:23:39.0542 3484 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:23:39.0544 3484 adp94xx - ok
18:23:39.0566 3484 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:23:39.0567 3484 adpahci - ok
18:23:39.0579 3484 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:23:39.0580 3484 adpu320 - ok
18:23:39.0657 3484 [ 18BA414C06B667FA2CB48DC3E27C8F97 ] AdvancedSystemCareService C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
18:23:39.0658 3484 AdvancedSystemCareService - ok
18:23:39.0677 3484 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:23:39.0678 3484 AeLookupSvc - ok
18:23:39.0692 3484 [ AE1FCE2CD1E99BEA89183BA8CD320872 ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
18:23:39.0693 3484 afcdp - ok
18:23:39.0755 3484 [ AF44F7E027037628F1FAC3C13CDE73E6 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
18:23:39.0768 3484 afcdpsrv - ok
18:23:39.0793 3484 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:23:39.0795 3484 AFD - ok
18:23:39.0817 3484 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:23:39.0818 3484 agp440 - ok
18:23:39.0842 3484 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:23:39.0843 3484 ALG - ok
18:23:39.0858 3484 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:23:39.0858 3484 aliide - ok
18:23:39.0865 3484 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:23:39.0865 3484 amdide - ok
18:23:39.0882 3484 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:23:39.0882 3484 AmdK8 - ok
18:23:39.0892 3484 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:23:39.0893 3484 AmdPPM - ok
18:23:39.0919 3484 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:23:39.0920 3484 amdsata - ok
18:23:39.0935 3484 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:23:39.0936 3484 amdsbs - ok
18:23:39.0946 3484 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:23:39.0946 3484 amdxata - ok
18:23:40.0008 3484 [ 48CD7E6520D47D62EAB0E6CE3EC30C65 ] Andbus C:\Windows\system32\DRIVERS\lgandbus64.sys
18:23:40.0008 3484 Andbus - ok
18:23:40.0032 3484 [ 08CBACC00D15DCDBBAAE1A7C8F231C61 ] AndDiag C:\Windows\system32\DRIVERS\lganddiag64.sys
18:23:40.0032 3484 AndDiag - ok
18:23:40.0049 3484 [ CEA9A4CD6B3A83428CE8501240833668 ] AndGps C:\Windows\system32\DRIVERS\lgandgps64.sys
18:23:40.0050 3484 AndGps - ok
18:23:40.0063 3484 [ E2B5663E547FA5E756B253EFA8EC8286 ] ANDModem C:\Windows\system32\DRIVERS\lgandmodem64.sys
18:23:40.0063 3484 ANDModem - ok
18:23:40.0074 3484 [ 9C1751B2E733471AE07561028B7D2A9B ] androidusb C:\Windows\system32\Drivers\lgandadb.sys
18:23:40.0075 3484 androidusb - ok
18:23:40.0106 3484 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:23:40.0106 3484 AppID - ok
18:23:40.0122 3484 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:23:40.0122 3484 AppIDSvc - ok
18:23:40.0151 3484 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:23:40.0152 3484 Appinfo - ok
18:23:40.0187 3484 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:23:40.0188 3484 Apple Mobile Device - ok
18:23:40.0230 3484 [ 70968A726D9DE0F0259D4AEB965FAD61 ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
18:23:40.0234 3484 Application Updater - ok
18:23:40.0244 3484 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:23:40.0245 3484 arc - ok
18:23:40.0258 3484 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:23:40.0259 3484 arcsas - ok
18:23:40.0342 3484 aspnet_state - ok
18:23:40.0381 3484 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:23:40.0382 3484 AsyncMac - ok
18:23:40.0387 3484 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:23:40.0387 3484 atapi - ok
18:23:40.0425 3484 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:23:40.0428 3484 AudioEndpointBuilder - ok
18:23:40.0439 3484 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:23:40.0442 3484 AudioSrv - ok
18:23:40.0456 3484 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
18:23:40.0456 3484 avgtp - ok
18:23:40.0483 3484 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:23:40.0484 3484 AxInstSV - ok
18:23:40.0501 3484 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:23:40.0504 3484 b06bdrv - ok
18:23:40.0514 3484 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:23:40.0516 3484 b57nd60a - ok
18:23:40.0535 3484 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:23:40.0536 3484 BDESVC - ok
18:23:40.0549 3484 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:23:40.0549 3484 Beep - ok
18:23:40.0566 3484 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:23:40.0569 3484 BFE - ok
18:23:40.0643 3484 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:23:40.0648 3484 BITS - ok
18:23:40.0665 3484 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:23:40.0666 3484 blbdrive - ok
18:23:40.0852 3484 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:23:40.0854 3484 Bonjour Service - ok
18:23:40.0923 3484 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:23:40.0923 3484 bowser - ok
18:23:40.0968 3484 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:23:40.0968 3484 BrFiltLo - ok
18:23:40.0993 3484 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:23:40.0994 3484 BrFiltUp - ok
18:23:41.0024 3484 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:23:41.0025 3484 Browser - ok
18:23:41.0229 3484 [ 52C724DAC8ADDC50F593E331A9863979 ] Browser Defender Update Service C:\Program Files (x86)\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
18:23:41.0231 3484 Browser Defender Update Service - ok
18:23:41.0284 3484 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:23:41.0285 3484 Brserid - ok
18:23:41.0315 3484 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:23:41.0315 3484 BrSerWdm - ok
18:23:41.0335 3484 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:23:41.0335 3484 BrUsbMdm - ok
18:23:41.0354 3484 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:23:41.0355 3484 BrUsbSer - ok
18:23:41.0376 3484 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:23:41.0376 3484 BTHMODEM - ok
18:23:41.0404 3484 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:23:41.0405 3484 bthserv - ok
18:23:41.0455 3484 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:23:41.0456 3484 cdfs - ok
18:23:41.0511 3484 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:23:41.0512 3484 cdrom - ok
18:23:41.0541 3484 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:23:41.0541 3484 CertPropSvc - ok
18:23:41.0577 3484 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:23:41.0577 3484 circlass - ok
18:23:41.0595 3484 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:23:41.0596 3484 CLFS - ok
18:23:41.0619 3484 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:23:41.0619 3484 clr_optimization_v2.0.50727_32 - ok
18:23:41.0650 3484 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:23:41.0651 3484 clr_optimization_v2.0.50727_64 - ok
18:23:41.0735 3484 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:23:41.0736 3484 clr_optimization_v4.0.30319_32 - ok
