Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I think I am Infected with Easylifeapp


  • Please log in to reply
12 replies to this topic

#1 SomersetGuy

SomersetGuy

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:03:21 PM

Posted 11 June 2013 - 01:23 PM

Hi I don't know how I managed to get infected but need some help cleaning up my Windows 7 Home Premium 64 bit machine.

I use Firefox 21.0 and when I open a new tab I get Easylifeapp Search.  I have tried to uninstall but am having no luck.


Edited by SomersetGuy, 11 June 2013 - 01:23 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:21 PM

Posted 11 June 2013 - 01:28 PM

Hello SomersetGuy
 
let's Scan and see what is returned.
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results.
 
Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 SomersetGuy

SomersetGuy
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:03:21 PM

Posted 11 June 2013 - 06:37 PM

Hi boopme,
 
Thanks for your quick response!

 

Here are the scan results you requested:

 

MiniToolbox

 

MiniToolBox by Farbar  Version:21-04-2013
Ran by Frank (administrator) on 11-06-2013 at 15:38:41
Running from "C:\Users\Frank\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

802.11n Wireless LAN Card = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Frank-HP
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 1C-65-9D-C9-60-1A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 78-AC-C0-A2-AD-26
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : 802.11n Wireless LAN Card
   Physical Address. . . . . . . . . : 1C-65-9D-C9-60-1B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::2d0d:39b2:d4f2:1d6d%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, June 04, 2013 4:56:42 PM
   Lease Expires . . . . . . . . . . : Wednesday, June 12, 2013 2:28:52 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 203187613
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-37-B5-19-78-AC-C0-A2-AD-26
   DNS Servers . . . . . . . . . . . : 192.168.1.1
                                       71.250.0.12
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.home:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:cd2:26f5:52b8:95ac(Preferred)
   Link-local IPv6 Address . . . . . : fe80::cd2:26f5:52b8:95ac%15(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4006:800::1008
      74.125.226.196
      74.125.226.192
      74.125.226.200
      74.125.226.197
      74.125.226.206
      74.125.226.195
      74.125.226.194
      74.125.226.199
      74.125.226.201
      74.125.226.198
      74.125.226.193


Pinging google.com [74.125.226.231] with 32 bytes of data:
Reply from 74.125.226.231: bytes=32 time=11ms TTL=250
Reply from 74.125.226.231: bytes=32 time=25ms TTL=250

Ping statistics for 74.125.226.231:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 11ms, Maximum = 25ms, Average = 18ms
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.138.253.109
      206.190.36.45
      98.139.183.24


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=89ms TTL=247
Reply from 206.190.36.45: bytes=32 time=92ms TTL=247

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 89ms, Maximum = 92ms, Average = 90ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...1c 65 9d c9 60 1a ......Microsoft Virtual WiFi Miniport Adapter
 12...78 ac c0 a2 ad 26 ......Realtek PCIe FE Family Controller
 11...1c 65 9d c9 60 1b ......802.11n Wireless LAN Card
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.6     26
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.6    281
      192.168.1.6  255.255.255.255         On-link       192.168.1.6    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.6    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.6    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.6    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:9d38:953c:cd2:26f5:52b8:95ac/128
                                    On-link
 11    281 fe80::/64                On-link
 15    306 fe80::/64                On-link
 15    306 fe80::cd2:26f5:52b8:95ac/128
                                    On-link
 11    281 fe80::2d0d:39b2:d4f2:1d6d/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/09/2013 01:04:40 AM) (Source: Windows Backup) (User: )
Description: The backup was not successful. The error is: There is not enough space on this drive to save the backup. Free up space by deleting older backups and unnecessary data or change your backup settings. (0x81000005).

Error: (06/04/2013 03:52:43 PM) (Source: Application Error) (User: )
Description: Faulting application name: PocketCloudService.exe, version: 2.5.13.0, time stamp: 0x50984537
Faulting module name: MSVCR90.dll, version: 9.0.30729.6161, time stamp: 0x4dace4e7
Exception code: 0xc0000417
Fault offset: 0x00000000000552d4
Faulting process id: 0x1784
Faulting application start time: 0xPocketCloudService.exe0
Faulting application path: PocketCloudService.exe1
Faulting module path: PocketCloudService.exe2
Report Id: PocketCloudService.exe3

Error: (06/03/2013 07:40:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 0.0.0.0, time stamp: 0x4e06cfe8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00030fdf
Faulting process id: 0x1544
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/03/2013 07:40:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 0.0.0.0, time stamp: 0x4e06cfe8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00030fdf
Faulting process id: 0x1744
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/03/2013 07:40:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 0.0.0.0, time stamp: 0x4e06cfe8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00030fdf
Faulting process id: 0xbd8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/03/2013 07:40:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 0.0.0.0, time stamp: 0x4e06cfe8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00030fdf
Faulting process id: 0x19c8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/03/2013 07:40:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 0.0.0.0, time stamp: 0x4e06cfe8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00030fdf
Faulting process id: 0x1ab8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/03/2013 07:40:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 0.0.0.0, time stamp: 0x4e06cfe8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00030fdf
Faulting process id: 0xfc8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/03/2013 05:31:12 PM) (Source: MsiInstaller) (User: Frank-HP)
Description: Product: Bonjour -- A later version of Bonjour is already installed on this computer.

Error: (06/03/2013 05:24:32 PM) (Source: EasylifeGadget UpdaterUpdater) (User: )
Description: OpenService failed 1060


System errors:
=============
Error: (06/08/2013 02:28:20 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (06/06/2013 10:40:08 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (06/04/2013 05:37:17 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{B40E1FD7-1059-475C-896A-2D1159B6778B}.
The backup browser is stopping.

Error: (06/04/2013 05:18:23 PM) (Source: Service Control Manager) (User: )
Description: The Skype C2C Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/04/2013 04:57:36 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Ralink UPnP Media Server service to connect.

Error: (06/04/2013 04:56:42 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (06/04/2013 04:55:43 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (06/04/2013 04:55:32 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (06/04/2013 04:29:43 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Ralink UPnP Media Server service to connect.

Error: (06/04/2013 04:28:51 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2


Microsoft Office Sessions:
=========================
Error: (06/09/2013 01:04:40 AM) (Source: Windows Backup)(User: )
Description: There is not enough space on this drive to save the backup. Free up space by deleting older backups and unnecessary data or change your backup settings. (0x81000005)

Error: (06/04/2013 03:52:43 PM) (Source: Application Error)(User: )
Description: PocketCloudService.exe2.5.13.050984537MSVCR90.dll9.0.30729.61614dace4e7c000041700000000000552d4178401ce609db5791c3cC:\Program Files (x86)\Wyse\PocketCloud Windows Companion\PocketCloudService.exeC:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\MSVCR90.dll5196a75d-cd50-11e2-84b4-78acc0a2ad26

Error: (06/03/2013 07:40:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe0.0.0.04e06cfe8unknown0.0.0.000000000c000000500030fdf154401ce60b3ada7ccdcC:\32788R22FWJFW\License\iexplore.exeunknownec3b3d37-cca6-11e2-84b4-78acc0a2ad26

Error: (06/03/2013 07:40:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe0.0.0.04e06cfe8unknown0.0.0.000000000c000000500030fdf174401ce60b3adaa2e3cC:\32788R22FWJFW\License\iexplore.exeunknownec3b6447-cca6-11e2-84b4-78acc0a2ad26

Error: (06/03/2013 07:40:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe0.0.0.04e06cfe8unknown0.0.0.000000000c000000500030fdfbd801ce60b3adac8f9dC:\32788R22FWJFW\License\iexplore.exeunknownec395107-cca6-11e2-84b4-78acc0a2ad26

Error: (06/03/2013 07:40:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe0.0.0.04e06cfe8unknown0.0.0.000000000c000000500030fdf19c801ce60b3adaa2e3cC:\32788R22FWJFW\License\iexplore.exeunknownec3929f7-cca6-11e2-84b4-78acc0a2ad26

Error: (06/03/2013 07:40:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe0.0.0.04e06cfe8unknown0.0.0.000000000c000000500030fdf1ab801ce60b3adac8f9dC:\32788R22FWJFW\License\iexplore.exeunknownec3902e7-cca6-11e2-84b4-78acc0a2ad26

Error: (06/03/2013 07:40:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe0.0.0.04e06cfe8unknown0.0.0.000000000c000000500030fdffc801ce60b3adac8f9dC:\32788R22FWJFW\License\iexplore.exeunknownec38dbd7-cca6-11e2-84b4-78acc0a2ad26

Error: (06/03/2013 05:31:12 PM) (Source: MsiInstaller)(User: Frank-HP)
Description: Product: Bonjour -- A later version of Bonjour is already installed on this computer.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/03/2013 05:24:32 PM) (Source: EasylifeGadget UpdaterUpdater)(User: )
Description: OpenService failed 1060


CodeIntegrity Errors:
===================================
  Date: 2013-06-04 16:26:25.473
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-06-04 16:26:25.286
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-07-30 04:49:00.192
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-07-30 04:49:00.130
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
7-Zip 9.22beta
Acronis True Image WD Edition (Version: 13.0.14184)
Adobe AIR (Version: 3.5.0.600)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.202)
Adobe Flash Player 11 Plugin (Version: 11.7.700.202)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
Advanced SystemCare 6 (Version: 6.2)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.898.1)
AMD Catalyst Install Manager (Version: 3.0.868.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0309.43.976)
AMD Media Foundation Decoders (Version: 1.0.70309.0018)
AMD Problem Report Wizard (Version: 3.0.851.0)
AMD VISION Engine Control Center (Version: 2012.0309.43.976)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Application Profiles (Version: 2.0.4273.33792)
Application Profiles (Version: 2.0.4331.36041)
ATI AVIVO64 Codecs (Version: 11.6.0.10627)
AVG 2013 (Version: 13.0.3199)
AVG 2013 (Version: 13.0.3345)
AVG 2013 (Version: 2013.0.3345)
AVG Security Toolbar (Version: 15.2.0.5)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bing Bar (Version: 7.1.391.0)
Bing Desktop (Version: 1.2.126.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.95)
Blio (Version: 2.0.5350)
Bonjour (Version: 3.0.0.10)
Bonjour Print Services (Version: 2.0.2.0)
Bounce Symphony (Version: 2.2.0.95)
BrowseToSave (Version: 1.0)
Build-a-lot 2 (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0309.43.976)
Catalyst Control Center InstallProxy (Version: 2012.0309.43.976)
Catalyst Control Center Localization All (Version: 2012.0309.43.976)
CCC Help Chinese Standard (Version: 2012.0309.0042.976)
CCC Help Chinese Traditional (Version: 2012.0309.0042.976)
CCC Help Czech (Version: 2012.0309.0042.976)
CCC Help Danish (Version: 2012.0309.0042.976)
CCC Help Dutch (Version: 2012.0309.0042.976)
CCC Help English (Version: 2012.0309.0042.976)
CCC Help Finnish (Version: 2012.0309.0042.976)
CCC Help French (Version: 2012.0309.0042.976)
CCC Help German (Version: 2012.0309.0042.976)
CCC Help Greek (Version: 2012.0309.0042.976)
CCC Help Hungarian (Version: 2012.0309.0042.976)
CCC Help Italian (Version: 2012.0309.0042.976)
CCC Help Japanese (Version: 2012.0309.0042.976)
CCC Help Korean (Version: 2012.0309.0042.976)
CCC Help Norwegian (Version: 2012.0309.0042.976)
CCC Help Polish (Version: 2012.0309.0042.976)
CCC Help Portuguese (Version: 2012.0309.0042.976)
CCC Help Russian (Version: 2012.0309.0042.976)
CCC Help Spanish (Version: 2012.0309.0042.976)
CCC Help Swedish (Version: 2012.0309.0042.976)
CCC Help Thai (Version: 2012.0309.0042.976)
CCC Help Turkish (Version: 2012.0309.0042.976)
ccc-utility64 (Version: 2012.0309.43.976)
Chuzzle Deluxe (Version: 2.2.0.95)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CleanUp!
Coupon Printer for Windows (Version: 5.0.0.1)
CutePDF Writer 2.8
CyberLink DVD Suite Deluxe (Version: 7.0.3210)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dora's World Adventure (Version: 2.2.0.95)
Dropbox (Version: 1.6.18)
DVD Menu Pack for HP MediaSmart Video (Version: 4.2.4412)
EASEUS Data Recovery Wizard Free Edition 5.5.1
EasyLife Gadget (Version: 1.0)
EasylifeGadget (Version: 1.0)
Elevated Installer (Version: 2.1.13)
Epson Event Manager (Version: 2.40.0001)
EPSON NX420 Series Printer Uninstall
EPSON Scan
EpsonNet Print (Version: 2.4j)
EpsonNet Setup 3.3 (Version: 3.3b)
Escape Rosecliff Island (Version: 2.2.0.95)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.95)
Final Drive Nitro (Version: 2.2.0.95)
Game Booster (Version: 2.4.1.0)
Garmin City Navigator North America NT 2013.20 Update (Version: 16.20.0.0)
Garmin Communicator Plugin (Version: 2.9.3)
Garmin Express (Version: 2.1.13)
Garmin Express Tray (Version: 2.1.13)
Garmin Update Service (Version: 2.1.13)
Garmin USB Drivers (Version: 2.3.0.0)
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 27.0.1453.110)
Google Drive (Version: 1.9.4536.8202)
Google Earth (Version: 7.0.3.8542)
Google Update Helper (Version: 1.3.21.145)
Heroes of Hellas 2 - Olympia (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HijackThis 2.0.2 (Version: 2.0.2)
HP Auto (Version: 1.0.12494.3472)
HP Client Services (Version: 1.0.12656.3472)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.1.5)
HP MediaSmart DVD (Version: 4.2.5122)
HP MediaSmart Music (Version: 4.2.4517)
HP MediaSmart Photo (Version: 4.2.4513)
HP MediaSmart SmartMenu (Version: 3.1.2.4)
HP MediaSmart Video (Version: 4.2.4522)
HP MediaSmart/TouchSmart Netflix (Version: 1.0.9.0)
HP MovieStore (Version: 1.0.027)
HP MovieStore (Version: 2.0.2)
HP Odometer (Version: 2.10.0000)
HP Power Assistant (Version: 1.1.1.6)
HP Product Detection (Version: 11.14.0001)
HP Setup (Version: 8.4.4400.3525)
HP Setup Manager (Version: 1.0.12844.3519)
HP Support Assistant (Version: 7.0.39.15)
HP Support Information (Version: 10.1.1000)
HP Update (Version: 5.002.003.003)
HP Vision Hardware Diagnostics (Version: 2.1.6.0)
Hulu Desktop (Version: 0.9.13)
HydraVision (Version: 4.2.218.0)
iCloud (Version: 2.1.2.8)
iLivid (Version: 4.0.0.2466)
Internet TV for Windows Media Center (Version: 4.2.2.0)
IObit Malware Fighter (Version: 1.0)
iTunes (Version: 11.0.3.42)
Java 7 Update 21 (Version: 7.0.210)
Java 7 Update 7 (64-bit) (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.5)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Kobo (Version: 1.6)
LabelPrint (Version: 2.5.3130)
Lexmark X5100 Series
LightScribe System Software (Version: 1.18.20.1)
Logitech Touch Mouse Server 1.0 (Version: 1.0)
Macrium Reflect Free Edition (Version: 5.0.4196)
MagicfeaturesPlugin Release 2.082
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MediaMonkey 3.2 (Version: 3.2)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
MobileMe Control Panel (Version: 3.1.8.0)
Movie Theme Pack for HP MediaSmart Video (Version: 4.2.4412)
Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)
Mozilla Maintenance Service (Version: 21.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery P.I. - The London Caper (Version: 2.2.0.95)
Notepad++ (Version: 6.3)
Panda ActiveScan 2.0 (Version: 01.04.01.0014)
PDF Complete Special Edition (Version: 4.0.9)
Penguins! (Version: 2.2.0.95)
PhotoNow! (Version: 1.1.7717)
PictureMover (Version: 3.5.0.33)
Plants vs. Zombies (Version: 2.2.0.95)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
PocketCloud Windows Companion (Version: 2.5.13)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Power2Go (Version: 6.1.4329)
PowerDirector (Version: 8.0.3129)
PressReader (Version: 5.10.1102.0)
Python 2.7 PIL-1.1.7 (64-bit)
Python 2.7 pywin32-217
Python 2.7.3 (64-bit) (Version: 2.7.3150)
QuickTime (Version: 7.74.80.86)
Ralink 802.11n Wireless LAN Card (Version: 3.2.13.0)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.4)
Realtek High Definition Audio Driver (Version: 6.0.1.6196)
RealUpgrade 1.1 (Version: 1.1.0)
Recovery Manager (Version: 5.5.3219)
RoxioNow Player (Version: 1.9.5.101)
Safari (Version: 5.34.57.2)
Samsung_MonSetup (Version: 1.00.0000)
SearchNewTab (Version: )
Skype Click to Call (Version: 6.9.12585)
Skype™ 5.10 (Version: 5.10.116)
Smart Defrag 2 (Version: 2.7)
SMPlayer 0.6.9 (Version: 0.6.9)
Spybot - Search & Destroy (Version: 1.6.2)
swMSM (Version: 12.0.0.1)
TightVNC 2.0.4 (Version: 2.0.4)
TiVo Desktop 2.8.3 (Version: 2.8.412.370)
Torch (Version: 23.0.0.2525)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Update Installer for WildTangent Games App
Virtual Families (Version: 2.2.0.95)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Wheel of Fortune 2 (Version: 2.2.0.95)
WildTangent Games App (Version: 4.0.9.7)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Center Add-in for Flash (Version: 4.1.2.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Xvid Video Codec (Version: 1.3.2)
Yahoo! Messenger
YouTube Downloader 3.4
Zinio Reader 4 (Version: 4.0.3184)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 62%
Total physical RAM: 5887.28 MB
Available physical RAM: 2225.64 MB
Total Pagefile: 11772.74 MB
Available Pagefile: 8393.4 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.59 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:918.5 GB) (Free:229.48 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:12.91 GB) (Free:1.27 GB) NTFS
8 Drive t: (New Volume) (Fixed) (Total:931.51 GB) (Free:0.02 GB) NTFS