18:23:41.0769 3484 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:23:41.0770 3484 clr_optimization_v4.0.30319_64 - ok
18:23:41.0786 3484 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:23:41.0786 3484 CmBatt - ok
18:23:41.0808 3484 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:23:41.0809 3484 cmdide - ok
18:23:41.0887 3484 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
18:23:41.0889 3484 CNG - ok
18:23:41.0908 3484 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:23:41.0908 3484 Compbatt - ok
18:23:41.0925 3484 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:23:41.0926 3484 CompositeBus - ok
18:23:41.0929 3484 COMSysApp - ok
18:23:41.0965 3484 cpuz135 - ok
18:23:41.0981 3484 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:23:41.0982 3484 crcdisk - ok
18:23:42.0011 3484 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:23:42.0012 3484 CryptSvc - ok
18:23:42.0036 3484 [ 7F61FBE259C18666D8DDF862F13A5EB0 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
18:23:42.0037 3484 dc3d - ok
18:23:42.0071 3484 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:23:42.0075 3484 DcomLaunch - ok
18:23:42.0096 3484 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:23:42.0098 3484 defragsvc - ok
18:23:42.0116 3484 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:23:42.0117 3484 DfsC - ok
18:23:42.0145 3484 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:23:42.0147 3484 Dhcp - ok
18:23:42.0156 3484 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:23:42.0157 3484 discache - ok
18:23:42.0164 3484 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:23:42.0164 3484 Disk - ok
18:23:42.0188 3484 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:23:42.0190 3484 Dnscache - ok
18:23:42.0207 3484 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:23:42.0209 3484 dot3svc - ok
18:23:42.0238 3484 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:23:42.0239 3484 DPS - ok
18:23:42.0281 3484 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:23:42.0282 3484 drmkaud - ok
18:23:42.0360 3484 dump_wmimmc - ok
18:23:42.0425 3484 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:23:42.0429 3484 DXGKrnl - ok
18:23:42.0432 3484 EagleX64 - ok
18:23:42.0449 3484 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:23:42.0450 3484 EapHost - ok
18:23:42.0496 3484 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:23:42.0510 3484 ebdrv - ok
18:23:42.0524 3484 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:23:42.0525 3484 EFS - ok
18:23:42.0557 3484 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:23:42.0561 3484 ehRecvr - ok
18:23:42.0579 3484 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:23:42.0580 3484 ehSched - ok
18:23:42.0605 3484 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:23:42.0607 3484 elxstor - ok
18:23:42.0635 3484 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:23:42.0635 3484 ErrDev - ok
18:23:42.0659 3484 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:23:42.0661 3484 EventSystem - ok
18:23:42.0680 3484 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:23:42.0681 3484 exfat - ok
18:23:42.0696 3484 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:23:42.0697 3484 fastfat - ok
18:23:42.0745 3484 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:23:42.0748 3484 Fax - ok
18:23:42.0757 3484 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:23:42.0758 3484 fdc - ok
18:23:42.0770 3484 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:23:42.0770 3484 fdPHost - ok
18:23:42.0780 3484 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:23:42.0780 3484 FDResPub - ok
18:23:42.0790 3484 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:23:42.0791 3484 FileInfo - ok
18:23:42.0820 3484 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
18:23:42.0821 3484 FileMonitor - ok
18:23:42.0833 3484 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:23:42.0834 3484 Filetrace - ok
18:23:42.0882 3484 [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
18:23:42.0888 3484 FLEXnet Licensing Service 64 - ok
18:23:42.0907 3484 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:23:42.0908 3484 flpydisk - ok
18:23:42.0919 3484 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:23:42.0921 3484 FltMgr - ok
18:23:42.0952 3484 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:23:42.0958 3484 FontCache - ok
18:23:42.0987 3484 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:23:42.0988 3484 FontCache3.0.0.0 - ok
18:23:43.0002 3484 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:23:43.0003 3484 FsDepends - ok
18:23:43.0017 3484 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:23:43.0017 3484 Fs_Rec - ok
18:23:43.0050 3484 [ A33BCF3FAB19DB7D0B501036722F311B ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
18:23:43.0051 3484 Futuremark SystemInfo Service - ok
18:23:43.0067 3484 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:23:43.0068 3484 fvevol - ok
18:23:43.0082 3484 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:23:43.0083 3484 gagp30kx - ok
18:23:43.0099 3484 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:23:43.0099 3484 GEARAspiWDM - ok
18:23:43.0120 3484 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:23:43.0123 3484 gpsvc - ok
18:23:43.0156 3484 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:23:43.0157 3484 gupdate - ok
18:23:43.0163 3484 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:23:43.0164 3484 gupdatem - ok
18:23:43.0185 3484 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:23:43.0186 3484 hamachi - ok
18:23:43.0247 3484 [ 21D24138B736983F6E23823E092E9428 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
18:23:43.0257 3484 Hamachi2Svc - ok
18:23:43.0291 3484 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:23:43.0292 3484 hcw85cir - ok
18:23:43.0324 3484 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:23:43.0326 3484 HdAudAddService - ok
18:23:43.0342 3484 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:23:43.0342 3484 HDAudBus - ok
18:23:43.0355 3484 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:23:43.0355 3484 HidBatt - ok
18:23:43.0371 3484 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:23:43.0372 3484 HidBth - ok
18:23:43.0379 3484 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:23:43.0380 3484 HidIr - ok
18:23:43.0405 3484 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:23:43.0406 3484 hidserv - ok
18:23:43.0416 3484 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:23:43.0417 3484 HidUsb - ok
18:23:43.0474 3484 [ E4EF2B270971648EEBED0EEE39A6D594 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
18:23:43.0475 3484 HiPatchService - ok
18:23:43.0505 3484 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:23:43.0506 3484 hkmsvc - ok
18:23:43.0535 3484 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:23:43.0537 3484 HomeGroupListener - ok
18:23:43.0567 3484 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:23:43.0568 3484 HomeGroupProvider - ok
18:23:43.0579 3484 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:23:43.0580 3484 HpSAMD - ok
18:23:43.0617 3484 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:23:43.0621 3484 HTTP - ok
18:23:43.0644 3484 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:23:43.0645 3484 hwpolicy - ok
18:23:43.0655 3484 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:23:43.0656 3484 i8042prt - ok
18:23:43.0677 3484 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:23:43.0679 3484 iaStorV - ok
18:23:43.0716 3484 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:23:43.0720 3484 idsvc - ok
18:23:43.0897 3484 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:23:43.0947 3484 igfx - ok
18:23:43.0989 3484 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:23:43.0989 3484 iirsp - ok
18:23:44.0011 3484 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:23:44.0015 3484 IKEEXT - ok
18:23:44.0075 3484 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
18:23:44.0079 3484 IMFservice - ok
18:23:44.0103 3484 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
18:23:44.0104 3484 IntcDAud - ok
18:23:44.0114 3484 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:23:44.0114 3484 intelide - ok
18:23:44.0130 3484 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:23:44.0131 3484 intelppm - ok
18:23:44.0154 3484 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:23:44.0155 3484 IPBusEnum - ok
18:23:44.0164 3484 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:23:44.0165 3484 IpFilterDriver - ok
18:23:44.0192 3484 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:23:44.0195 3484 iphlpsvc - ok
18:23:44.0212 3484 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:23:44.0213 3484 IPMIDRV - ok
18:23:44.0228 3484 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:23:44.0229 3484 IPNAT - ok
18:23:44.0267 3484 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:23:44.0272 3484 iPod Service - ok
18:23:44.0286 3484 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:23:44.0287 3484 IRENUM - ok
18:23:44.0295 3484 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:23:44.0296 3484 isapnp - ok
18:23:44.0314 3484 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:23:44.0316 3484 iScsiPrt - ok
18:23:44.0330 3484 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:23:44.0331 3484 kbdclass - ok
18:23:44.0343 3484 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:23:44.0343 3484 kbdhid - ok
18:23:44.0355 3484 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:23:44.0356 3484 KeyIso - ok
18:23:44.0403 3484 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:23:44.0404 3484 KSecDD - ok
18:23:44.0432 3484 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:23:44.0433 3484 KSecPkg - ok
18:23:44.0436 3484 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:23:44.0437 3484 ksthunk - ok
18:23:44.0457 3484 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:23:44.0459 3484 KtmRm - ok
18:23:44.0479 3484 [ A4A9CA24E54E81C6C3E469EAEB4B3F42 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
18:23:44.0480 3484 L1C - ok
18:23:44.0512 3484 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:23:44.0514 3484 LanmanServer - ok
18:23:44.0527 3484 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:23:44.0529 3484 LanmanWorkstation - ok
18:23:44.0537 3484 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:23:44.0538 3484 lltdio - ok
18:23:44.0550 3484 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:23:44.0552 3484 lltdsvc - ok
18:23:44.0563 3484 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:23:44.0564 3484 lmhosts - ok
18:23:44.0592 3484 [ 98B16E756243BEA9410E32025B19C06F ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:23:44.0594 3484 LMS - ok
18:23:44.0610 3484 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:23:44.0611 3484 LSI_FC - ok
18:23:44.0626 3484 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:23:44.0627 3484 LSI_SAS - ok
18:23:44.0642 3484 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:23:44.0643 3484 LSI_SAS2 - ok
18:23:44.0654 3484 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:23:44.0655 3484 LSI_SCSI - ok
18:23:44.0668 3484 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:23:44.0669 3484 luafv - ok
18:23:44.0697 3484 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:23:44.0698 3484 LVRS64 - ok
18:23:44.0791 3484 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
18:23:44.0811 3484 LVUVC64 - ok
18:23:44.0836 3484 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
18:23:44.0837 3484 MBAMProtector - ok
18:23:44.0907 3484 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:23:44.0909 3484 MBAMScheduler - ok
18:23:44.0926 3484 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:23:44.0930 3484 MBAMService - ok
18:23:44.0952 3484 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:23:44.0953 3484 Mcx2Svc - ok
18:23:44.0959 3484 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:23:44.0960 3484 megasas - ok
18:23:44.0975 3484 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:23:44.0977 3484 MegaSR - ok
18:23:44.0988 3484 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:23:44.0988 3484 MEIx64 - ok
18:23:45.0028 3484 Microsoft SharePoint Workspace Audit Service - ok
18:23:45.0086 3484 [ 29731E3F45A70312E82A72EA96483171 ] mitsijm2012 C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
18:23:45.0090 3484 mitsijm2012 - ok
18:23:45.0107 3484 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:23:45.0108 3484 MMCSS - ok
18:23:45.0120 3484 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:23:45.0120 3484 Modem - ok
18:23:45.0150 3484 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:23:45.0151 3484 monitor - ok
18:23:45.0162 3484 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:23:45.0162 3484 mouclass - ok
18:23:45.0176 3484 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:23:45.0176 3484 mouhid - ok
18:23:45.0193 3484 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:23:45.0194 3484 mountmgr - ok
18:23:45.0216 3484 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
18:23:45.0218 3484 MpFilter - ok
18:23:45.0244 3484 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:23:45.0245 3484 mpio - ok
18:23:45.0261 3484 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:23:45.0262 3484 mpsdrv - ok
18:23:45.0294 3484 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:23:45.0298 3484 MpsSvc - ok
18:23:45.0323 3484 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:23:45.0324 3484 MRxDAV - ok
18:23:45.0328 3484 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:23:45.0329 3484 mrxsmb - ok
18:23:45.0363 3484 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:23:45.0364 3484 mrxsmb10 - ok
18:23:45.0380 3484 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:23:45.0381 3484 mrxsmb20 - ok
18:23:45.0395 3484 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
18:23:45.0396 3484 msahci - ok
18:23:45.0410 3484 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:23:45.0411 3484 msdsm - ok