========================= Users: ========================================

User accounts for \\FRANK-HP

Administrator            Frank                    Guest                    


**** End of log ****
 

TDSSKiller

 

15:44:26.0523 1233144  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:44:26.0983 1233144  ============================================================
15:44:26.0983 1233144  Current date / time: 2013/06/11 15:44:26.0983
15:44:26.0983 1233144  SystemInfo:
15:44:26.0983 1233144  
15:44:26.0983 1233144  OS Version: 6.1.7601 ServicePack: 1.0
15:44:26.0983 1233144  Product type: Workstation
15:44:26.0983 1233144  ComputerName: FRANK-HP
15:44:26.0983 1233144  UserName: Frank
15:44:26.0993 1233144  Windows directory: C:\Windows
15:44:26.0993 1233144  System windows directory: C:\Windows
15:44:26.0993 1233144  Running under WOW64
15:44:26.0993 1233144  Processor architecture: Intel x64
15:44:26.0993 1233144  Number of processors: 4
15:44:26.0993 1233144  Page size: 0x1000
15:44:26.0993 1233144  Boot type: Normal boot
15:44:26.0993 1233144  ============================================================
15:44:27.0633 1233144  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:44:27.0643 1233144  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:44:27.0673 1233144  ============================================================
15:44:27.0673 1233144  \Device\Harddisk0\DR0:
15:44:27.0673 1233144  MBR partitions:
15:44:27.0673 1233144  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:44:27.0673 1233144  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x72CFF800
15:44:27.0673 1233144  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x72D32000, BlocksNum 0x19D4000
15:44:27.0673 1233144  \Device\Harddisk1\DR1:
15:44:27.0673 1233144  MBR partitions:
15:44:27.0673 1233144  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
15:44:27.0673 1233144  ============================================================
15:44:27.0713 1233144  C: <-> \Device\Harddisk0\DR0\Partition2
15:44:27.0753 1233144  D: <-> \Device\Harddisk0\DR0\Partition3
15:44:27.0763 1233144  T: <-> \Device\Harddisk1\DR1\Partition1
15:44:27.0763 1233144  ============================================================
15:44:27.0763 1233144  Initialize success
15:44:27.0763 1233144  ============================================================
15:45:10.0097 1233652  ============================================================
15:45:10.0097 1233652  Scan started
15:45:10.0097 1233652  Mode: Manual; TDLFS;
15:45:10.0097 1233652  ============================================================
15:45:10.0397 1233652  ================ Scan system memory ========================
15:45:10.0397 1233652  System memory - ok
15:45:10.0397 1233652  ================ Scan services =============================
15:45:10.0527 1233652  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:45:10.0537 1233652  1394ohci - ok
15:45:10.0567 1233652  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:45:10.0567 1233652  ACPI - ok
15:45:10.0587 1233652  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:45:10.0587 1233652  AcpiPmi - ok
15:45:10.0667 1233652  [ D9425B7D296D187C7F1A2D76183D391B ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
15:45:10.0687 1233652  AcrSch2Svc - ok
15:45:10.0747 1233652  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:45:10.0747 1233652  AdobeARMservice - ok
15:45:10.0857 1233652  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:45:10.0867 1233652  AdobeFlashPlayerUpdateSvc - ok
15:45:10.0907 1233652  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
15:45:10.0917 1233652  adp94xx - ok
15:45:10.0937 1233652  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
15:45:10.0947 1233652  adpahci - ok
15:45:10.0967 1233652  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
15:45:10.0977 1233652  adpu320 - ok
15:45:11.0047 1233652  [ 9243229DFCCC99B5441750EBA49F1B14 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
15:45:11.0047 1233652  AdvancedSystemCareService6 - ok
15:45:11.0077 1233652  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:45:11.0077 1233652  AeLookupSvc - ok
15:45:11.0097 1233652  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:45:11.0107 1233652  AFD - ok
15:45:11.0127 1233652  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:45:11.0127 1233652  agp440 - ok
15:45:11.0137 1233652  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:45:11.0137 1233652  ALG - ok
15:45:11.0157 1233652  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:45:11.0157 1233652  aliide - ok
15:45:11.0187 1233652  [ 2FDCB3E855076CE97CCB58E2CF8F2A09 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:45:11.0187 1233652  AMD External Events Utility - ok
15:45:11.0227 1233652  AMD FUEL Service - ok
15:45:11.0237 1233652  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:45:11.0237 1233652  amdide - ok
15:45:11.0257 1233652  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
15:45:11.0257 1233652  amdiox64 - ok
15:45:11.0267 1233652  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
15:45:11.0267 1233652  AmdK8 - ok
15:45:11.0407 1233652  [ 9920704BF815A5B42DA5264F013AAEB7 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:45:11.0487 1233652  amdkmdag - ok
15:45:11.0507 1233652  [ 0D1055A47A8F5DC1CAA2701831293EBB ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
15:45:11.0517 1233652  amdkmdap - ok
15:45:11.0527 1233652  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:45:11.0527 1233652  AmdPPM - ok
15:45:11.0547 1233652  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:45:11.0547 1233652  amdsata - ok
15:45:11.0577 1233652  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:45:11.0587 1233652  amdsbs - ok
15:45:11.0607 1233652  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:45:11.0607 1233652  amdxata - ok
15:45:11.0627 1233652  [ 352476C98EF3952563A14F767491BBA9 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
15:45:11.0627 1233652  amd_sata - ok
15:45:11.0647 1233652  [ F4805C309FE48D6939147FE5CCDB1AD4 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
15:45:11.0647 1233652  amd_xata - ok
15:45:11.0667 1233652  [ 0E2BA6DC63E9CF3BF275856735A3E3BE ] AODDriver4.01   C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:45:11.0667 1233652  AODDriver4.01 - ok
15:45:11.0677 1233652  [ 0E2BA6DC63E9CF3BF275856735A3E3BE ] AODDriver4.1    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:45:11.0677 1233652  AODDriver4.1 - ok
15:45:11.0697 1233652  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:45:11.0707 1233652  AppID - ok
15:45:11.0727 1233652  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:45:11.0737 1233652  AppIDSvc - ok
15:45:11.0757 1233652  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
15:45:11.0767 1233652  Appinfo - ok
15:45:11.0797 1233652  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:45:11.0797 1233652  Apple Mobile Device - ok
15:45:11.0827 1233652  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
15:45:11.0827 1233652  arc - ok
15:45:11.0837 1233652  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:45:11.0837 1233652  arcsas - ok
15:45:11.0857 1233652  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:45:11.0857 1233652  AsyncMac - ok
15:45:11.0887 1233652  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:45:11.0887 1233652  atapi - ok
15:45:11.0917 1233652  [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie64.sys
15:45:11.0917 1233652  AtiPcie - ok
15:45:11.0947 1233652  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:45:11.0957 1233652  AudioEndpointBuilder - ok
15:45:11.0967 1233652  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:45:11.0977 1233652  AudioSrv - ok
15:45:12.0097 1233652  [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
15:45:12.0138 1233652  AVGIDSAgent - ok
15:45:12.0158 1233652  [ 139BD30C32BEE830D0CF39C5324D79DE ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
15:45:12.0158 1233652  AVGIDSDriver - ok
15:45:12.0188 1233652  [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
15:45:12.0188 1233652  AVGIDSHA - ok
15:45:12.0218 1233652  [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
15:45:12.0218 1233652  Avgldx64 - ok
15:45:12.0258 1233652  [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
15:45:12.0258 1233652  Avgloga - ok
15:45:12.0278 1233652  [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
15:45:12.0278 1233652  Avgmfx64 - ok
15:45:12.0298 1233652  [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
15:45:12.0298 1233652  Avgrkx64 - ok
15:45:12.0318 1233652  [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
15:45:12.0318 1233652  Avgtdia - ok
15:45:12.0338 1233652  [ 3B5657B6C11CDA87F664DD6F7DD0702D ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
15:45:12.0338 1233652  avgtp - ok
15:45:12.0368 1233652  [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
15:45:12.0368 1233652  avgwd - ok
15:45:12.0388 1233652  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:45:12.0388 1233652  AxInstSV - ok
15:45:12.0418 1233652  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
15:45:12.0428 1233652  b06bdrv - ok
15:45:12.0448 1233652  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:45:12.0448 1233652  b57nd60a - ok
15:45:12.0508 1233652  [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
15:45:12.0508 1233652  BBSvc - ok
15:45:12.0528 1233652  [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
15:45:12.0538 1233652  BBUpdate - ok
15:45:12.0568 1233652  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:45:12.0568 1233652  BDESVC - ok
15:45:12.0578 1233652  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:45:12.0578 1233652  Beep - ok
15:45:12.0608 1233652  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
15:45:12.0618 1233652  BFE - ok
15:45:12.0668 1233652  [ 85D5E6AC46A2AE4672C1AC813AE45B95 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
15:45:12.0668 1233652  BingDesktopUpdate - ok
15:45:12.0718 1233652  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
15:45:12.0728 1233652  BITS - ok
15:45:12.0738 1233652  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:45:12.0748 1233652  blbdrive - ok
15:45:12.0768 1233652  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:45:12.0778 1233652  Bonjour Service - ok
15:45:12.0818 1233652  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:45:12.0818 1233652  bowser - ok
15:45:12.0828 1233652  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:45:12.0828 1233652  BrFiltLo - ok
15:45:12.0838 1233652  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:45:12.0848 1233652  BrFiltUp - ok
15:45:12.0858 1233652  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
15:45:12.0868 1233652  BridgeMP - ok
15:45:12.0888 1233652  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:45:12.0888 1233652  Browser - ok
15:45:12.0908 1233652  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:45:12.0908 1233652  Brserid - ok
15:45:12.0928 1233652  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:45:12.0928 1233652  BrSerWdm - ok
15:45:12.0948 1233652  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:45:12.0948 1233652  BrUsbMdm - ok
15:45:12.0958 1233652  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:45:12.0958 1233652  BrUsbSer - ok
15:45:12.0968 1233652  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:45:12.0978 1233652  BTHMODEM - ok
15:45:12.0998 1233652  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:45:12.0998 1233652  bthserv - ok
15:45:12.0998 1233652  catchme - ok
15:45:13.0018 1233652  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:45:13.0028 1233652  cdfs - ok
15:45:13.0038 1233652  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:45:13.0048 1233652  cdrom - ok
15:45:13.0068 1233652  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:45:13.0068 1233652  CertPropSvc - ok
15:45:13.0078 1233652  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:45:13.0078 1233652  circlass - ok
15:45:13.0088 1233652  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:45:13.0098 1233652  CLFS - ok
15:45:13.0148 1233652  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:45:13.0148 1233652  clr_optimization_v2.0.50727_32 - ok
15:45:13.0188 1233652  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:45:13.0188 1233652  clr_optimization_v2.0.50727_64 - ok
15:45:13.0238 1233652  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:45:13.0248 1233652  clr_optimization_v4.0.30319_32 - ok
15:45:13.0258 1233652  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:45:13.0268 1233652  clr_optimization_v4.0.30319_64 - ok
15:45:13.0288 1233652  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:45:13.0288 1233652  CmBatt - ok
15:45:13.0308 1233652  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:45:13.0318 1233652  cmdide - ok
15:45:13.0338 1233652  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
15:45:13.0348 1233652  CNG - ok
15:45:13.0368 1233652  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:45:13.0368 1233652  Compbatt - ok
15:45:13.0378 1233652  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:45:13.0378 1233652  CompositeBus - ok
15:45:13.0388 1233652  COMSysApp - ok
15:45:13.0408 1233652  [ 2285B31039611D509F6120D691CA661F ] CpqDfw          C:\Windows\system32\drivers\CpqDfw.sys
15:45:13.0408 1233652  CpqDfw - ok
15:45:13.0408 1233652  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
15:45:13.0418 1233652  crcdisk - ok
15:45:13.0448 1233652  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:45:13.0448 1233652  CryptSvc - ok
15:45:13.0488 1233652  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:45:13.0488 1233652  DcomLaunch - ok
15:45:13.0518 1233652  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:45:13.0528 1233652  defragsvc - ok
15:45:13.0548 1233652  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:45:13.0548 1233652  DfsC - ok
15:45:13.0568 1233652  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:45:13.0578 1233652  Dhcp - ok
15:45:13.0598 1233652  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:45:13.0598 1233652  discache - ok
15:45:13.0608 1233652  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:45:13.0618 1233652  Disk - ok
15:45:13.0638 1233652  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:45:13.0648 1233652  Dnscache - ok
15:45:13.0668 1233652  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:45:13.0678 1233652  dot3svc - ok
15:45:13.0688 1233652  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:45:13.0688 1233652  DPS - ok
15:45:13.0718 1233652  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:45:13.0718 1233652  drmkaud - ok
15:45:13.0758 1233652  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:45:13.0778 1233652  DXGKrnl - ok
15:45:13.0788 1233652  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:45:13.0798 1233652  EapHost - ok
15:45:13.0858 1233652  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
15:45:13.0888 1233652  ebdrv - ok
15:45:13.0918 1233652  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:45:13.0918 1233652  EFS - ok
15:45:13.0968 1233652  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:45:13.0978 1233652  ehRecvr - ok
15:45:14.0008 1233652  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:45:14.0018 1233652  ehSched - ok
15:45:14.0048 1233652  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
15:45:14.0068 1233652  elxstor - ok
15:45:14.0108 1233652  [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
15:45:14.0128 1233652  EpsonBidirectionalService - ok
15:45:14.0148 1233652  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:45:14.0148 1233652  ErrDev - ok
15:45:14.0178 1233652  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:45:14.0188 1233652  EventSystem - ok
15:45:14.0188 1233652  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:45:14.0198 1233652  exfat - ok
15:45:14.0208 1233652  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:45:14.0208 1233652  fastfat - ok
15:45:14.0238 1233652  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:45:14.0238 1233652  Fax - ok
15:45:14.0248 1233652  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
15:45:14.0248 1233652  fdc - ok
15:45:14.0258 1233652  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:45:14.0258 1233652  fdPHost - ok
15:45:14.0268 1233652  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:45:14.0268 1233652  FDResPub - ok
15:45:14.0278 1233652  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:45:14.0278 1233652  FileInfo - ok
15:45:14.0318 1233652  [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor     C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
15:45:14.0328 1233652  FileMonitor - ok
15:45:14.0348 1233652  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:45:14.0348 1233652  Filetrace - ok
15:45:14.0358 1233652  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:45:14.0368 1233652  flpydisk - ok
15:45:14.0388 1233652  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:45:14.0388 1233652  FltMgr - ok
15:45:14.0418 1233652  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
15:45:14.0438 1233652  FontCache - ok
15:45:14.0468 1233652  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:45:14.0468 1233652  FontCache3.0.0.0 - ok
15:45:14.0498 1233652  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:45:14.0498 1233652  FsDepends - ok
15:45:14.0518 1233652  [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
15:45:14.0518 1233652  fssfltr - ok
15:45:14.0608 1233652  [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:45:14.0638 1233652  fsssvc - ok
15:45:14.0678 1233652  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:45:14.0698 1233652  Fs_Rec - ok
15:45:14.0728 1233652  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:45:14.0728 1233652  fvevol - ok
15:45:14.0748 1233652  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:45:14.0748 1233652  gagp30kx - ok
15:45:14.0798 1233652  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
15:45:14.0808 1233652  GamesAppService - ok
15:45:14.0878 1233652  [ 2973B4EB7BE10A0D491B2037DCAAE88F ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
15:45:14.0878 1233652  Garmin Core Update Service - ok
15:45:14.0928 1233652  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:45:14.0938 1233652  gpsvc - ok
15:45:14.0978 1233652  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:45:14.0978 1233652  gupdate - ok
15:45:14.0988 1233652  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:45:14.0998 1233652  gupdatem - ok
15:45:15.0018 1233652  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:45:15.0028 1233652  hcw85cir - ok
15:45:15.0048 1233652  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:45:15.0048 1233652  HdAudAddService - ok
15:45:15.0058 1233652  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