18:23:45.0424 3484 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:23:45.0425 3484 MSDTC - ok
18:23:45.0438 3484 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:23:45.0439 3484 Msfs - ok
18:23:45.0444 3484 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:23:45.0444 3484 mshidkmdf - ok
18:23:45.0454 3484 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:23:45.0454 3484 msisadrv - ok
18:23:45.0478 3484 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:23:45.0479 3484 MSiSCSI - ok
18:23:45.0485 3484 msiserver - ok
18:23:45.0492 3484 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:23:45.0492 3484 MSKSSRV - ok
18:23:45.0558 3484 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:23:45.0559 3484 MsMpSvc - ok
18:23:45.0565 3484 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:23:45.0566 3484 MSPCLOCK - ok
18:23:45.0573 3484 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:23:45.0573 3484 MSPQM - ok
18:23:45.0734 3484 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:23:45.0735 3484 MsRPC - ok
18:23:45.0745 3484 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:23:45.0746 3484 mssmbios - ok
18:23:45.0757 3484 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:23:45.0757 3484 MSTEE - ok
18:23:45.0769 3484 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:23:45.0770 3484 MTConfig - ok
18:23:45.0794 3484 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:23:45.0795 3484 Mup - ok
18:23:45.0840 3484 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:23:45.0844 3484 napagent - ok
18:23:45.0862 3484 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:23:45.0864 3484 NativeWifiP - ok
18:23:45.0895 3484 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:23:45.0899 3484 NDIS - ok
18:23:45.0911 3484 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:23:45.0912 3484 NdisCap - ok
18:23:45.0924 3484 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:23:45.0925 3484 NdisTapi - ok
18:23:45.0964 3484 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:23:45.0965 3484 Ndisuio - ok
18:23:45.0998 3484 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:23:45.0999 3484 NdisWan - ok
18:23:46.0013 3484 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:23:46.0014 3484 NDProxy - ok
18:23:46.0038 3484 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:23:46.0039 3484 NetBIOS - ok
18:23:46.0074 3484 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:23:46.0075 3484 NetBT - ok
18:23:46.0082 3484 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:23:46.0083 3484 Netlogon - ok
18:23:46.0124 3484 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:23:46.0126 3484 Netman - ok
18:23:46.0159 3484 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:46.0160 3484 NetMsmqActivator - ok
18:23:46.0172 3484 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:46.0173 3484 NetPipeActivator - ok
18:23:46.0200 3484 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:23:46.0203 3484 netprofm - ok
18:23:46.0239 3484 [ E005682AE8F8EC4EB05F2A70A16EA1C5 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
18:23:46.0244 3484 netr28ux - ok
18:23:46.0247 3484 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:46.0248 3484 NetTcpActivator - ok
18:23:46.0254 3484 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:23:46.0254 3484 NetTcpPortSharing - ok
18:23:46.0262 3484 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:23:46.0263 3484 nfrd960 - ok
18:23:46.0298 3484 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:23:46.0299 3484 NisDrv - ok
18:23:46.0374 3484 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
18:23:46.0376 3484 NisSrv - ok
18:23:46.0520 3484 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:23:46.0522 3484 NlaSvc - ok
18:23:46.0616 3484 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:23:46.0617 3484 Npfs - ok
18:23:46.0622 3484 npggsvc - ok
18:23:46.0625 3484 NPPTNT2 - ok
18:23:46.0734 3484 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:23:46.0735 3484 nsi - ok
18:23:46.0793 3484 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:23:46.0793 3484 nsiproxy - ok
18:23:47.0291 3484 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:23:47.0299 3484 Ntfs - ok
18:23:47.0313 3484 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:23:47.0313 3484 Null - ok
18:23:47.0333 3484 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:23:47.0335 3484 NVHDA - ok
18:23:47.0914 3484 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:23:47.0972 3484 nvlddmkm - ok
18:23:48.0019 3484 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:23:48.0020 3484 nvraid - ok
18:23:48.0035 3484 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:23:48.0036 3484 nvstor - ok
18:23:48.0181 3484 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] NVSvc C:\Windows\system32\nvvsvc.exe
18:23:48.0185 3484 NVSvc - ok
18:23:48.0397 3484 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:23:48.0402 3484 nvUpdatusService - ok
18:23:48.0434 3484 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:23:48.0434 3484 nv_agp - ok
18:23:48.0461 3484 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:23:48.0462 3484 ohci1394 - ok
18:23:48.0511 3484 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:23:48.0512 3484 ose64 - ok
18:23:49.0098 3484 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:23:49.0120 3484 osppsvc - ok
18:23:49.0276 3484 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:23:49.0279 3484 p2pimsvc - ok
18:23:49.0414 3484 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:23:49.0416 3484 p2psvc - ok
18:23:49.0485 3484 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:23:49.0485 3484 Parport - ok
18:23:49.0545 3484 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:23:49.0546 3484 partmgr - ok
18:23:49.0599 3484 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:23:49.0601 3484 PcaSvc - ok
18:23:49.0704 3484 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:23:49.0705 3484 pci - ok
18:23:49.0779 3484 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:23:49.0779 3484 pciide - ok
18:23:49.0886 3484 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:23:49.0888 3484 pcmcia - ok
18:23:49.0990 3484 [ 51019118F4715E6DA58B3372246C281A ] PCTBD C:\Windows\system32\Drivers\PCTBD64.sys
18:23:49.0991 3484 PCTBD - ok
18:23:50.0303 3484 [ 0012046DEE36BF3D241F027B4417B433 ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
18:23:50.0305 3484 PCTCore - ok
18:23:50.0664 3484 [ BA1F42A42F405F62CEFF6B69A2797F7C ] pctDS C:\Windows\system32\drivers\pctDS64.sys
18:23:50.0666 3484 pctDS - ok
18:23:50.0838 3484 [ E5F6DA5B178028A750C5B8D7B09B3383 ] pctgntdi C:\Windows\System32\drivers\pctgntdi64.sys
18:23:50.0839 3484 pctgntdi - ok
18:23:50.0895 3484 [ F9FC1B700D16ED0AE96A36A758E18F31 ] pctplsm C:\Windows\System32\drivers\pctplsm64.sys
18:23:50.0896 3484 pctplsm - ok
18:23:50.0953 3484 [ DB2BA2D9585101947C5A60D785A63491 ] PCTSD C:\Windows\system32\Drivers\PCTSD64.sys
18:23:50.0955 3484 PCTSD - ok
18:23:51.0052 3484 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:23:51.0053 3484 pcw - ok
18:23:51.0294 3484 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:23:51.0297 3484 PEAUTH - ok
18:23:52.0972 3484 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:23:52.0973 3484 PerfHost - ok
18:23:53.0459 3484 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:23:53.0466 3484 pla - ok
18:23:53.0557 3484 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:23:53.0560 3484 PlugPlay - ok
18:23:53.0563 3484 PnkBstrA - ok
18:23:53.0598 3484 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:23:53.0599 3484 PNRPAutoReg - ok
18:23:53.0663 3484 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:23:53.0665 3484 PNRPsvc - ok
18:23:53.0703 3484 [ 33328FA8A580885AB0065BE6DB266E9F ] Point64 C:\Windows\system32\DRIVERS\point64.sys
18:23:53.0704 3484 Point64 - ok
18:23:53.0814 3484 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:23:53.0816 3484 PolicyAgent - ok
18:23:53.0885 3484 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:23:53.0887 3484 Power - ok
18:23:53.0918 3484 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:23:53.0919 3484 PptpMiniport - ok
18:23:53.0948 3484 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:23:53.0949 3484 Processor - ok
18:23:54.0024 3484 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:23:54.0026 3484 ProfSvc - ok
18:23:54.0038 3484 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:23:54.0039 3484 ProtectedStorage - ok
18:23:54.0122 3484 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:23:54.0123 3484 Psched - ok
18:23:54.0209 3484 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:23:54.0217 3484 ql2300 - ok
18:23:54.0239 3484 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:23:54.0240 3484 ql40xx - ok
18:23:54.0311 3484 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:23:54.0315 3484 QWAVE - ok
18:23:54.0396 3484 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:23:54.0397 3484 QWAVEdrv - ok
18:23:54.0416 3484 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:23:54.0416 3484 RasAcd - ok
18:23:54.0450 3484 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:23:54.0451 3484 RasAgileVpn - ok
18:23:54.0480 3484 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:23:54.0482 3484 RasAuto - ok
18:23:54.0515 3484 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:23:54.0516 3484 Rasl2tp - ok
18:23:54.0559 3484 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:23:54.0562 3484 RasMan - ok
18:23:54.0582 3484 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:23:54.0583 3484 RasPppoe - ok
18:23:54.0599 3484 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:23:54.0600 3484 RasSstp - ok
18:23:54.0648 3484 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:23:54.0650 3484 rdbss - ok
18:23:54.0667 3484 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:23:54.0667 3484 rdpbus - ok
18:23:54.0684 3484 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:23:54.0684 3484 RDPCDD - ok
18:23:54.0698 3484 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:23:54.0699 3484 RDPENCDD - ok
18:23:54.0723 3484 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:23:54.0724 3484 RDPREFMP - ok
18:23:54.0753 3484 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:23:54.0754 3484 RDPWD - ok
18:23:54.0802 3484 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:23:54.0803 3484 rdyboost - ok
18:23:54.0877 3484 [ 5F9AC3243C206EC95F32E4348AE67C13 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
18:23:54.0877 3484 RegFilter - ok
18:23:54.0915 3484 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:23:54.0916 3484 RemoteAccess - ok
18:23:54.0941 3484 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:23:54.0943 3484 RemoteRegistry - ok
18:23:54.0957 3484 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:23:54.0958 3484 RpcEptMapper - ok
18:23:54.0999 3484 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:23:55.0000 3484 RpcLocator - ok
18:23:55.0033 3484 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:23:55.0037 3484 RpcSs - ok
18:23:55.0076 3484 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:23:55.0077 3484 rspndr - ok
18:23:55.0120 3484 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:23:55.0121 3484 SamSs - ok
18:23:55.0177 3484 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:23:55.0178 3484 sbp2port - ok
18:23:55.0212 3484 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:23:55.0214 3484 SCardSvr - ok
18:23:55.0342 3484 [ 3AC948640421E3891A49AA83C6B77B7A ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
18:23:55.0343 3484 SCDEmu - ok
18:23:55.0421 3484 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:23:55.0422 3484 scfilter - ok
18:23:55.0469 3484 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:23:55.0475 3484 Schedule - ok
18:23:55.0493 3484 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:23:55.0494 3484 SCPolicySvc - ok
18:23:55.0623 3484 [ AE88672774DF12BEDF76768E52D23424 ] sdAuxService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe
18:23:55.0625 3484 sdAuxService - ok
18:23:55.0703 3484 [ 5FC31ADB3B47E00349B92E57117D2C07 ] sdCoreService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsSvc.exe
18:23:55.0708 3484 sdCoreService - ok
18:23:55.0776 3484 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:23:55.0778 3484 SDRSVC - ok
18:23:55.0824 3484 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:23:55.0825 3484 secdrv - ok
18:23:55.0859 3484 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:23:55.0860 3484 seclogon - ok
18:23:55.0885 3484 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:23:55.0887 3484 SENS - ok
18:23:55.0924 3484 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:23:55.0926 3484 SensrSvc - ok
18:23:55.0946 3484 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:23:55.0947 3484 Serenum - ok
18:23:55.0979 3484 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:23:55.0980 3484 Serial - ok
18:23:56.0018 3484 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:23:56.0019 3484 sermouse - ok
18:23:56.0148 3484 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:23:56.0150 3484 SessionEnv - ok
18:23:56.0168 3484 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:23:56.0169 3484 sffdisk - ok
18:23:56.0215 3484 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:23:56.0216 3484 sffp_mmc - ok
18:23:56.0249 3484 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:23:56.0249 3484 sffp_sd - ok
18:23:56.0292 3484 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:23:56.0293 3484 sfloppy - ok
18:23:56.0436 3484 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:23:56.0438 3484 SharedAccess - ok
18:23:56.0530 3484 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:23:56.0533 3484 ShellHWDetection - ok
18:23:56.0592 3484 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:23:56.0593 3484 SiSRaid2 - ok