15:45:15.0058 1233652  HDAudBus - ok
15:45:15.0068 1233652  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
15:45:15.0078 1233652  HidBatt - ok
15:45:15.0088 1233652  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:45:15.0088 1233652  HidBth - ok
15:45:15.0098 1233652  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
15:45:15.0108 1233652  HidIr - ok
15:45:15.0138 1233652  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
15:45:15.0138 1233652  hidserv - ok
15:45:15.0148 1233652  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:45:15.0148 1233652  HidUsb - ok
15:45:15.0168 1233652  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:45:15.0168 1233652  hkmsvc - ok
15:45:15.0188 1233652  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:45:15.0198 1233652  HomeGroupListener - ok
15:45:15.0218 1233652  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:45:15.0218 1233652  HomeGroupProvider - ok
15:45:15.0258 1233652  [ 15863E96F68C0B534AE5003F98CABBC3 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
15:45:15.0268 1233652  HP Power Assistant Service - ok
15:45:15.0308 1233652  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
15:45:15.0468 1233652  HP Support Assistant Service - ok
15:45:15.0498 1233652  [ 3DC11A802353401332D49C3CBFBBE5FC ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
15:45:15.0498 1233652  HPClientSvc - ok
15:45:15.0558 1233652  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
15:45:15.0568 1233652  hpqwmiex - ok
15:45:15.0598 1233652  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:45:15.0598 1233652  HpSAMD - ok
15:45:15.0628 1233652  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:45:15.0638 1233652  HTTP - ok
15:45:15.0658 1233652  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:45:15.0658 1233652  hwpolicy - ok
15:45:15.0678 1233652  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:45:15.0678 1233652  i8042prt - ok
15:45:15.0698 1233652  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:45:15.0708 1233652  iaStorV - ok
15:45:15.0748 1233652  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:45:15.0758 1233652  idsvc - ok
15:45:15.0778 1233652  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
15:45:15.0788 1233652  iirsp - ok
15:45:15.0808 1233652  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:45:15.0818 1233652  IKEEXT - ok
15:45:15.0838 1233652  [ 8AE99EBE30E8338907361018D9030835 ] IMFservice      C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
15:45:15.0848 1233652  IMFservice - ok
15:45:15.0888 1233652  [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:45:15.0908 1233652  IntcAzAudAddService - ok
15:45:15.0918 1233652  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:45:15.0928 1233652  intelide - ok
15:45:15.0938 1233652  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:45:15.0938 1233652  intelppm - ok
15:45:15.0958 1233652  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:45:15.0958 1233652  IPBusEnum - ok
15:45:15.0978 1233652  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:45:15.0978 1233652  IpFilterDriver - ok
15:45:15.0998 1233652  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:45:16.0008 1233652  iphlpsvc - ok
15:45:16.0028 1233652  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:45:16.0028 1233652  IPMIDRV - ok
15:45:16.0038 1233652  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:45:16.0038 1233652  IPNAT - ok
15:45:16.0068 1233652  [ 2872B90D57C8310194A78A9787406467 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:45:16.0078 1233652  iPod Service - ok
15:45:16.0098 1233652  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:45:16.0098 1233652  IRENUM - ok
15:45:16.0108 1233652  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:45:16.0118 1233652  isapnp - ok
15:45:16.0128 1233652  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:45:16.0128 1233652  iScsiPrt - ok
15:45:16.0148 1233652  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:45:16.0148 1233652  kbdclass - ok
15:45:16.0158 1233652  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:45:16.0158 1233652  kbdhid - ok
15:45:16.0168 1233652  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:45:16.0178 1233652  KeyIso - ok
15:45:16.0188 1233652  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:45:16.0188 1233652  KSecDD - ok
15:45:16.0208 1233652  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:45:16.0208 1233652  KSecPkg - ok
15:45:16.0218 1233652  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:45:16.0228 1233652  ksthunk - ok
15:45:16.0248 1233652  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:45:16.0248 1233652  KtmRm - ok
15:45:16.0278 1233652  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
15:45:16.0288 1233652  LanmanServer - ok
15:45:16.0298 1233652  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:45:16.0308 1233652  LanmanWorkstation - ok
15:45:16.0338 1233652  [ FA4A45C179AB0E0F1A31B9751D4B18D7 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
15:45:16.0348 1233652  LightScribeService - ok
15:45:16.0358 1233652  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:45:16.0358 1233652  lltdio - ok
15:45:16.0378 1233652  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:45:16.0388 1233652  lltdsvc - ok
15:45:16.0408 1233652  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:45:16.0408 1233652  lmhosts - ok
15:45:16.0418 1233652  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:45:16.0418 1233652  LSI_FC - ok
15:45:16.0448 1233652  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
15:45:16.0448 1233652  LSI_SAS - ok
15:45:16.0458 1233652  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:45:16.0458 1233652  LSI_SAS2 - ok
15:45:16.0468 1233652  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:45:16.0478 1233652  LSI_SCSI - ok
15:45:16.0488 1233652  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:45:16.0498 1233652  luafv - ok
15:45:16.0498 1233652  lxba_device - ok
15:45:16.0518 1233652  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:45:16.0528 1233652  Mcx2Svc - ok
15:45:16.0538 1233652  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
15:45:16.0538 1233652  megasas - ok
15:45:16.0558 1233652  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:45:16.0558 1233652  MegaSR - ok
15:45:16.0578 1233652  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:45:16.0578 1233652  MMCSS - ok
15:45:16.0588 1233652  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
15:45:16.0598 1233652  Modem - ok
15:45:16.0608 1233652  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:45:16.0618 1233652  monitor - ok
15:45:16.0628 1233652  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:45:16.0628 1233652  mouclass - ok
15:45:16.0648 1233652  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:45:16.0648 1233652  mouhid - ok
15:45:16.0668 1233652  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:45:16.0668 1233652  mountmgr - ok
15:45:16.0698 1233652  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:45:16.0698 1233652  MozillaMaintenance - ok
15:45:16.0708 1233652  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:45:16.0718 1233652  mpio - ok
15:45:16.0728 1233652  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:45:16.0738 1233652  mpsdrv - ok
15:45:16.0768 1233652  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:45:16.0778 1233652  MpsSvc - ok
15:45:16.0838 1233652  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:45:16.0848 1233652  MRxDAV - ok
15:45:16.0868 1233652  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:45:16.0868 1233652  mrxsmb - ok
15:45:16.0898 1233652  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:45:16.0908 1233652  mrxsmb10 - ok
15:45:16.0918 1233652  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:45:16.0918 1233652  mrxsmb20 - ok
15:45:16.0938 1233652  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:45:16.0938 1233652  msahci - ok
15:45:16.0958 1233652  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:45:16.0958 1233652  msdsm - ok
15:45:16.0968 1233652  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:45:16.0978 1233652  MSDTC - ok
15:45:17.0008 1233652  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:45:17.0008 1233652  Msfs - ok
15:45:17.0018 1233652  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:45:17.0018 1233652  mshidkmdf - ok
15:45:17.0028 1233652  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:45:17.0038 1233652  msisadrv - ok
15:45:17.0058 1233652  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:45:17.0058 1233652  MSiSCSI - ok
15:45:17.0068 1233652  msiserver - ok
15:45:17.0078 1233652  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:45:17.0078 1233652  MSKSSRV - ok
15:45:17.0088 1233652  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:45:17.0088 1233652  MSPCLOCK - ok
15:45:17.0098 1233652  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:45:17.0108 1233652  MSPQM - ok
15:45:17.0138 1233652  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:45:17.0138 1233652  MsRPC - ok
15:45:17.0148 1233652  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:45:17.0148 1233652  mssmbios - ok
15:45:17.0168 1233652  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:45:17.0168 1233652  MSTEE - ok
15:45:17.0178 1233652  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:45:17.0178 1233652  MTConfig - ok
15:45:17.0188 1233652  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:45:17.0188 1233652  Mup - ok
15:45:17.0218 1233652  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:45:17.0228 1233652  napagent - ok
15:45:17.0238 1233652  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:45:17.0238 1233652  NativeWifiP - ok
15:45:17.0268 1233652  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:45:17.0278 1233652  NDIS - ok
15:45:17.0288 1233652  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:45:17.0298 1233652  NdisCap - ok
15:45:17.0308 1233652  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:45:17.0308 1233652  NdisTapi - ok
15:45:17.0328 1233652  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:45:17.0328 1233652  Ndisuio - ok
15:45:17.0358 1233652  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:45:17.0358 1233652  NdisWan - ok
15:45:17.0378 1233652  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:45:17.0378 1233652  NDProxy - ok
15:45:17.0388 1233652  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:45:17.0388 1233652  NetBIOS - ok
15:45:17.0408 1233652  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:45:17.0408 1233652  NetBT - ok
15:45:17.0418 1233652  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:45:17.0418 1233652  Netlogon - ok
15:45:17.0428 1233652  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:45:17.0438 1233652  Netman - ok
15:45:17.0448 1233652  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:45:17.0458 1233652  netprofm - ok
15:45:17.0498 1233652  [ 2EED549279D7FBD10B846B5397573967 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
15:45:17.0518 1233652  netr28x - ok
15:45:17.0538 1233652  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:45:17.0538 1233652  NetTcpPortSharing - ok
15:45:17.0548 1233652  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
15:45:17.0548 1233652  nfrd960 - ok
15:45:17.0578 1233652  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:45:17.0578 1233652  NlaSvc - ok
15:45:17.0588 1233652  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:45:17.0588 1233652  Npfs - ok
15:45:17.0598 1233652  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:45:17.0598 1233652  nsi - ok
15:45:17.0608 1233652  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:45:17.0608 1233652  nsiproxy - ok
15:45:17.0648 1233652  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:45:17.0668 1233652  Ntfs - ok
15:45:17.0668 1233652  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:45:17.0668 1233652  Null - ok
15:45:17.0698 1233652  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:45:17.0698 1233652  nvraid - ok
15:45:17.0718 1233652  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:45:17.0718 1233652  nvstor - ok
15:45:17.0738 1233652  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:45:17.0738 1233652  nv_agp - ok
15:45:17.0748 1233652  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:45:17.0748 1233652  ohci1394 - ok
15:45:17.0788 1233652  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:45:17.0788 1233652  ose - ok
15:45:17.0908 1233652  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:45:17.0958 1233652  osppsvc - ok
15:45:17.0978 1233652  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:45:17.0978 1233652  p2pimsvc - ok
15:45:17.0998 1233652  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:45:18.0008 1233652  p2psvc - ok
15:45:18.0018 1233652  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:45:18.0028 1233652  Parport - ok
15:45:18.0048 1233652  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:45:18.0048 1233652  partmgr - ok
15:45:18.0068 1233652  [ 8A0F8A9580D9F2FC512A35D5709088A9 ] pavboot         C:\Windows\system32\drivers\pavboot64.sys
15:45:18.0068 1233652  pavboot - ok
15:45:18.0088 1233652  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:45:18.0088 1233652  PcaSvc - ok
15:45:18.0098 1233652  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:45:18.0098 1233652  pci - ok
15:45:18.0108 1233652  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:45:18.0118 1233652  pciide - ok
15:45:18.0128 1233652  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:45:18.0128 1233652  pcmcia - ok
15:45:18.0138 1233652  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:45:18.0138 1233652  pcw - ok
15:45:18.0158 1233652  pdfcDispatcher - ok
15:45:18.0178 1233652  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:45:18.0178 1233652  PEAUTH - ok
15:45:18.0248 1233652  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:45:18.0258 1233652  PerfHost - ok
15:45:18.0298 1233652  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:45:18.0318 1233652  pla - ok
15:45:18.0338 1233652  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:45:18.0348 1233652  PlugPlay - ok
15:45:18.0368 1233652  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:45:18.0368 1233652  PNRPAutoReg - ok
15:45:18.0378 1233652  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:45:18.0378 1233652  PNRPsvc - ok
15:45:18.0398 1233652  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:45:18.0398 1233652  PolicyAgent - ok
15:45:18.0428 1233652  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:45:18.0428 1233652  Power - ok
15:45:18.0448 1233652  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:45:18.0448 1233652  PptpMiniport - ok
15:45:18.0478 1233652  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
15:45:18.0478 1233652  Processor - ok
15:45:18.0508 1233652  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:45:18.0508 1233652  ProfSvc - ok
15:45:18.0518 1233652  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:45:18.0528 1233652  ProtectedStorage - ok
15:45:18.0548 1233652  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:45:18.0548 1233652  Psched - ok
15:45:18.0578 1233652  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:45:18.0598 1233652  ql2300 - ok
15:45:18.0608 1233652  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:45:18.0608 1233652  ql40xx - ok
15:45:18.0628 1233652  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:45:18.0638 1233652  QWAVE - ok
15:45:18.0648 1233652  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:45:18.0648 1233652  QWAVEdrv - ok
15:45:18.0688 1233652  [ F4C083E290BCBC8DA05C6E2C7F8053B9 ] RalinkRegistryWriter C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
15:45:18.0748 1233652  RalinkRegistryWriter - ok
15:45:18.0758 1233652  [ C3B515559046A89BB0E0F2CEEF73CABC ] RalinkRegistryWriter64 C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
15:45:18.0768 1233652  RalinkRegistryWriter64 - ok
15:45:18.0808 1233652  [ ACCFA0846D9C7BD6A9F506982B812A5C ] RaMediaServer   C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe
15:45:18.0828 1233652  RaMediaServer - ok
15:45:18.0858 1233652  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:45:18.0858 1233652  RasAcd - ok
15:45:18.0878 1233652  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:45:18.0878 1233652  RasAgileVpn - ok
15:45:18.0888 1233652  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:45:18.0888 1233652  RasAuto - ok
15:45:18.0908 1233652  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:45:18.0908 1233652  Rasl2tp - ok
15:45:18.0918 1233652  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:45:18.0928 1233652  RasMan - ok
15:45:18.0938 1233652  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:45:18.0948 1233652  RasPppoe - ok
15:45:18.0968 1233652  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:45:18.0968 1233652  RasSstp - ok
15:45:18.0998 1233652  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:45:18.0998 1233652  rdbss - ok
15:45:19.0018 1233652  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:45:19.0018 1233652  rdpbus - ok
15:45:19.0028 1233652  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:45:19.0038 1233652  RDPCDD - ok
15:45:19.0048 1233652  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:45:19.0048 1233652  RDPENCDD - ok
15:45:19.0058 1233652  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:45:19.0058 1233652  RDPREFMP - ok
15:45:19.0078 1233652  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:45:19.0078 1233652  RdpVideoMiniport - ok
15:45:19.0108 1233652  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:45:19.0118 1233652  RDPWD - ok
15:45:19.0138 1233652  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:45:19.0138 1233652  rdyboost - ok
15:45:19.0168 1233652  [ 943ADE1DD6789432419A87BB85884322 ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe
15:45:19.0168 1233652  ReflectService.exe - ok
15:45:19.0198 1233652  [ 5F9AC3243C206EC95F32E4348AE67C13 ] RegFilter       C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
15:45:19.0198 1233652  RegFilter - ok
15:45:19.0218 1233652  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:45:19.0218 1233652  RemoteAccess - ok
15:45:19.0238 1233652  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:45:19.0248 1233652  RemoteRegistry - ok
15:45:19.0268 1233652  [ C1568E17039B2EC2B73A4F880DDD51E5 ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
15:45:19.0278 1233652  RoxioNow Service - ok
15:45:19.0288 1233652  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:45:19.0288 1233652  RpcEptMapper - ok
15:45:19.0308 1233652  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:45:19.0308 1233652  RpcLocator - ok