18:23:56.0612 3484 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:23:56.0613 3484 SiSRaid4 - ok
18:23:56.0825 3484 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:23:56.0826 3484 SkypeUpdate - ok
18:23:56.0909 3484 [ 94CE7845AF6A2065B829E0126CD56236 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
18:23:56.0910 3484 SmartDefragDriver - ok
18:23:57.0004 3484 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:23:57.0005 3484 Smb - ok
18:23:57.0250 3484 [ 10450F432811D7FDA60A97FCC674D7B2 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
18:23:57.0252 3484 snapman - ok
18:23:57.0351 3484 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:23:57.0352 3484 SNMPTRAP - ok
18:23:57.0364 3484 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:23:57.0365 3484 spldr - ok
18:23:57.0567 3484 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:23:57.0571 3484 Spooler - ok
18:23:58.0295 3484 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:23:58.0311 3484 sppsvc - ok
18:23:58.0350 3484 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:23:58.0352 3484 sppuinotify - ok
18:23:58.0474 3484 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:23:58.0476 3484 srv - ok
18:23:58.0567 3484 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:23:58.0569 3484 srv2 - ok
18:23:58.0647 3484 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:23:58.0648 3484 srvnet - ok
18:23:58.0706 3484 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:23:58.0708 3484 SSDPSRV - ok
18:23:58.0749 3484 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:23:58.0750 3484 SstpSvc - ok
18:23:58.0843 3484 Steam Client Service - ok
18:23:59.0065 3484 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:23:59.0067 3484 Stereo Service - ok
18:23:59.0108 3484 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:23:59.0109 3484 stexstor - ok
18:23:59.0250 3484 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:23:59.0254 3484 stisvc - ok
18:23:59.0338 3484 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:23:59.0338 3484 swenum - ok
18:23:59.0424 3484 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:23:59.0427 3484 swprv - ok
18:23:59.0709 3484 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:23:59.0717 3484 SysMain - ok
18:23:59.0803 3484 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:23:59.0805 3484 TabletInputService - ok
18:23:59.0906 3484 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:23:59.0909 3484 TapiSrv - ok
18:23:59.0934 3484 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:23:59.0936 3484 TBS - ok
18:24:00.0125 3484 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:24:00.0133 3484 Tcpip - ok
18:24:00.0250 3484 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:24:00.0258 3484 TCPIP6 - ok
18:24:00.0277 3484 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:24:00.0278 3484 tcpipreg - ok
18:24:00.0347 3484 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:24:00.0348 3484 TDPIPE - ok
18:24:00.0385 3484 [ 99527D49EE0A96FC25537C61B270A372 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys
18:24:00.0391 3484 tdrpman273 - ok
18:24:00.0429 3484 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:24:00.0430 3484 TDTCP - ok
18:24:00.0459 3484 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:24:00.0460 3484 tdx - ok
18:24:00.0515 3484 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:24:00.0516 3484 TermDD - ok
18:24:00.0627 3484 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:24:00.0631 3484 TermService - ok
18:24:00.0644 3484 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:24:00.0646 3484 Themes - ok
18:24:00.0699 3484 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:24:00.0701 3484 THREADORDER - ok
18:24:00.0770 3484 [ EBBAEA02F0095A798000C7E06B16D41B ] timounter C:\Windows\system32\DRIVERS\timntr.sys
18:24:00.0774 3484 timounter - ok
18:24:00.0793 3484 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:24:00.0795 3484 TrkWks - ok
18:24:00.0866 3484 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:24:00.0867 3484 TrustedInstaller - ok
18:24:00.0885 3484 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:24:00.0886 3484 tssecsrv - ok
18:24:00.0905 3484 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:24:00.0906 3484 TsUsbFlt - ok
18:24:01.0124 3484 [ 535A376629A37E03F993D769490E8EED ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
18:24:01.0133 3484 TuneUp.UtilitiesSvc - ok
18:24:01.0186 3484 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
18:24:01.0187 3484 TuneUpUtilitiesDrv - ok
18:24:01.0212 3484 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:24:01.0214 3484 tunnel - ok
18:24:01.0234 3484 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:24:01.0235 3484 uagp35 - ok
18:24:01.0293 3484 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:24:01.0295 3484 udfs - ok
18:24:01.0321 3484 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:24:01.0322 3484 UI0Detect - ok
18:24:01.0343 3484 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:24:01.0344 3484 uliagpkx - ok
18:24:01.0410 3484 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:24:01.0411 3484 umbus - ok
18:24:01.0458 3484 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:24:01.0459 3484 UmPass - ok
18:24:01.0696 3484 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
18:24:01.0698 3484 UMVPFSrv - ok
18:24:02.0330 3484 [ 7A78ED1088890114DFDE2C4AB038D6B6 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:24:02.0341 3484 UNS - ok
18:24:02.0408 3484 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:24:02.0411 3484 upnphost - ok
18:24:02.0436 3484 [ 241080F1B28E68F0D00F8F1066A3780D ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
18:24:02.0437 3484 UrlFilter - ok
18:24:02.0459 3484 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
18:24:02.0459 3484 USBAAPL64 - ok
18:24:02.0549 3484 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:24:02.0550 3484 usbaudio - ok
18:24:02.0606 3484 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:24:02.0606 3484 usbccgp - ok
18:24:02.0829 3484 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:24:02.0830 3484 usbcir - ok
18:24:02.0875 3484 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:24:02.0875 3484 usbehci - ok
18:24:02.0915 3484 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:24:02.0917 3484 usbhub - ok
18:24:02.0974 3484 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:24:02.0975 3484 usbohci - ok
18:24:03.0011 3484 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:24:03.0012 3484 usbprint - ok
18:24:03.0058 3484 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:24:03.0059 3484 usbscan - ok
18:24:03.0179 3484 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:24:03.0180 3484 USBSTOR - ok
18:24:03.0241 3484 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:24:03.0242 3484 usbuhci - ok
18:24:03.0342 3484 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:24:03.0343 3484 usbvideo - ok
18:24:03.0416 3484 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:24:03.0418 3484 UxSms - ok
18:24:03.0494 3484 [ 6F10C7FF1F1E3F45D7E20DD6E398682E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
18:24:03.0496 3484 UxTuneUp - ok
18:24:03.0522 3484 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:24:03.0523 3484 VaultSvc - ok
18:24:03.0546 3484 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:24:03.0547 3484 vdrvroot - ok
18:24:03.0656 3484 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:24:03.0660 3484 vds - ok
18:24:03.0703 3484 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:24:03.0703 3484 vga - ok
18:24:03.0745 3484 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:24:03.0746 3484 VgaSave - ok
18:24:03.0773 3484 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:24:03.0774 3484 vhdmp - ok
18:24:03.0917 3484 [ D928C90CC759499E916B8FB5B8F32DDC ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:24:03.0926 3484 VIAHdAudAddService - ok
18:24:03.0960 3484 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:24:03.0960 3484 viaide - ok
18:24:03.0982 3484 [ 224153C26FABE55CD6D751BFDF94FD3B ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
18:24:03.0984 3484 VIAKaraokeService - ok
18:24:04.0005 3484 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:24:04.0005 3484 volmgr - ok
18:24:04.0241 3484 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:24:04.0243 3484 volmgrx - ok
18:24:04.0279 3484 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:24:04.0280 3484 volsnap - ok
18:24:04.0325 3484 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:24:04.0327 3484 vsmraid - ok
18:24:04.0437 3484 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:24:04.0446 3484 VSS - ok
18:24:04.0559 3484 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
18:24:04.0562 3484 vToolbarUpdater13.2.0 - ok
18:24:04.0581 3484 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:24:04.0583 3484 vwifibus - ok
18:24:04.0610 3484 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:24:04.0611 3484 vwififlt - ok
18:24:04.0655 3484 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:24:04.0658 3484 W32Time - ok
18:24:04.0687 3484 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:24:04.0688 3484 WacomPen - ok
18:24:04.0740 3484 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:24:04.0740 3484 WANARP - ok
18:24:04.0752 3484 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:24:04.0753 3484 Wanarpv6 - ok
18:24:04.0867 3484 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:24:04.0873 3484 WatAdminSvc - ok
18:24:05.0030 3484 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:24:05.0041 3484 wbengine - ok
18:24:05.0108 3484 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:24:05.0110 3484 WbioSrvc - ok
18:24:05.0496 3484 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:24:05.0499 3484 wcncsvc - ok
18:24:05.0586 3484 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:24:05.0588 3484 WcsPlugInService - ok
18:24:05.0628 3484 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:24:05.0629 3484 Wd - ok
18:24:05.0696 3484 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:24:05.0700 3484 Wdf01000 - ok
18:24:05.0717 3484 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:24:05.0719 3484 WdiServiceHost - ok
18:24:05.0731 3484 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:24:05.0733 3484 WdiSystemHost - ok
18:24:05.0790 3484 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:24:05.0792 3484 WebClient - ok
18:24:05.0819 3484 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:24:05.0821 3484 Wecsvc - ok
18:24:05.0973 3484 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:24:05.0975 3484 wercplsupport - ok
18:24:05.0994 3484 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:24:05.0998 3484 WerSvc - ok
18:24:06.0043 3484 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:24:06.0044 3484 WfpLwf - ok
18:24:06.0051 3484 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:24:06.0052 3484 WIMMount - ok
18:24:06.0064 3484 WinDefend - ok
18:24:06.0075 3484 WinHttpAutoProxySvc - ok
18:24:06.0160 3484 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:24:06.0161 3484 Winmgmt - ok
18:24:06.0234 3484 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:24:06.0244 3484 WinRM - ok
18:24:06.0293 3484 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:24:06.0294 3484 WinUsb - ok
18:24:06.0364 3484 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:24:06.0369 3484 Wlansvc - ok
18:24:06.0852 3484 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:24:06.0861 3484 wlidsvc - ok
18:24:06.0898 3484 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:24:06.0899 3484 WmiAcpi - ok
18:24:06.0941 3484 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:24:06.0943 3484 wmiApSrv - ok
18:24:06.0987 3484 WMPNetworkSvc - ok
18:24:07.0015 3484 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:24:07.0016 3484 WPCSvc - ok
18:24:07.0052 3484 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:24:07.0054 3484 WPDBusEnum - ok
18:24:07.0084 3484 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:24:07.0085 3484 ws2ifsl - ok
18:24:07.0118 3484 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:24:07.0120 3484 wscsvc - ok
18:24:07.0123 3484 WSearch - ok
18:24:07.0315 3484 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:24:07.0328 3484 wuauserv - ok
18:24:07.0359 3484 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:24:07.0360 3484 WudfPf - ok
18:24:07.0388 3484 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:24:07.0389 3484 WUDFRd - ok
18:24:07.0433 3484 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:24:07.0435 3484 wudfsvc - ok
18:24:07.0468 3484 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:24:07.0470 3484 WwanSvc - ok
18:24:07.0514 3484 ================ Scan global ===============================
18:24:07.0560 3484 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:24:07.0610 3484 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
18:24:07.0625 3484 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
18:24:07.0687 3484 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:24:07.0788 3484 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:24:07.0791 3484 [Global] - ok
18:24:07.0791 3484 ================ Scan MBR ==================================
18:24:07.0803 3484 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:24:12.0364 3484 \Device\Harddisk0\DR0 - ok
18:24:12.0366 3484 ================ Scan VBR ==================================
18:24:12.0405 3484 [ E2129EA126E5CA24311BCECB72085690 ] \Device\Harddisk0\DR0\Partition1
18:24:12.0424 3484 \Device\Harddisk0\DR0\Partition1 - ok
18:24:12.0425 3484 ============================================================
18:24:12.0426 3484 Scan finished
18:24:12.0426 3484 ============================================================
18:24:12.0432 5508 Detected object count: 0
18:24:12.0432 5508 Actual detected object count: 0