15:45:19.0338 1233652  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:45:19.0338 1233652  RpcSs - ok
15:45:19.0358 1233652  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:45:19.0358 1233652  rspndr - ok
15:45:19.0378 1233652  [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:45:19.0388 1233652  RTL8167 - ok
15:45:19.0398 1233652  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:45:19.0398 1233652  SamSs - ok
15:45:19.0418 1233652  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:45:19.0418 1233652  sbp2port - ok
15:45:19.0468 1233652  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
15:45:19.0488 1233652  SBSDWSCService - ok
15:45:19.0498 1233652  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:45:19.0508 1233652  SCardSvr - ok
15:45:19.0528 1233652  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:45:19.0528 1233652  scfilter - ok
15:45:19.0558 1233652  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:45:19.0568 1233652  Schedule - ok
15:45:19.0598 1233652  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:45:19.0598 1233652  SCPolicySvc - ok
15:45:19.0608 1233652  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:45:19.0618 1233652  SDRSVC - ok
15:45:19.0618 1233652  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:45:19.0618 1233652  secdrv - ok
15:45:19.0648 1233652  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:45:19.0648 1233652  seclogon - ok
15:45:19.0668 1233652  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
15:45:19.0668 1233652  SENS - ok
15:45:19.0668 1233652  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:45:19.0678 1233652  SensrSvc - ok
15:45:19.0688 1233652  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:45:19.0688 1233652  Serenum - ok
15:45:19.0708 1233652  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:45:19.0708 1233652  Serial - ok
15:45:19.0718 1233652  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:45:19.0718 1233652  sermouse - ok
15:45:19.0738 1233652  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:45:19.0748 1233652  SessionEnv - ok
15:45:19.0758 1233652  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:45:19.0758 1233652  sffdisk - ok
15:45:19.0768 1233652  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:45:19.0778 1233652  sffp_mmc - ok
15:45:19.0778 1233652  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:45:19.0778 1233652  sffp_sd - ok
15:45:19.0798 1233652  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
15:45:19.0798 1233652  sfloppy - ok
15:45:19.0828 1233652  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:45:19.0838 1233652  SharedAccess - ok
15:45:19.0848 1233652  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:45:19.0858 1233652  ShellHWDetection - ok
15:45:19.0868 1233652  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:45:19.0868 1233652  SiSRaid2 - ok
15:45:19.0878 1233652  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:45:19.0878 1233652  SiSRaid4 - ok
15:45:19.0988 1233652  [ EB17DF573B4423DF0B3B2EE3B268A6DE ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
15:45:20.0018 1233652  Skype C2C Service - ok
15:45:20.0058 1233652  [ A37740568718F245E818D0C5575B9AA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:45:20.0068 1233652  SkypeUpdate - ok
15:45:20.0098 1233652  [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
15:45:20.0098 1233652  SmartDefragDriver - ok
15:45:20.0118 1233652  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:45:20.0118 1233652  Smb - ok
15:45:20.0148 1233652  [ 32CDE417100C530964E79C53B4E994CA ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
15:45:20.0148 1233652  snapman - ok
15:45:20.0168 1233652  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:45:20.0178 1233652  SNMPTRAP - ok
15:45:20.0198 1233652  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:45:20.0198 1233652  spldr - ok
15:45:20.0228 1233652  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:45:20.0228 1233652  Spooler - ok
15:45:20.0298 1233652  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:45:20.0328 1233652  sppsvc - ok
15:45:20.0348 1233652  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:45:20.0348 1233652  sppuinotify - ok
15:45:20.0368 1233652  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:45:20.0378 1233652  srv - ok
15:45:20.0388 1233652  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:45:20.0398 1233652  srv2 - ok
15:45:20.0408 1233652  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:45:20.0408 1233652  srvnet - ok
15:45:20.0428 1233652  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:45:20.0438 1233652  SSDPSRV - ok
15:45:20.0448 1233652  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:45:20.0458 1233652  SstpSvc - ok
15:45:20.0478 1233652  [ 773940B8D50439391FFA619B3EEF01A3 ] StatusAgent4    C:\Windows\SysWOW64\SAgent4.exe
15:45:20.0488 1233652  StatusAgent4 - ok
15:45:20.0498 1233652  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:45:20.0498 1233652  stexstor - ok
15:45:20.0528 1233652  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:45:20.0538 1233652  stisvc - ok
15:45:20.0588 1233652  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:45:20.0598 1233652  swenum - ok
15:45:20.0648 1233652  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:45:20.0648 1233652  swprv - ok
15:45:20.0698 1233652  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:45:20.0718 1233652  SysMain - ok
15:45:20.0738 1233652  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:45:20.0738 1233652  TabletInputService - ok
15:45:20.0748 1233652  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:45:20.0758 1233652  TapiSrv - ok
15:45:20.0778 1233652  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:45:20.0778 1233652  TBS - ok
15:45:20.0828 1233652  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:45:20.0848 1233652  Tcpip - ok
15:45:20.0868 1233652  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:45:20.0878 1233652  TCPIP6 - ok
15:45:20.0918 1233652  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:45:20.0918 1233652  tcpipreg - ok
15:45:20.0948 1233652  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:45:20.0948 1233652  TDPIPE - ok
15:45:20.0978 1233652  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:45:20.0988 1233652  TDTCP - ok
15:45:21.0008 1233652  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:45:21.0008 1233652  tdx - ok
15:45:21.0028 1233652  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:45:21.0028 1233652  TermDD - ok
15:45:21.0048 1233652  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:45:21.0058 1233652  TermService - ok
15:45:21.0068 1233652  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:45:21.0068 1233652  Themes - ok
15:45:21.0088 1233652  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:45:21.0088 1233652  THREADORDER - ok
15:45:21.0128 1233652  [ 6ADC063FD51F03EF0CAB3E716A725BD2 ] timounter       C:\Windows\system32\DRIVERS\timntr.sys
15:45:21.0128 1233652  timounter - ok
15:45:21.0198 1233652  [ 4DE3FAEE834E9EF5151A71866F6DB55D ] TivoBeacon2     C:\Program Files (x86)\TiVo\Desktop\TiVoBeacon.exe
15:45:21.0218 1233652  TivoBeacon2 - ok
15:45:21.0248 1233652  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:45:21.0258 1233652  TrkWks - ok
15:45:21.0278 1233652  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:45:21.0288 1233652  TrustedInstaller - ok
15:45:21.0298 1233652  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:45:21.0298 1233652  tssecsrv - ok
15:45:21.0328 1233652  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:45:21.0328 1233652  TsUsbFlt - ok
15:45:21.0358 1233652  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:45:21.0358 1233652  tunnel - ok
15:45:21.0398 1233652  [ AAF458CC200326BEF602B5339400BF86 ] tvnserver       C:\Program Files (x86)\TightVNC\tvnserver.exe
15:45:21.0408 1233652  tvnserver - ok
15:45:21.0428 1233652  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:45:21.0438 1233652  uagp35 - ok
15:45:21.0458 1233652  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:45:21.0458 1233652  udfs - ok
15:45:21.0488 1233652  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:45:21.0488 1233652  UI0Detect - ok
15:45:21.0498 1233652  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:45:21.0498 1233652  uliagpkx - ok
15:45:21.0528 1233652  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
15:45:21.0528 1233652  umbus - ok
15:45:21.0538 1233652  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:45:21.0538 1233652  UmPass - ok
15:45:21.0558 1233652  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:45:21.0558 1233652  upnphost - ok
15:45:21.0578 1233652  [ 241080F1B28E68F0D00F8F1066A3780D ] UrlFilter       C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
15:45:21.0578 1233652  UrlFilter - ok
15:45:21.0608 1233652  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:45:21.0618 1233652  USBAAPL64 - ok
15:45:21.0638 1233652  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:45:21.0638 1233652  usbaudio - ok
15:45:21.0668 1233652  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:45:21.0668 1233652  usbccgp - ok
15:45:21.0688 1233652  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:45:21.0698 1233652  usbcir - ok
15:45:21.0728 1233652  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:45:21.0728 1233652  usbehci - ok
15:45:21.0748 1233652  [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
15:45:21.0758 1233652  usbfilter - ok
15:45:21.0768 1233652  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:45:21.0768 1233652  usbhub - ok
15:45:21.0788 1233652  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
15:45:21.0788 1233652  usbohci - ok
15:45:21.0798 1233652  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:45:21.0798 1233652  usbprint - ok
15:45:21.0828 1233652  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
15:45:21.0828 1233652  usbscan - ok
15:45:21.0848 1233652  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:45:21.0848 1233652  USBSTOR - ok
15:45:21.0878 1233652  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
15:45:21.0878 1233652  usbuhci - ok
15:45:21.0898 1233652  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:45:21.0898 1233652  UxSms - ok
15:45:21.0908 1233652  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:45:21.0908 1233652  VaultSvc - ok
15:45:21.0918 1233652  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:45:21.0918 1233652  vdrvroot - ok
15:45:21.0938 1233652  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:45:21.0948 1233652  vds - ok
15:45:21.0968 1233652  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:45:21.0968 1233652  vga - ok
15:45:21.0978 1233652  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:45:21.0978 1233652  VgaSave - ok
15:45:22.0008 1233652  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:45:22.0008 1233652  vhdmp - ok
15:45:22.0018 1233652  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:45:22.0028 1233652  viaide - ok
15:45:22.0048 1233652  [ 96A4F56CBBA3DCF5D90CDA1BC218D040 ] vididr          C:\Windows\system32\DRIVERS\vididr.sys
15:45:22.0048 1233652  vididr - ok
15:45:22.0058 1233652  [ C69A784BEC737CD7460EBF3C3834D65E ] vidsflt53       C:\Windows\system32\DRIVERS\vsflt53.sys
15:45:22.0058 1233652  vidsflt53 - ok
15:45:22.0068 1233652  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:45:22.0068 1233652  volmgr - ok
15:45:22.0098 1233652  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:45:22.0098 1233652  volmgrx - ok
15:45:22.0108 1233652  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:45:22.0118 1233652  volsnap - ok
15:45:22.0128 1233652  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
15:45:22.0138 1233652  vsmraid - ok
15:45:22.0168 1233652  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:45:22.0188 1233652  VSS - ok
15:45:22.0258 1233652  [ 4B817450226F93C31ADD5BCC27FED27A ] vToolbarUpdater15.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe
15:45:22.0268 1233652  vToolbarUpdater15.2.0 - ok
15:45:22.0298 1233652  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:45:22.0298 1233652  vwifibus - ok
15:45:22.0328 1233652  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:45:22.0328 1233652  vwififlt - ok
15:45:22.0348 1233652  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
15:45:22.0348 1233652  vwifimp - ok
15:45:22.0378 1233652  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:45:22.0378 1233652  W32Time - ok
15:45:22.0408 1233652  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:45:22.0408 1233652  WacomPen - ok
15:45:22.0428 1233652  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:45:22.0428 1233652  WANARP - ok
15:45:22.0428 1233652  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:45:22.0428 1233652  Wanarpv6 - ok
15:45:22.0478 1233652  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:45:22.0488 1233652  WatAdminSvc - ok
15:45:22.0528 1233652  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:45:22.0538 1233652  wbengine - ok
15:45:22.0558 1233652  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:45:22.0568 1233652  WbioSrvc - ok
15:45:22.0588 1233652  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:45:22.0588 1233652  wcncsvc - ok
15:45:22.0598 1233652  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:45:22.0598 1233652  WcsPlugInService - ok
15:45:22.0618 1233652  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:45:22.0618 1233652  Wd - ok
15:45:22.0638 1233652  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
15:45:22.0638 1233652  WDC_SAM - ok
15:45:22.0668 1233652  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:45:22.0678 1233652  Wdf01000 - ok
15:45:22.0688 1233652  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:45:22.0698 1233652  WdiServiceHost - ok
15:45:22.0698 1233652  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:45:22.0698 1233652  WdiSystemHost - ok
15:45:22.0728 1233652  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:45:22.0738 1233652  WebClient - ok
15:45:22.0748 1233652  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:45:22.0748 1233652  Wecsvc - ok
15:45:22.0768 1233652  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:45:22.0768 1233652  wercplsupport - ok
15:45:22.0808 1233652  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:45:22.0818 1233652  WerSvc - ok
15:45:22.0898 1233652  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:45:22.0898 1233652  WfpLwf - ok
15:45:22.0938 1233652  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:45:22.0948 1233652  WIMMount - ok
15:45:22.0968 1233652  WinDefend - ok
15:45:22.0978 1233652  WinHttpAutoProxySvc - ok
15:45:23.0028 1233652  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:45:23.0028 1233652  Winmgmt - ok
15:45:23.0068 1233652  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:45:23.0088 1233652  WinRM - ok
15:45:23.0129 1233652  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:45:23.0129 1233652  WinUsb - ok
15:45:23.0159 1233652  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:45:23.0169 1233652  Wlansvc - ok
15:45:23.0209 1233652  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:45:23.0209 1233652  wlcrasvc - ok
15:45:23.0299 1233652  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:45:23.0329 1233652  wlidsvc - ok
15:45:23.0359 1233652  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:45:23.0359 1233652  WmiAcpi - ok
15:45:23.0379 1233652  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:45:23.0389 1233652  wmiApSrv - ok
15:45:23.0409 1233652  WMPNetworkSvc - ok
15:45:23.0419 1233652  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:45:23.0419 1233652  WPCSvc - ok
15:45:23.0449 1233652  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:45:23.0449 1233652  WPDBusEnum - ok
15:45:23.0469 1233652  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:45:23.0469 1233652  ws2ifsl - ok
15:45:23.0489 1233652  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
15:45:23.0499 1233652  wscsvc - ok
15:45:23.0499 1233652  WSearch - ok
15:45:23.0539 1233652  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:45:23.0569 1233652  wuauserv - ok
15:45:23.0589 1233652  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:45:23.0599 1233652  WudfPf - ok
15:45:23.0609 1233652  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:45:23.0609 1233652  WUDFRd - ok
15:45:23.0629 1233652  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:45:23.0629 1233652  wudfsvc - ok
15:45:23.0649 1233652  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:45:23.0659 1233652  WwanSvc - ok
15:45:23.0689 1233652  [ 98F3FBEC87352CEF3EF5D9298E389468 ] WysePocketCloud C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
15:45:23.0839 1233652  WysePocketCloud - ok
15:45:23.0869 1233652  [ 161F8FB21C088124F4D591AEBBDF8C57 ] WyseRemoteAccess C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\WyseRemoteAccess.exe
15:45:23.0869 1233652  WyseRemoteAccess - ok
15:45:23.0889 1233652  ================ Scan global ===============================
15:45:23.0929 1233652  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:45:23.0959 1233652  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:45:23.0969 1233652  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:45:23.0999 1233652  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:45:24.0019 1233652  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:45:24.0029 1233652  [Global] - ok
15:45:24.0029 1233652  ================ Scan MBR ==================================
15:45:24.0039 1233652  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:45:24.0369 1233652  \Device\Harddisk0\DR0 - ok
15:45:24.0379 1233652  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
15:45:24.0429 1233652  \Device\Harddisk1\DR1 - ok
15:45:24.0439 1233652  ================ Scan VBR ==================================
15:45:24.0439 1233652  [ 2F3A0D7C2540D51BFE2F29560E8B7538 ] \Device\Harddisk0\DR0\Partition1
15:45:24.0439 1233652  \Device\Harddisk0\DR0\Partition1 - ok
15:45:24.0489 1233652  [ 7B1139E3676B1E1148F60E4F7C05C232 ] \Device\Harddisk0\DR0\Partition2
15:45:24.0489 1233652  \Device\Harddisk0\DR0\Partition2 - ok
15:45:24.0529 1233652  [ 19FF9D406DCB8D32637877F5A3E37669 ] \Device\Harddisk0\DR0\Partition3
15:45:24.0529 1233652  \Device\Harddisk0\DR0\Partition3 - ok
15:45:24.0529 1233652  [ C8BFAB3D3525B4D6805868F97CBFC502 ] \Device\Harddisk1\DR1\Partition1
15:45:24.0529 1233652  \Device\Harddisk1\DR1\Partition1 - ok
15:45:24.0529 1233652  ============================================================
15:45:24.0529 1233652  Scan finished
15:45:24.0529 1233652  ============================================================
15:45:24.0549 1233904  Detected object count: 0
15:45:24.0549 1233904  Actual detected object count: 0
 

AdwCleaner

 

# AdwCleaner v2.303 - Logfile created 06/11/2013 at 15:47:38
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Frank - FRANK-HP
# Boot Mode : Normal
# Running from : C:\Users\Frank\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
File Deleted : C:\Users\Public\Desktop\eBay.lnk
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\SaveValet
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\BetterSoft
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\Users\Frank\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Deleted : C:\Users\Frank\AppData\Local\Ilivid
Folder Deleted : C:\Users\Frank\AppData\LocalLow\AVG Secure Search

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\SocialBit
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Key Deleted : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C3F3165C-74D3-6FDB-3274-14FDA8698CFA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gfmwvepr.default\prefs.js

C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gfmwvepr.default\user.js ... Deleted !

Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Deleted : user_pref("aol_toolbar.default.search.check", false);
Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\FireFoxExt\\15.2.0.5");
Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Deleted : user_pref("extensions.513299ba6ced1.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Deleted : user_pref("extensions.nurit5562nurit235.scode", "(function(){try{if('mystart.incredibar.com,premiumr[...]
Deleted : user_pref("extensions.skipscreen.hostMatchStr", "hxxp://www.4shared.com/(get|audio|file|document|dir[...]
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v27.0.1453.110

File : C:\Users\Frank\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [10666 octets] - [11/06/2013 15:47:38]

########## EOF - C:\AdwCleaner[S1].txt - [10727 octets] ##########

 

ESET has been running for 3 1/2 hours and has found 28 infected files so far.  I'll post that one as soon as it finishes.



#4 SomersetGuy

SomersetGuy
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:03:21 PM

Posted 11 June 2013 - 08:32 PM

Here are the results from the ESET Scan

 

C:\ProgramData\YouTube Downloader\ytd_installer.exe    a variant of Win32/Toolbar.Widgi application    
C:\Users\All Users\YouTube Downloader\ytd_installer.exe    a variant of Win32/Toolbar.Widgi application    
C:\Users\Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddhklebocjenbpcboadpjmnilandahhc\1\51ad09df613ed6.24060647.js    Win32/Adware.MultiPlug.H application    
C:\Users\Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\khhgoaijeioljgjeelheppbnnpjfbgdg\1\513299ba6cd743.94481870.js    Win32/Adware.MultiPlug.H application    
C:\Users\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6S96MPYH\agent_setup[1].exe    multiple threats    
C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gfmwvepr.default\extensions\jyr.eie@uueyoeyi-.edu\content\bg.js    Win32/Adware.MultiPlug.H application    
C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gfmwvepr.default\extensions\rhadgh@wio.org\content\bg.js    Win32/Adware.MultiPlug.H application    
C:\Users\Frank\Desktop\setup.exe    Win32/InstalleRex.J application    
C:\Users\Frank\Desktop\Software\iLividSetup.exe    Win32/Toolbar.SearchSuite application    
C:\Users\Frank\Desktop\Software\jZipSetup.exe    Win32/Toolbar.SearchSuite application    
C:\Users\Frank\Documents\New folderx\Interrogation03\Interrogation03.wmv.exe    Win32/InstalleRex.E application    
C:\Users\Frank\Downloads\cbsidlm-cbsi5_4_0_104-Advanced_SystemCare-BP-10407614.exe    probably a variant of Win32/CNETInstaller.A application    
C:\Users\Frank\Downloads\mplayer_Setup.exe    a variant of Win32/Adware.iBryte.G application    
C:\Users\Frank\Downloads\YouTubeDownloaderSetup33.exe    a variant of Win32/Toolbar.Widgi application    
C:\Documents and Settings\All Users\YouTube Downloader\ytd_installer.exe    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddhklebocjenbpcboadpjmnilandahhc\1\51ad09df613ed6.24060647.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\khhgoaijeioljgjeelheppbnnpjfbgdg\1\513299ba6cd743.94481870.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6S96MPYH\agent_setup[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gfmwvepr.default\extensions\jyr.eie@uueyoeyi-.edu\content\bg.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gfmwvepr.default\extensions\rhadgh@wio.org\content\bg.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\Desktop\setup.exe    Win32/InstalleRex.J application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\Desktop\Software\iLividSetup.exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\Desktop\Software\jZipSetup.exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\Documents\New folderx\Interrogation03\Interrogation03.wmv.exe    Win32/InstalleRex.E application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\Downloads\cbsidlm-cbsi5_4_0_104-Advanced_SystemCare-BP-10407614.exe    probably a variant of Win32/CNETInstaller.A application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\Downloads\mplayer_Setup.exe    a variant of Win32/Adware.iBryte.G application    cleaned by deleting - quarantined
C:\Documents and Settings\Frank\Downloads\YouTubeDownloaderSetup33.exe    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\BrowseToSave\sprotector.dll    a variant of Win32/SProtector.A application    cleaned by deleting - quarantined
T:\FRANK-HP\Backup Set 2013-01-14 101919\Backup Files 2013-01-14 101919\Backup files 49.zip    a variant of Win32/Toolbar.Widgi application    deleted - quarantined
 



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:21 PM

Posted 12 June 2013 - 08:51 AM

Do you still see easy life?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 SomersetGuy

SomersetGuy
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:03:21 PM

Posted 12 June 2013 - 09:00 AM

No It seems to be gone now. Thanks for you help I really appreciate it!  Is there anything else I should do? It looks like that ESET deleted something in the backups can I go in and delete all the backup files and create a new backup?


Edited by SomersetGuy, 12 June 2013 - 09:06 AM.


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:21 PM

Posted 12 June 2013 - 09:21 AM

Yes you can . Lets first be sure you have no rootkits.

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 SomersetGuy

SomersetGuy
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:03:21 PM

Posted 12 June 2013 - 10:11 AM

aswMBR

 

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-06-12 10:30:39
-----------------------------
10:30:39.848    OS Version: Windows x64 6.1.7601 Service Pack 1
10:30:39.848    Number of processors: 4 586 0xA00
10:30:39.848    ComputerName: FRANK-HP  UserName: Frank
10:30:42.453    Initialize success
10:31:42.068    AVAST engine defs: 13061200
10:31:51.506    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005c
10:31:51.521    Disk 0 Vendor: Hitachi_ JP4O Size: 953869MB BusType: 11
10:31:51.521    Disk 1  \Device\Harddisk1\DR1 -> \Device\0000005d
10:31:51.521    Disk 1 Vendor: WDC_WD10 05.0 Size: 953869MB BusType: 11
10:31:51.646    Disk 0 MBR read successfully
10:31:51.662    Disk 0 MBR scan
10:31:51.662    Disk 0 Windows 7 default MBR code
10:31:51.693    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 2048
10:31:51.709    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       940543 MB offset 206848
10:31:51.740    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS        13224 MB offset 1926438912
10:31:51.802    Disk 0 scanning C:\Windows\system32\drivers
10:32:00.788    Service scanning
10:32:20.303    Modules scanning
10:32:20.319    Disk 0 trace - called modules:
10:32:20.366    ntoskrnl.exe CLASSPNP.SYS disk.sys vsflt53.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
10:32:20.381    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005f3a060]
10:32:20.397    3 CLASSPNP.SYS[fffff88001afd43f] -> nt!IofCallDriver -> [0xfffffa8005a25e30]
10:32:20.413    5 vsflt53.sys[fffff88000fa8cfd] -> nt!IofCallDriver -> [0xfffffa80059f0ac0]
10:32:20.413    7 amd_xata.sys[fffff880010ead00] -> nt!IofCallDriver -> \Device\0000005c[0xfffffa80059e89c0]
10:32:22.846    AVAST engine scan C:\Windows
10:32:27.136    AVAST engine scan C:\Windows\system32
10:35:21.279    AVAST engine scan C:\Windows\system32\drivers
10:35:32.231    AVAST engine scan C:\Users\Frank
10:51:24.344    File: C:\Users\Frank\Desktop\Software\dds.scr  **INFECTED** Win32:Malware-gen
11:01:08.460    AVAST engine scan C:\ProgramData
11:04:30.559    Scan finished successfully
11:07:47.868    Disk 0 MBR has been saved successfully to "C:\Users\Frank\Desktop\MBR.dat"
11:07:47.868    The log file has been saved successfully to "C:\Users\Frank\Desktop\aswMBR.txt"


TDSSkiller

 