#7 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 30 November 2012 - 06:30 PM

I'm scanning with the ESET Online Scanner right now, it might take a little time because I'm guessing that its scanning my whole computer?
Also I'm not sure if this is relevant but I am noticing that in task manager something called wermgr.exe( Windows Problem Reporting) and rundll32.exe ( Windows Host Process) keeps popping up, they stack up to 3 times.

#8 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 30 November 2012 - 11:27 PM

I want to thank the people that helped me! After all the scans and new anti malware programs that you guys recommended, I THINK the virus is gone. I'm not 100% sure if that it the truth, but MSE and Malwarebytes says everything is clean. I also have not had a crash yet. Again thank you for the help!

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 01 December 2012 - 07:35 AM

I'm still waiting for your ESET log.You are still infected

good luck

#10 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 01 December 2012 - 05:27 PM

I'm still waiting for your ESET log.You are still infected

good luck

I scanned with it and it cleaned all the infections, I do want to post the log but where is it located?

#11 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 01 December 2012 - 05:33 PM

I'm still waiting for your ESET log.You are still infected

good luck

I think I found it :
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=6375cdad44167b4799eb167deae50e30
# end=stopped
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-11-30 11:17:42
# local_time=2012-11-30 06:17:42 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=2560 16777215 100 0 0 0 0 0
# compatibility_mode=5893 16776574 100 94 45032772 105860504 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=10668
# found=0
# cleaned=0
# scan_time=409
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=6375cdad44167b4799eb167deae50e30
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-12-01 03:58:21
# local_time=2012-11-30 10:58:21 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=2560 16777215 100 0 0 0 0 0
# compatibility_mode=5893 16776574 100 94 45033743 105861475 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=524637
# found=33
# cleaned=33
# scan_time=16276
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.10 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.11 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.12 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.13 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.14 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.15 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.16 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.17 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.6 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.7 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.8 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.9 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\IObit Toolbar\IE\6.5\iobitToolbarIE.dll a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\Koyote Soft Toolbar\IE\6.5\koyotesoftToolbarIE.dll a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Program Files (x86)\YTD Toolbar\IE\6.5\ytdToolbarIE.dll a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\ProgramData\Microsoft\Windows\DRM\A326.tmp Win64/Olmarik.AO trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\ProgramData\Microsoft\Windows\DRM\A327.tmp Win64/Olmarik.AO trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\TDSSKiller_Quarantine\30.11.2012_18.11.57\mbr0000\tdlfs0000\tsk0001.dta a variant of Win64/Olmarik.AM trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\TDSSKiller_Quarantine\30.11.2012_18.11.57\mbr0000\tdlfs0000\tsk0002.dta a variant of Win32/Rootkit.Kryptik.QM trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\TDSSKiller_Quarantine\30.11.2012_18.11.57\tdlfs0000\tsk0001.dta a variant of Win64/Olmarik.AM trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\TDSSKiller_Quarantine\30.11.2012_18.11.57\tdlfs0000\tsk0002.dta a variant of Win32/Rootkit.Kryptik.QM trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\ac3filter.exe a variant of Win32/InstallIQ application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\Borderlands 2-SKIDROW_secure.exe Win32/TopMedia.A application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\cnet_Pazera_Free_FLV_to_AVI_Converter_zip.exe a variant of Win32/InstallCore.D application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\cnet_Setup_FreeVideoConverter_exe.exe a variant of Win32/InstallCore.D application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\cnet_youtube_video_downloader_setup_exe.exe a variant of Win32/InstallCore.D application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\gamebooster.exe a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\gb3-setup (1).exe a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\gb3-setup.exe a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\User\Downloads\YouTubeDownloaderSetup33.exe a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
ESETSmartInstaller@High as downloader log:
all ok

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 01 December 2012 - 05:42 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

Edited by narenxp, 01 December 2012 - 05:42 PM.


#13 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 01 December 2012 - 06:05 PM

Adwcleaner
# AdwCleaner v2.010 - Logfile created 12/01/2012 at 18:00:48
# Updated 29/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : User - CCAPC00061
# Boot Mode : Normal
# Running from : C:\Users\User\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Application Updater

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Windows\SysWOW64\conduitEngine.tmp
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\BitTorrentBar
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\ConduitEngine
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\WeCareReminder
Folder Deleted : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\BitTorrentBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\BitTorrentBar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31C2C4F6-E284-4B8F-B6C1-3FD591C57F62}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513AD827-C884-4388-8D23-33DEC8FA2A0A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{72236A28-EAC9-4BE7-BFF2-BCA53571F950}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxps://isearch.avg.com/?cid={7442273D-78A3-4F35-8C67-710245619144}&mid=0e80993f1fa547d1ab59d16c64455718-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=tt014&pr=sa&d=2011-12-18 12:36:55&v=12.2.5.32&sap=hp --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://isearch.avg.com/tab?cid={7442273D-78A3-4F35-8C67-710245619144}&mid=0e80993f1fa547d1ab59d16c64455718-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=tt014&pr=sa&d=2011-12-18 12:36:55&v=9.0.0.22&sap=nt --> hxxp://www.google.com

-\\ Mozilla Firefox v8.0.1 (en-US)

-\\ Google Chrome v23.0.1271.95

*************************

AdwCleaner[S1].txt - [11230 octets] - [01/12/2012 18:00:48]

########## EOF - C:\AdwCleaner[S1].txt - [11291 octets] ##########

FCC
# AdwCleaner v2.010 - Logfile created 12/01/2012 at 18:00:48
# Updated 29/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : User - CCAPC00061
# Boot Mode : Normal
# Running from : C:\Users\User\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Application Updater

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Windows\SysWOW64\conduitEngine.tmp
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\BitTorrentBar
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\ConduitEngine
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\WeCareReminder
Folder Deleted : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\BitTorrentBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\BitTorrentBar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31C2C4F6-E284-4B8F-B6C1-3FD591C57F62}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513AD827-C884-4388-8D23-33DEC8FA2A0A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{72236A28-EAC9-4BE7-BFF2-BCA53571F950}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxps://isearch.avg.com/?cid={7442273D-78A3-4F35-8C67-710245619144}&mid=0e80993f1fa547d1ab59d16c64455718-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=tt014&pr=sa&d=2011-12-18 12:36:55&v=12.2.5.32&sap=hp --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://isearch.avg.com/tab?cid={7442273D-78A3-4F35-8C67-710245619144}&mid=0e80993f1fa547d1ab59d16c64455718-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=tt014&pr=sa&d=2011-12-18 12:36:55&v=9.0.0.22&sap=nt --> hxxp://www.google.com

-\\ Mozilla Firefox v8.0.1 (en-US)

-\\ Google Chrome v23.0.1271.95

*************************

AdwCleaner[S1].txt - [11230 octets] - [01/12/2012 18:00:48]

########## EOF - C:\AdwCleaner[S1].txt - [11291 octets] ##########

MiniToolBox
# AdwCleaner v2.010 - Logfile created 12/01/2012 at 18:00:48
# Updated 29/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : User - CCAPC00061
# Boot Mode : Normal
# Running from : C:\Users\User\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Application Updater

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Windows\SysWOW64\conduitEngine.tmp
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\BitTorrentBar
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\ConduitEngine
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\WeCareReminder
Folder Deleted : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\BitTorrentBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\BitTorrentBar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31C2C4F6-E284-4B8F-B6C1-3FD591C57F62}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513AD827-C884-4388-8D23-33DEC8FA2A0A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{72236A28-EAC9-4BE7-BFF2-BCA53571F950}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxps://isearch.avg.com/?cid={7442273D-78A3-4F35-8C67-710245619144}&mid=0e80993f1fa547d1ab59d16c64455718-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=tt014&pr=sa&d=2011-12-18 12:36:55&v=12.2.5.32&sap=hp --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://isearch.avg.com/tab?cid={7442273D-78A3-4F35-8C67-710245619144}&mid=0e80993f1fa547d1ab59d16c64455718-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=tt014&pr=sa&d=2011-12-18 12:36:55&v=9.0.0.22&sap=nt --> hxxp://www.google.com

-\\ Mozilla Firefox v8.0.1 (en-US)

-\\ Google Chrome v23.0.1271.95

*************************

AdwCleaner[S1].txt - [11230 octets] - [01/12/2012 18:00:48]

########## EOF - C:\AdwCleaner[S1].txt - [11291 octets] ##########

#14 sourguy

sourguy
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:38 PM

Posted 01 December 2012 - 06:08 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.


Google Chrome says that Junkcleaner might be malicious and is asking me to discard the download. Also a Malware Bytes full scan log will take at least 5 hours because of so many files.

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 01 December 2012 - 06:15 PM

Use a different browser to download junkware tool




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users