11:08:18.0911 6372  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:08:19.0426 6372  ============================================================
11:08:19.0426 6372  Current date / time: 2013/06/12 11:08:19.0426
11:08:19.0426 6372  SystemInfo:
11:08:19.0426 6372  
11:08:19.0426 6372  OS Version: 6.1.7601 ServicePack: 1.0
11:08:19.0426 6372  Product type: Workstation
11:08:19.0426 6372  ComputerName: FRANK-HP
11:08:19.0426 6372  UserName: Frank
11:08:19.0426 6372  Windows directory: C:\Windows
11:08:19.0426 6372  System windows directory: C:\Windows
11:08:19.0426 6372  Running under WOW64
11:08:19.0426 6372  Processor architecture: Intel x64
11:08:19.0426 6372  Number of processors: 4
11:08:19.0426 6372  Page size: 0x1000
11:08:19.0426 6372  Boot type: Normal boot
11:08:19.0426 6372  ============================================================
11:08:19.0987 6372  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:08:20.0003 6372  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:08:20.0034 6372  ============================================================
11:08:20.0034 6372  \Device\Harddisk0\DR0:
11:08:20.0034 6372  MBR partitions:
11:08:20.0034 6372  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:08:20.0034 6372  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x72CFF800
11:08:20.0034 6372  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x72D32000, BlocksNum 0x19D4000
11:08:20.0034 6372  \Device\Harddisk1\DR1:
11:08:20.0034 6372  MBR partitions:
11:08:20.0034 6372  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
11:08:20.0034 6372  ============================================================
11:08:20.0050 6372  C: <-> \Device\Harddisk0\DR0\Partition2
11:08:20.0097 6372  D: <-> \Device\Harddisk0\DR0\Partition3
11:08:20.0112 6372  T: <-> \Device\Harddisk1\DR1\Partition1
11:08:20.0112 6372  ============================================================
11:08:20.0112 6372  Initialize success
11:08:20.0112 6372  ============================================================
11:08:37.0849 0568  ============================================================
11:08:37.0849 0568  Scan started
11:08:37.0849 0568  Mode: Manual; TDLFS;
11:08:37.0849 0568  ============================================================
11:08:38.0317 0568  ================ Scan system memory ========================
11:08:38.0317 0568  System memory - ok
11:08:38.0317 0568  ================ Scan services =============================
11:08:38.0442 0568  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:08:38.0458 0568  1394ohci - ok
11:08:38.0473 0568  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:08:38.0489 0568  ACPI - ok
11:08:38.0505 0568  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:08:38.0505 0568  AcpiPmi - ok
11:08:38.0567 0568  [ D9425B7D296D187C7F1A2D76183D391B ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
11:08:38.0583 0568  AcrSch2Svc - ok
11:08:38.0645 0568  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:08:38.0645 0568  AdobeARMservice - ok
11:08:38.0754 0568  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:08:38.0754 0568  AdobeFlashPlayerUpdateSvc - ok
11:08:38.0801 0568  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
11:08:38.0801 0568  adp94xx - ok
11:08:38.0832 0568  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
11:08:38.0832 0568  adpahci - ok
11:08:38.0863 0568  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
11:08:38.0863 0568  adpu320 - ok
11:08:38.0941 0568  [ 9243229DFCCC99B5441750EBA49F1B14 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
11:08:38.0957 0568  AdvancedSystemCareService6 - ok
11:08:38.0973 0568  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:08:38.0973 0568  AeLookupSvc - ok
11:08:39.0004 0568  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
11:08:39.0004 0568  AFD - ok
11:08:39.0035 0568  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
11:08:39.0035 0568  agp440 - ok
11:08:39.0051 0568  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
11:08:39.0051 0568  ALG - ok
11:08:39.0066 0568  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:08:39.0066 0568  aliide - ok
11:08:39.0082 0568  [ 2FDCB3E855076CE97CCB58E2CF8F2A09 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:08:39.0097 0568  AMD External Events Utility - ok
11:08:39.0144 0568  AMD FUEL Service - ok
11:08:39.0160 0568  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
11:08:39.0160 0568  amdide - ok
11:08:39.0191 0568  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
11:08:39.0191 0568  amdiox64 - ok
11:08:39.0207 0568  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
11:08:39.0207 0568  AmdK8 - ok
11:08:39.0394 0568  [ 9920704BF815A5B42DA5264F013AAEB7 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:08:39.0503 0568  amdkmdag - ok
11:08:39.0519 0568  [ 0D1055A47A8F5DC1CAA2701831293EBB ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
11:08:39.0519 0568  amdkmdap - ok
11:08:39.0534 0568  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
11:08:39.0534 0568  AmdPPM - ok
11:08:39.0550 0568  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:08:39.0550 0568  amdsata - ok
11:08:39.0581 0568  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
11:08:39.0597 0568  amdsbs - ok
11:08:39.0597 0568  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:08:39.0612 0568  amdxata - ok
11:08:39.0628 0568  [ 352476C98EF3952563A14F767491BBA9 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
11:08:39.0628 0568  amd_sata - ok
11:08:39.0643 0568  [ F4805C309FE48D6939147FE5CCDB1AD4 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
11:08:39.0643 0568  amd_xata - ok
11:08:39.0659 0568  [ 0E2BA6DC63E9CF3BF275856735A3E3BE ] AODDriver4.01   C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:08:39.0675 0568  AODDriver4.01 - ok
11:08:39.0675 0568  [ 0E2BA6DC63E9CF3BF275856735A3E3BE ] AODDriver4.1    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:08:39.0675 0568  AODDriver4.1 - ok
11:08:39.0690 0568  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
11:08:39.0690 0568  AppID - ok
11:08:39.0721 0568  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:08:39.0721 0568  AppIDSvc - ok
11:08:39.0737 0568  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
11:08:39.0753 0568  Appinfo - ok
11:08:39.0784 0568  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:08:39.0799 0568  Apple Mobile Device - ok
11:08:39.0815 0568  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
11:08:39.0815 0568  arc - ok
11:08:39.0831 0568  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
11:08:39.0831 0568  arcsas - ok
11:08:39.0846 0568  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:08:39.0846 0568  AsyncMac - ok
11:08:39.0877 0568  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
11:08:39.0877 0568  atapi - ok
11:08:39.0909 0568  [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie64.sys
11:08:39.0909 0568  AtiPcie - ok
11:08:39.0940 0568  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:08:39.0940 0568  AudioEndpointBuilder - ok
11:08:39.0955 0568  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:08:39.0971 0568  AudioSrv - ok
11:08:40.0096 0568  [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
11:08:40.0143 0568  AVGIDSAgent - ok
11:08:40.0158 0568  [ 139BD30C32BEE830D0CF39C5324D79DE ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
11:08:40.0158 0568  AVGIDSDriver - ok
11:08:40.0189 0568  [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
11:08:40.0189 0568  AVGIDSHA - ok
11:08:40.0205 0568  [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
11:08:40.0221 0568  Avgldx64 - ok
11:08:40.0252 0568  [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
11:08:40.0267 0568  Avgloga - ok
11:08:40.0299 0568  [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
11:08:40.0299 0568  Avgmfx64 - ok
11:08:40.0314 0568  [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
11:08:40.0314 0568  Avgrkx64 - ok
11:08:40.0314 0568  [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
11:08:40.0330 0568  Avgtdia - ok
11:08:40.0345 0568  [ 3B5657B6C11CDA87F664DD6F7DD0702D ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
11:08:40.0345 0568  avgtp - ok
11:08:40.0377 0568  [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
11:08:40.0377 0568  avgwd - ok
11:08:40.0408 0568  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:08:40.0408 0568  AxInstSV - ok
11:08:40.0455 0568  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
11:08:40.0455 0568  b06bdrv - ok
11:08:40.0486 0568  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:08:40.0486 0568  b57nd60a - ok
11:08:40.0533 0568  [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
11:08:40.0533 0568  BBSvc - ok
11:08:40.0564 0568  [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
11:08:40.0564 0568  BBUpdate - ok
11:08:40.0595 0568  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:08:40.0595 0568  BDESVC - ok
11:08:40.0611 0568  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:08:40.0611 0568  Beep - ok
11:08:40.0657 0568  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
11:08:40.0673 0568  BFE - ok
11:08:40.0704 0568  [ 85D5E6AC46A2AE4672C1AC813AE45B95 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
11:08:40.0704 0568  BingDesktopUpdate - ok
11:08:40.0751 0568  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
11:08:40.0767 0568  BITS - ok
11:08:40.0782 0568  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:08:40.0782 0568  blbdrive - ok
11:08:40.0813 0568  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:08:40.0813 0568  Bonjour Service - ok
11:08:40.0829 0568  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:08:40.0829 0568  bowser - ok
11:08:40.0845 0568  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:08:40.0845 0568  BrFiltLo - ok
11:08:40.0860 0568  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:08:40.0860 0568  BrFiltUp - ok
11:08:40.0860 0568  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
11:08:40.0876 0568  BridgeMP - ok
11:08:40.0891 0568  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
11:08:40.0891 0568  Browser - ok
11:08:40.0907 0568  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:08:40.0923 0568  Brserid - ok
11:08:40.0938 0568  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:08:40.0938 0568  BrSerWdm - ok
11:08:40.0938 0568  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:08:40.0938 0568  BrUsbMdm - ok
11:08:40.0954 0568  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:08:40.0954 0568  BrUsbSer - ok
11:08:40.0954 0568  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
11:08:40.0969 0568  BTHMODEM - ok
11:08:40.0985 0568  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
11:08:40.0985 0568  bthserv - ok
11:08:40.0985 0568  catchme - ok
11:08:41.0001 0568  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:08:41.0001 0568  cdfs - ok
11:08:41.0016 0568  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:08:41.0032 0568  cdrom - ok
11:08:41.0047 0568  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
11:08:41.0047 0568  CertPropSvc - ok
11:08:41.0047 0568  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:08:41.0063 0568  circlass - ok
11:08:41.0063 0568  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
11:08:41.0079 0568  CLFS - ok
11:08:41.0125 0568  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:08:41.0125 0568  clr_optimization_v2.0.50727_32 - ok
11:08:41.0172 0568  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:08:41.0172 0568  clr_optimization_v2.0.50727_64 - ok
11:08:41.0219 0568  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:08:41.0219 0568  clr_optimization_v4.0.30319_32 - ok
11:08:41.0250 0568  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:08:41.0250 0568  clr_optimization_v4.0.30319_64 - ok
11:08:41.0281 0568  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:08:41.0281 0568  CmBatt - ok
11:08:41.0297 0568  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:08:41.0297 0568  cmdide - ok
11:08:41.0328 0568  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
11:08:41.0344 0568  CNG - ok
11:08:41.0359 0568  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:08:41.0359 0568  Compbatt - ok
11:08:41.0375 0568  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
11:08:41.0375 0568  CompositeBus - ok
11:08:41.0375 0568  COMSysApp - ok
11:08:41.0391 0568  [ 2285B31039611D509F6120D691CA661F ] CpqDfw          C:\Windows\system32\drivers\CpqDfw.sys
11:08:41.0391 0568  CpqDfw - ok
11:08:41.0406 0568  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
11:08:41.0406 0568  crcdisk - ok
11:08:41.0422 0568  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:08:41.0422 0568  CryptSvc - ok
11:08:41.0453 0568  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:08:41.0469 0568  DcomLaunch - ok
11:08:41.0484 0568  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
11:08:41.0484 0568  defragsvc - ok
11:08:41.0500 0568  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:08:41.0500 0568  DfsC - ok
11:08:41.0531 0568  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:08:41.0531 0568  Dhcp - ok
11:08:41.0562 0568  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
11:08:41.0562 0568  discache - ok
11:08:41.0578 0568  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
11:08:41.0578 0568  Disk - ok
11:08:41.0609 0568  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:08:41.0609 0568  Dnscache - ok
11:08:41.0640 0568  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:08:41.0656 0568  dot3svc - ok
11:08:41.0671 0568  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
11:08:41.0671 0568  DPS - ok
11:08:41.0687 0568  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:08:41.0687 0568  drmkaud - ok
11:08:41.0734 0568  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:08:41.0765 0568  DXGKrnl - ok
11:08:41.0781 0568  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
11:08:41.0781 0568  EapHost - ok
11:08:41.0859 0568  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
11:08:41.0890 0568  ebdrv - ok
11:08:41.0905 0568  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
11:08:41.0921 0568  EFS - ok
11:08:41.0968 0568  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:08:41.0983 0568  ehRecvr - ok
11:08:42.0015 0568  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
11:08:42.0015 0568  ehSched - ok
11:08:42.0046 0568  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
11:08:42.0061 0568  elxstor - ok
11:08:42.0093 0568  [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
11:08:42.0093 0568  EpsonBidirectionalService - ok
11:08:42.0124 0568  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:08:42.0124 0568  ErrDev - ok
11:08:42.0155 0568  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
11:08:42.0155 0568  EventSystem - ok
11:08:42.0186 0568  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
11:08:42.0186 0568  exfat - ok
11:08:42.0217 0568  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:08:42.0217 0568  fastfat - ok
11:08:42.0249 0568  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
11:08:42.0264 0568  Fax - ok
11:08:42.0280 0568  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:08:42.0280 0568  fdc - ok
11:08:42.0295 0568  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:08:42.0295 0568  fdPHost - ok
11:08:42.0311 0568  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:08:42.0311 0568  FDResPub - ok
11:08:42.0327 0568  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:08:42.0327 0568  FileInfo - ok
11:08:42.0389 0568  [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor     C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
11:08:42.0389 0568  FileMonitor - ok
11:08:42.0405 0568  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:08:42.0405 0568  Filetrace - ok
11:08:42.0420 0568  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:08:42.0436 0568  flpydisk - ok
11:08:42.0451 0568  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:08:42.0467 0568  FltMgr - ok
11:08:42.0514 0568  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
11:08:42.0529 0568  FontCache - ok
11:08:42.0561 0568  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:08:42.0561 0568  FontCache3.0.0.0 - ok
11:08:42.0592 0568  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:08:42.0592 0568  FsDepends - ok
11:08:42.0607 0568  [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
11:08:42.0607 0568  fssfltr - ok
11:08:42.0685 0568  [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
11:08:42.0717 0568  fsssvc - ok
11:08:42.0732 0568  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:08:42.0732 0568  Fs_Rec - ok
11:08:42.0763 0568  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:08:42.0763 0568  fvevol - ok
11:08:42.0779 0568  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
11:08:42.0795 0568  gagp30kx - ok
11:08:42.0841 0568  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
11:08:42.0841 0568  GamesAppService - ok
11:08:42.0904 0568  [ 2973B4EB7BE10A0D491B2037DCAAE88F ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
11:08:42.0904 0568  Garmin Core Update Service - ok
11:08:42.0935 0568  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
11:08:42.0935 0568  gpsvc - ok
11:08:42.0982 0568  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:08:42.0982 0568  gupdate - ok
11:08:42.0982 0568  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:08:42.0982 0568  gupdatem - ok
11:08:42.0997 0568  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:08:42.0997 0568  hcw85cir - ok
11:08:43.0029 0568  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:08:43.0029 0568  HdAudAddService - ok
11:08:43.0044 0568  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
11:08:43.0044 0568  HDAudBus - ok
11:08:43.0060 0568  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:08:43.0060 0568  HidBatt - ok
11:08:43.0075 0568  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
11:08:43.0075 0568  HidBth - ok
11:08:43.0075 0568  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
11:08:43.0091 0568  HidIr - ok
11:08:43.0138 0568  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
11:08:43.0153 0568  hidserv - ok
11:08:43.0169 0568  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:08:43.0185 0568  HidUsb - ok
11:08:43.0341 0568  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:08:43.0341 0568  hkmsvc - ok
11:08:43.0372 0568  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:08:43.0372 0568  HomeGroupListener - ok
11:08:43.0403 0568  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:08:43.0403 0568  HomeGroupProvider - ok
11:08:43.0450 0568  [ 15863E96F68C0B534AE5003F98CABBC3 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
11:08:43.0450 0568  HP Power Assistant Service - ok
11:08:43.0512 0568  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
11:08:43.0528 0568  HP Support Assistant Service - ok
11:08:43.0559 0568  [ 3DC11A802353401332D49C3CBFBBE5FC ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
11:08:43.0559 0568  HPClientSvc - ok
11:08:43.0621 0568  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
11:08:43.0637 0568  hpqwmiex - ok
11:08:43.0668 0568  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:08:43.0668 0568  HpSAMD - ok
11:08:43.0699 0568  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:08:43.0715 0568  HTTP - ok
11:08:43.0746 0568  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:08:43.0746 0568  hwpolicy - ok
11:08:43.0762 0568  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
11:08:43.0762 0568  i8042prt - ok
11:08:43.0777 0568  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:08:43.0793 0568  iaStorV - ok
11:08:43.0824 0568  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:08:43.0824 0568  idsvc - ok
11:08:43.0840 0568  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
11:08:43.0855 0568  iirsp - ok
11:08:43.0871 0568  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
11:08:43.0871 0568  IKEEXT - ok
11:08:43.0902 0568  [ 8AE99EBE30E8338907361018D9030835 ] IMFservice      C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
11:08:43.0918 0568  IMFservice - ok
11:08:43.0965 0568  [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:08:43.0980 0568  IntcAzAudAddService - ok
11:08:43.0996 0568  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
11:08:43.0996 0568  intelide - ok
11:08:44.0011 0568  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:08:44.0011 0568  intelppm - ok
11:08:44.0027 0568  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:08:44.0043 0568  IPBusEnum - ok
11:08:44.0058 0568  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:08:44.0058 0568  IpFilterDriver - ok
11:08:44.0089 0568  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:08:44.0089 0568  iphlpsvc - ok
11:08:44.0105 0568  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:08:44.0105 0568  IPMIDRV - ok
11:08:44.0121 0568  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:08:44.0121 0568  IPNAT - ok
11:08:44.0152 0568  [ 2872B90D57C8310194A78A9787406467 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
11:08:44.0152 0568  iPod Service - ok
11:08:44.0167 0568  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:08:44.0167 0568  IRENUM - ok
11:08:44.0183 0568  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:08:44.0183 0568  isapnp - ok
11:08:44.0199 0568  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:08:44.0199 0568  iScsiPrt - ok
11:08:44.0214 0568  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:08:44.0214 0568  kbdclass - ok
11:08:44.0230 0568  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:08:44.0230 0568  kbdhid - ok
11:08:44.0230 0568  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
11:08:44.0245 0568  KeyIso - ok
11:08:44.0261 0568  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:08:44.0261 0568  KSecDD - ok
11:08:44.0277 0568  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:08:44.0277 0568  KSecPkg - ok
11:08:44.0292 0568  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:08:44.0292 0568  ksthunk - ok
11:08:44.0308 0568  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:08:44.0308 0568  KtmRm - ok
11:08:44.0323 0568  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
11:08:44.0323 0568  LanmanServer - ok
11:08:44.0355 0568  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:08:44.0355 0568  LanmanWorkstation - ok
11:08:44.0386 0568  [ FA4A45C179AB0E0F1A31B9751D4B18D7 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
11:08:44.0386 0568  LightScribeService - ok
11:08:44.0401 0568  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:08:44.0417 0568  lltdio - ok
11:08:44.0417 0568  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:08:44.0433 0568  lltdsvc - ok
11:08:44.0433 0568  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:08:44.0433 0568  lmhosts - ok
11:08:44.0464 0568  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
11:08:44.0464 0568  LSI_FC - ok
11:08:44.0479 0568  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
11:08:44.0479 0568  LSI_SAS - ok
11:08:44.0495 0568  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:08:44.0495 0568  LSI_SAS2 - ok
11:08:44.0511 0568  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:08:44.0511 0568  LSI_SCSI - ok
11:08:44.0526 0568  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
11:08:44.0526 0568  luafv - ok
11:08:44.0526 0568  lxba_device - ok
11:08:44.0573 0568  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:08:44.0589 0568  Mcx2Svc - ok
11:08:44.0604 0568  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
11:08:44.0604 0568  megasas - ok
11:08:44.0635 0568  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
11:08:44.0635 0568  MegaSR - ok
11:08:44.0651 0568  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
11:08:44.0667 0568  MMCSS - ok
11:08:44.0667 0568  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
11:08:44.0682 0568  Modem - ok
11:08:44.0698 0568  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:08:44.0698 0568  monitor - ok
11:08:44.0713 0568  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:08:44.0713 0568  mouclass - ok
11:08:44.0713 0568  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:08:44.0713 0568  mouhid - ok
11:08:44.0745 0568  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:08:44.0745 0568  mountmgr - ok
11:08:44.0776 0568  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:08:44.0776 0568  MozillaMaintenance - ok
11:08:44.0791 0568  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:08:44.0791 0568  mpio - ok
11:08:44.0807 0568  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:08:44.0807 0568  mpsdrv - ok
11:08:44.0854 0568  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:08:44.0854 0568  MpsSvc - ok
11:08:44.0885 0568  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:08:44.0885 0568  MRxDAV - ok
11:08:44.0901 0568  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:08:44.0901 0568  mrxsmb - ok
11:08:44.0947 0568  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:08:44.0947 0568  mrxsmb10 - ok
11:08:44.0963 0568  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:08:44.0979 0568  mrxsmb20 - ok
11:08:44.0994 0568  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:08:44.0994 0568  msahci - ok
11:08:45.0010 0568  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:08:45.0010 0568  msdsm - ok
11:08:45.0025 0568  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
11:08:45.0025 0568  MSDTC - ok
11:08:45.0057 0568  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:08:45.0057 0568  Msfs - ok
11:08:45.0072 0568  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:08:45.0072 0568  mshidkmdf - ok
11:08:45.0088 0568  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:08:45.0088 0568  msisadrv - ok
11:08:45.0103 0568  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:08:45.0119 0568  MSiSCSI - ok
11:08:45.0119 0568  msiserver - ok
11:08:45.0135 0568  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:08:45.0135 0568  MSKSSRV - ok
11:08:45.0150 0568  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:08:45.0150 0568  MSPCLOCK - ok
11:08:45.0166 0568  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:08:45.0166 0568  MSPQM - ok
11:08:45.0197 0568  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:08:45.0197 0568  MsRPC - ok
11:08:45.0213 0568  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
11:08:45.0213 0568  mssmbios - ok
11:08:45.0228 0568  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:08:45.0228 0568  MSTEE - ok
11:08:45.0244 0568  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
11:08:45.0244 0568  MTConfig - ok
11:08:45.0275 0568  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:08:45.0275 0568  Mup - ok
11:08:45.0306 0568  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
11:08:45.0306 0568  napagent - ok
11:08:45.0322 0568  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:08:45.0337 0568  NativeWifiP - ok
11:08:45.0384 0568  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:08:45.0400 0568  NDIS - ok
11:08:45.0431 0568  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:08:45.0431 0568  NdisCap - ok
11:08:45.0447 0568  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:08:45.0447 0568  NdisTapi - ok
11:08:45.0478 0568  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:08:45.0478 0568  Ndisuio - ok
11:08:45.0493 0568  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:08:45.0493 0568  NdisWan - ok
11:08:45.0525 0568  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:08:45.0525 0568  NDProxy - ok
11:08:45.0540 0568  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:08:45.0540 0568  NetBIOS - ok
11:08:45.0556 0568  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:08:45.0556 0568  NetBT - ok
11:08:45.0556 0568  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
11:08:45.0556 0568  Netlogon - ok
11:08:45.0587 0568  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
11:08:45.0587 0568  Netman - ok
11:08:45.0603 0568  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
11:08:45.0603 0568  netprofm - ok
11:08:45.0665 0568  [ 2EED549279D7FBD10B846B5397573967 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
11:08:45.0696 0568  netr28x - ok
11:08:45.0712 0568  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:08:45.0712 0568  NetTcpPortSharing - ok
11:08:45.0727 0568  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
11:08:45.0727 0568  nfrd960 - ok
11:08:45.0759 0568  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:08:45.0759 0568  NlaSvc - ok
11:08:45.0774 0568  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:08:45.0774 0568  Npfs - ok
11:08:45.0790 0568  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
11:08:45.0790 0568  nsi - ok
11:08:45.0805 0568  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:08:45.0805 0568  nsiproxy - ok
11:08:45.0837 0568  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:08:45.0868 0568  Ntfs - ok
11:08:45.0868 0568  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
11:08:45.0868 0568  Null - ok
11:08:45.0883 0568  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:08:45.0899 0568  nvraid - ok
11:08:45.0899 0568  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:08:45.0899 0568  nvstor - ok
11:08:45.0930 0568  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:08:45.0930 0568  nv_agp - ok
11:08:45.0946 0568  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:08:45.0946 0568  ohci1394 - ok
11:08:45.0961 0568  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:08:45.0961 0568  ose - ok
11:08:46.0117 0568  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:08:46.0164 0568  osppsvc - ok
11:08:46.0180 0568  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:08:46.0195 0568  p2pimsvc - ok
11:08:46.0211 0568  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:08:46.0211 0568  p2psvc - ok
11:08:46.0227 0568  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:08:46.0227 0568  Parport - ok
11:08:46.0258 0568  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:08:46.0258 0568  partmgr - ok
11:08:46.0273 0568  [ 8A0F8A9580D9F2FC512A35D5709088A9 ] pavboot         C:\Windows\system32\drivers\pavboot64.sys
11:08:46.0273 0568  pavboot - ok
11:08:46.0305 0568  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:08:46.0305 0568  PcaSvc - ok
11:08:46.0336 0568  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
11:08:46.0336 0568  pci - ok
11:08:46.0367 0568  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
11:08:46.0367 0568  pciide - ok
11:08:46.0383 0568  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
11:08:46.0398 0568  pcmcia - ok
11:08:46.0414 0568  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:08:46.0414 0568  pcw - ok
11:08:46.0445 0568  pdfcDispatcher - ok
11:08:46.0461 0568  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:08:46.0461 0568  PEAUTH - ok
11:08:46.0539 0568  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:08:46.0539 0568  PerfHost - ok
11:08:46.0617 0568  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
11:08:46.0632 0568  pla - ok
11:08:46.0648 0568  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:08:46.0663 0568  PlugPlay - ok
11:08:46.0679 0568  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:08:46.0679 0568  PNRPAutoReg - ok
11:08:46.0695 0568  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:08:46.0710 0568  PNRPsvc - ok
11:08:46.0726 0568  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:08:46.0741 0568  PolicyAgent - ok
11:08:46.0773 0568  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
11:08:46.0773 0568  Power - ok
11:08:46.0804 0568  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:08:46.0804 0568  PptpMiniport - ok
11:08:46.0819 0568  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
11:08:46.0819 0568  Processor - ok
11:08:46.0851 0568  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:08:46.0866 0568  ProfSvc - ok
11:08:46.0882 0568  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:08:46.0882 0568  ProtectedStorage - ok
11:08:46.0913 0568  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:08:46.0913 0568  Psched - ok
11:08:46.0960 0568  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
11:08:46.0975 0568  ql2300 - ok
11:08:46.0991 0568  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
11:08:46.0991 0568  ql40xx - ok
11:08:47.0007 0568  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
11:08:47.0022 0568  QWAVE - ok
11:08:47.0022 0568  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:08:47.0038 0568  QWAVEdrv - ok
11:08:47.0069 0568  [ F4C083E290BCBC8DA05C6E2C7F8053B9 ] RalinkRegistryWriter C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
11:08:47.0069 0568  RalinkRegistryWriter - ok
11:08:47.0100 0568  [ C3B515559046A89BB0E0F2CEEF73CABC ] RalinkRegistryWriter64 C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
11:08:47.0100 0568  RalinkRegistryWriter64 - ok
11:08:47.0131 0568  [ ACCFA0846D9C7BD6A9F506982B812A5C ] RaMediaServer   C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe
11:08:47.0147 0568  RaMediaServer - ok
11:08:47.0163 0568  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:08:47.0163 0568  RasAcd - ok
11:08:47.0178 0568  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:08:47.0178 0568  RasAgileVpn - ok
11:08:47.0194 0568  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
11:08:47.0194 0568  RasAuto - ok
11:08:47.0225 0568  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:08:47.0225 0568  Rasl2tp - ok
11:08:47.0241 0568  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
11:08:47.0241 0568  RasMan - ok
11:08:47.0256 0568  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:08:47.0256 0568  RasPppoe - ok
11:08:47.0287 0568  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:08:47.0287 0568  RasSstp - ok
11:08:47.0303 0568  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:08:47.0319 0568  rdbss - ok
11:08:47.0334 0568  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:08:47.0334 0568  rdpbus - ok
11:08:47.0350 0568  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:08:47.0350 0568  RDPCDD - ok
11:08:47.0365 0568  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:08:47.0365 0568  RDPENCDD - ok
11:08:47.0381 0568  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:08:47.0381 0568  RDPREFMP - ok
11:08:47.0412 0568  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:08:47.0412 0568  RdpVideoMiniport - ok
11:08:47.0443 0568  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:08:47.0443 0568  RDPWD - ok
11:08:47.0475 0568  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:08:47.0475 0568  rdyboost - ok
11:08:47.0521 0568  [ 943ADE1DD6789432419A87BB85884322 ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe
11:08:47.0521 0568  ReflectService.exe - ok
11:08:47.0568 0568  [ 5F9AC3243C206EC95F32E4348AE67C13 ] RegFilter       C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
11:08:47.0568 0568  RegFilter - ok
11:08:47.0599 0568  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:08:47.0599 0568  RemoteAccess - ok
11:08:47.0615 0568  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:08:47.0615 0568  RemoteRegistry - ok
11:08:47.0646 0568  [ C1568E17039B2EC2B73A4F880DDD51E5 ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
11:08:47.0646 0568  RoxioNow Service - ok
11:08:47.0662 0568  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:08:47.0662 0568  RpcEptMapper - ok
11:08:47.0677 0568  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
11:08:47.0677 0568  RpcLocator - ok
11:08:47.0709 0568  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
11:08:47.0709 0568  RpcSs - ok
11:08:47.0740 0568  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:08:47.0740 0568  rspndr - ok
11:08:47.0771 0568  [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
11:08:47.0771 0568  RTL8167 - ok
11:08:47.0787 0568  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
11:08:47.0787 0568  SamSs - ok
11:08:47.0818 0568  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:08:47.0818 0568  sbp2port - ok
11:08:47.0880 0568  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
11:08:47.0896 0568  SBSDWSCService - ok
11:08:47.0927 0568  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:08:47.0927 0568  SCardSvr - ok
11:08:47.0943 0568  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:08:47.0943 0568  scfilter - ok
11:08:47.0989 0568  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
11:08:47.0989 0568  Schedule - ok
11:08:48.0021 0568  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:08:48.0021 0568  SCPolicySvc - ok
11:08:48.0036 0568  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:08:48.0036 0568  SDRSVC - ok
11:08:48.0036 0568  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:08:48.0052 0568  secdrv - ok
11:08:48.0067 0568  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
11:08:48.0067 0568  seclogon - ok
11:08:48.0083 0568  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
11:08:48.0083 0568  SENS - ok
11:08:48.0099 0568  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:08:48.0099 0568  SensrSvc - ok
11:08:48.0114 0568  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:08:48.0114 0568  Serenum - ok
11:08:48.0130 0568  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:08:48.0130 0568  Serial - ok
11:08:48.0145 0568  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
11:08:48.0145 0568  sermouse - ok
11:08:48.0177 0568  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:08:48.0177 0568  SessionEnv - ok
11:08:48.0192 0568  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:08:48.0192 0568  sffdisk - ok
11:08:48.0208 0568  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:08:48.0208 0568  sffp_mmc - ok
11:08:48.0208 0568  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:08:48.0208 0568  sffp_sd - ok
11:08:48.0223 0568  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
11:08:48.0223 0568  sfloppy - ok
11:08:48.0255 0568  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:08:48.0270 0568  SharedAccess - ok
11:08:48.0286 0568  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:08:48.0301 0568  ShellHWDetection - ok
11:08:48.0301 0568  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:08:48.0317 0568  SiSRaid2 - ok
11:08:48.0317 0568  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
11:08:48.0317 0568  SiSRaid4 - ok
11:08:48.0457 0568  [ EB17DF573B4423DF0B3B2EE3B268A6DE ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:08:48.0504 0568  Skype C2C Service - ok
11:08:48.0535 0568  [ A37740568718F245E818D0C5575B9AA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
11:08:48.0551 0568  SkypeUpdate - ok
11:08:48.0567 0568  [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
11:08:48.0567 0568  SmartDefragDriver - ok
11:08:48.0582 0568  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:08:48.0582 0568  Smb - ok
11:08:48.0613 0568  [ 32CDE417100C530964E79C53B4E994CA ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
11:08:48.0613 0568  snapman - ok
11:08:48.0645 0568  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:08:48.0645 0568  SNMPTRAP - ok
11:08:48.0660 0568  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:08:48.0660 0568  spldr - ok
11:08:48.0691 0568  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
11:08:48.0691 0568  Spooler - ok
11:08:48.0769 0568  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
11:08:48.0816 0568  sppsvc - ok
11:08:48.0832 0568  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:08:48.0832 0568  sppuinotify - ok
11:08:48.0863 0568  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:08:48.0863 0568  srv - ok
11:08:48.0879 0568  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:08:48.0879 0568  srv2 - ok
11:08:48.0894 0568  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:08:48.0894 0568  srvnet - ok
11:08:48.0910 0568  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:08:48.0910 0568  SSDPSRV - ok
11:08:48.0925 0568  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:08:48.0925 0568  SstpSvc - ok
11:08:48.0941 0568  [ 773940B8D50439391FFA619B3EEF01A3 ] StatusAgent4    C:\Windows\SysWOW64\SAgent4.exe
11:08:48.0957 0568  StatusAgent4 - ok
11:08:48.0972 0568  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
11:08:48.0972 0568  stexstor - ok
11:08:48.0988 0568  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
11:08:49.0003 0568  stisvc - ok
11:08:49.0019 0568  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
11:08:49.0019 0568  swenum - ok
11:08:49.0050 0568  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
11:08:49.0066 0568  swprv - ok
11:08:49.0097 0568  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
11:08:49.0128 0568  SysMain - ok
11:08:49.0144 0568  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:08:49.0144 0568  TabletInputService - ok
11:08:49.0159 0568  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:08:49.0159 0568  TapiSrv - ok
11:08:49.0175 0568  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
11:08:49.0175 0568  TBS - ok
11:08:49.0237 0568  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:08:49.0253 0568  Tcpip - ok
11:08:49.0269 0568  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:08:49.0284 0568  TCPIP6 - ok
11:08:49.0315 0568  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:08:49.0315 0568  tcpipreg - ok
11:08:49.0331 0568  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:08:49.0331 0568  TDPIPE - ok
11:08:49.0362 0568  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:08:49.0362 0568  TDTCP - ok
11:08:49.0409 0568  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:08:49.0409 0568  tdx - ok
11:08:49.0425 0568  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
11:08:49.0440 0568  TermDD - ok
11:08:49.0471 0568  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
11:08:49.0471 0568  TermService - ok
11:08:49.0487 0568  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
11:08:49.0487 0568  Themes - ok
11:08:49.0518 0568  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
11:08:49.0518 0568  THREADORDER - ok
11:08:49.0565 0568  [ 6ADC063FD51F03EF0CAB3E716A725BD2 ] timounter       C:\Windows\system32\DRIVERS\timntr.sys
11:08:49.0581 0568  timounter - ok
11:08:49.0643 0568  [ 4DE3FAEE834E9EF5151A71866F6DB55D ] TivoBeacon2     C:\Program Files (x86)\TiVo\Desktop\TiVoBeacon.exe
11:08:49.0674 0568  TivoBeacon2 - ok
11:08:49.0705 0568  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
11:08:49.0705 0568  TrkWks - ok
11:08:49.0737 0568  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:08:49.0737 0568  TrustedInstaller - ok
11:08:49.0752 0568  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:08:49.0752 0568  tssecsrv - ok
11:08:49.0768 0568  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:08:49.0783 0568  TsUsbFlt - ok
11:08:49.0799 0568  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:08:49.0799 0568  tunnel - ok
11:08:49.0846 0568  [ AAF458CC200326BEF602B5339400BF86 ] tvnserver       C:\Program Files (x86)\TightVNC\tvnserver.exe
11:08:49.0861 0568  tvnserver - ok
11:08:49.0893 0568  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
11:08:49.0893 0568  uagp35 - ok
11:08:49.0908 0568  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:08:49.0908 0568  udfs - ok
11:08:49.0939 0568  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:08:49.0939 0568  UI0Detect - ok
11:08:49.0955 0568  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:08:49.0955 0568  uliagpkx - ok
11:08:49.0986 0568  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
11:08:49.0986 0568  umbus - ok
11:08:50.0002 0568  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
11:08:50.0002 0568  UmPass - ok
11:08:50.0017 0568  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
11:08:50.0017 0568  upnphost - ok
11:08:50.0033 0568  [ 241080F1B28E68F0D00F8F1066A3780D ] UrlFilter       C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
11:08:50.0033 0568  UrlFilter - ok
11:08:50.0064 0568  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
11:08:50.0064 0568  USBAAPL64 - ok
11:08:50.0095 0568  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
11:08:50.0095 0568  usbaudio - ok
11:08:50.0111 0568  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:08:50.0111 0568  usbccgp - ok
11:08:50.0127 0568  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:08:50.0127 0568  usbcir - ok
11:08:50.0158 0568  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
11:08:50.0158 0568  usbehci - ok
11:08:50.0189 0568  [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
11:08:50.0189 0568  usbfilter - ok
11:08:50.0205 0568  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:08:50.0205 0568  usbhub - ok
11:08:50.0220 0568  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
11:08:50.0220 0568  usbohci - ok
11:08:50.0236 0568  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:08:50.0236 0568  usbprint - ok
11:08:50.0251 0568  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:08:50.0251 0568  usbscan - ok
11:08:50.0283 0568  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:08:50.0283 0568  USBSTOR - ok
11:08:50.0314 0568  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
11:08:50.0314 0568  usbuhci - ok
11:08:50.0329 0568  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
11:08:50.0329 0568  UxSms - ok
11:08:50.0329 0568  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
11:08:50.0345 0568  VaultSvc - ok
11:08:50.0345 0568  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:08:50.0345 0568  vdrvroot - ok
11:08:50.0376 0568  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
11:08:50.0392 0568  vds - ok
11:08:50.0407 0568  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:08:50.0407 0568  vga - ok
11:08:50.0423 0568  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:08:50.0423 0568  VgaSave - ok
11:08:50.0470 0568  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:08:50.0470 0568  vhdmp - ok
11:08:50.0501 0568  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:08:50.0501 0568  viaide - ok
11:08:50.0532 0568  [ 96A4F56CBBA3DCF5D90CDA1BC218D040 ] vididr          C:\Windows\system32\DRIVERS\vididr.sys
11:08:50.0532 0568  vididr - ok
11:08:50.0563 0568  [ C69A784BEC737CD7460EBF3C3834D65E ] vidsflt53       C:\Windows\system32\DRIVERS\vsflt53.sys
11:08:50.0563 0568  vidsflt53 - ok
11:08:50.0579 0568  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:08:50.0579 0568  volmgr - ok
11:08:50.0610 0568  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:08:50.0610 0568  volmgrx - ok
11:08:50.0626 0568  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:08:50.0626 0568  volsnap - ok
11:08:50.0641 0568  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
11:08:50.0641 0568  vsmraid - ok
11:08:50.0688 0568  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
11:08:50.0704 0568  VSS - ok
11:08:50.0766 0568  [ 4B817450226F93C31ADD5BCC27FED27A ] vToolbarUpdater15.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe
11:08:50.0782 0568  vToolbarUpdater15.2.0 - ok
11:08:50.0797 0568  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:08:50.0797 0568  vwifibus - ok
11:08:50.0829 0568  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:08:50.0829 0568  vwififlt - ok
11:08:50.0829 0568  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
11:08:50.0829 0568  vwifimp - ok
11:08:50.0860 0568  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
11:08:50.0860 0568  W32Time - ok
11:08:50.0875 0568  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
11:08:50.0875 0568  WacomPen - ok
11:08:50.0891 0568  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:08:50.0907 0568  WANARP - ok
11:08:50.0907 0568  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:08:50.0907 0568  Wanarpv6 - ok
11:08:50.0953 0568  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:08:50.0969 0568  WatAdminSvc - ok
11:08:51.0000 0568  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
11:08:51.0016 0568  wbengine - ok
11:08:51.0031 0568  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:08:51.0031 0568  WbioSrvc - ok
11:08:51.0047 0568  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:08:51.0047 0568  wcncsvc - ok
11:08:51.0063 0568  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:08:51.0063 0568  WcsPlugInService - ok
11:08:51.0078 0568  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
11:08:51.0078 0568  Wd - ok
11:08:51.0094 0568  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
11:08:51.0094 0568  WDC_SAM - ok
11:08:51.0125 0568  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:08:51.0125 0568  Wdf01000 - ok
11:08:51.0141 0568  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:08:51.0141 0568  WdiServiceHost - ok
11:08:51.0141 0568  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:08:51.0141 0568  WdiSystemHost - ok
11:08:51.0156 0568  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
11:08:51.0172 0568  WebClient - ok
11:08:51.0187 0568  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:08:51.0187 0568  Wecsvc - ok
11:08:51.0203 0568  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:08:51.0203 0568  wercplsupport - ok
11:08:51.0219 0568  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:08:51.0219 0568  WerSvc - ok
11:08:51.0234 0568  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:08:51.0250 0568  WfpLwf - ok
11:08:51.0250 0568  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:08:51.0265 0568  WIMMount - ok
11:08:51.0265 0568  WinDefend - ok
11:08:51.0281 0568  WinHttpAutoProxySvc - ok
11:08:51.0328 0568  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:08:51.0328 0568  Winmgmt - ok
11:08:51.0359 0568  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
11:08:51.0390 0568  WinRM - ok
11:08:51.0421 0568  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:08:51.0421 0568  WinUsb - ok
11:08:51.0453 0568  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:08:51.0453 0568  Wlansvc - ok
11:08:51.0499 0568  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:08:51.0499 0568  wlcrasvc - ok
11:08:51.0577 0568  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:08:51.0609 0568  wlidsvc - ok
11:08:51.0624 0568  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:08:51.0624 0568  WmiAcpi - ok
11:08:51.0655 0568  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:08:51.0655 0568  wmiApSrv - ok
11:08:51.0687 0568  WMPNetworkSvc - ok
11:08:51.0702 0568  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:08:51.0718 0568  WPCSvc - ok
11:08:51.0749 0568  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:08:51.0749 0568  WPDBusEnum - ok
11:08:51.0765 0568  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:08:51.0765 0568  ws2ifsl - ok
11:08:51.0780 0568  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
11:08:51.0780 0568  wscsvc - ok
11:08:51.0796 0568  WSearch - ok
11:08:51.0843 0568  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:08:51.0858 0568  wuauserv - ok
11:08:51.0889 0568  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:08:51.0889 0568  WudfPf - ok
11:08:51.0905 0568  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:08:51.0905 0568  WUDFRd - ok
11:08:51.0921 0568  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:08:51.0921 0568  wudfsvc - ok
11:08:51.0936 0568  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:08:51.0936 0568  WwanSvc - ok
11:08:51.0967 0568  [ 98F3FBEC87352CEF3EF5D9298E389468 ] WysePocketCloud C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
11:08:51.0967 0568  WysePocketCloud - ok
11:08:52.0014 0568  [ 161F8FB21C088124F4D591AEBBDF8C57 ] WyseRemoteAccess C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\WyseRemoteAccess.exe
11:08:52.0030 0568  WyseRemoteAccess - ok
11:08:52.0061 0568  ================ Scan global ===============================
11:08:52.0092 0568  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:08:52.0123 0568  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:08:52.0139 0568  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:08:52.0155 0568  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:08:52.0170 0568  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:08:52.0186 0568  [Global] - ok
11:08:52.0186 0568  ================ Scan MBR ==================================
11:08:52.0186 0568  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:08:52.0638 0568  \Device\Harddisk0\DR0 - ok
11:08:52.0638 0568  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
11:08:52.0685 0568  \Device\Harddisk1\DR1 - ok
11:08:52.0685 0568  ================ Scan VBR ==================================
11:08:52.0701 0568  [ 2F3A0D7C2540D51BFE2F29560E8B7538 ] \Device\Harddisk0\DR0\Partition1
11:08:52.0701 0568  \Device\Harddisk0\DR0\Partition1 - ok
11:08:52.0747 0568  [ 7B1139E3676B1E1148F60E4F7C05C232 ] \Device\Harddisk0\DR0\Partition2
11:08:52.0747 0568  \Device\Harddisk0\DR0\Partition2 - ok
11:08:52.0779 0568  [ 19FF9D406DCB8D32637877F5A3E37669 ] \Device\Harddisk0\DR0\Partition3
11:08:52.0779 0568  \Device\Harddisk0\DR0\Partition3 - ok
11:08:52.0794 0568  [ C8BFAB3D3525B4D6805868F97CBFC502 ] \Device\Harddisk1\DR1\Partition1
11:08:52.0794 0568  \Device\Harddisk1\DR1\Partition1 - ok
11:08:52.0794 0568  ============================================================
11:08:52.0794 0568  Scan finished
11:08:52.0794 0568  ============================================================
11:08:52.0872 8072  Detected object count: 0
11:08:52.0872 8072  Actual detected object count: 0
 



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:21 PM

Posted 12 June 2013 - 10:24 AM

Have you run the DDS app from our Prep Guide?

 

AntiVirus, Firewall and Privacy Products and Protection Methods
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 SomersetGuy

SomersetGuy
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:03:21 PM

Posted 12 June 2013 - 10:45 AM

No I couldn't find the prep guide.  The dds.scr file was downloaded back on 03/10/2012. I was here trying to fix my old XP machine.  I just did a search of my posts and you were the first responder back then.  I thought your name sounded familiar.  That machine is still running perfectly.


Edited by SomersetGuy, 12 June 2013 - 11:41 AM.


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:21 PM

Posted 12 June 2013 - 11:47 AM

OK, Wanted to be sure... Then its not a Rootkit ,Not infected,. Delete that old thing. If you need a new one use the link above.

 

You look good to Good to go now.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 SomersetGuy

SomersetGuy
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:03:21 PM

Posted 12 June 2013 - 11:53 AM

Thanks for helping me out again



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:21 PM

Posted 12 June 2013 - 12:03 PM

No problem! Thanks fo visiting!!

Edited by boopme, 12 June 2013 - 12:04 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users