Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

BootExecute spybot help


  • Please log in to reply
6 replies to this topic

#1 HDTV35

HDTV35

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:50 AM

Posted 08 July 2013 - 10:05 PM

Hello, I am having a problem with I think might be some sort of virus/maleware/rootkit/etc. my computer has been going far slower then usual, I keep getting this entry form spybot - Search & Destroy :

 

Catergory: Session manager

Change: Value Changed

 

Entry: BootExecute

 

Old data: autocheck autochk *\bddel.exe

New data: autocheck autochk *\

 

I have gotten it like this though: 

 

Old data: autocheck autochk *\

New data: autocheck autochk *\bddel.exe

 

Skype and Google Chrome also randomly close at the same time.

 

Should I allow this to make changes to my regestry files?

 

I have run bitdefender, malewarebytes, spybot search and destroy, superantispyware, and combofix. Request a log, and I will send one. Thank you!


Edited by HDTV35, 08 July 2013 - 10:10 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:50 AM

Posted 08 July 2013 - 10:23 PM

Hello, I moved this to Am I Infected from Win7..

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 HDTV35

HDTV35
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:50 AM

Posted 08 July 2013 - 11:21 PM

ESET is taking a very long time so I have decided to post this in the mean time however, Minitoolbox came up as a virus to bitdefender. I as able to allow it, and run it before it was promptly deleted. Is the virus/etc. trying to Hi-Jack my anti-virus?
 
Anyway, I still have the logs:
 
MiniToolBar
 
: MiniToolBox by Farbar  Version: 16-06-2013
Ran by Jason (administrator) on 08-07-2013 at 23:28:49
Running from "C:\Users\Jason\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Linksys AE3000 = Wireless Network Connection 4 (Disconnected)
Medialink MWN-USB150N = Wireless Network Connection 3 (Connected)
Hamachi Network Interface = Hamachi (Connected)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Hardware not present)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : hdtv35
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.fl.comcast.net.
 
Wireless LAN adapter Wireless Network Connection 3:
 
   Connection-specific DNS Suffix  . : hsd1.fl.comcast.net.
   Description . . . . . . . . . . . : Medialink MWN-USB150N
   Physical Address. . . . . . . . . : C8-3A-35-C0-B4-BD
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2601:2:2080:4:fda2:fd32:c603:dbe(Preferred) 
   IPv6 Address. . . . . . . . . . . : fd63:aad4:63bd:0:fda2:fd32:c603:dbe(Preferred) 
   Temporary IPv6 Address. . . . . . : 2601:2:2080:4:e516:5ec7:67a6:ab16(Preferred) 
   Temporary IPv6 Address. . . . . . : fd63:aad4:63bd:0:e516:5ec7:67a6:ab16(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::fda2:fd32:c603:dbe%15(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.135(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, July 08, 2013 10:51:05 PM
   Lease Expires . . . . . . . . . . : Tuesday, July 09, 2013 10:53:10 PM
   Default Gateway . . . . . . . . . : fe80::c2c1:c0ff:fef8:b159%15
                                       192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 382220853
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-68-5D-35-C8-60-00-EA-B5-1C
   DNS Servers . . . . . . . . . . . : 192.168.1.106
                                       75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : C8-60-00-EA-B5-1C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Hamachi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-BB-36-E5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::19bb:36e5(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::5d1:4b8d:353d:7e3a%16(Preferred) 
   IPv4 Address. . . . . . . . . . . : 25.187.54.229(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Monday, July 08, 2013 10:39:03 PM
   Lease Expires . . . . . . . . . . : Monday, July 08, 2013 11:32:21 PM
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 444234227
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-68-5D-35-C8-60-00-EA-B5-1C
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Local Area Connection* 9:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.hsd1.fl.comcast.net.:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.fl.comcast.net.
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{878B8E82-F6BD-481F-BD37-4445542C348F}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.106
 
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
 
Pinging google.com [2607:f8b0:4008:801::1003] with 32 bytes of data:
Reply from 2607:f8b0:4008:801::1003: time=22ms 
Reply from 2607:f8b0:4008:801::1003: time=20ms 
 
Ping statistics for 2607:f8b0:4008:801::1003:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 20ms, Maximum = 22ms, Average = 21ms
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.106
 
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=70ms TTL=45
Reply from 98.138.253.109: bytes=32 time=72ms TTL=45
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 70ms, Maximum = 72ms, Average = 71ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 1ms, Maximum = 3ms, Average = 2ms
===========================================================================
Interface List
 15...c8 3a 35 c0 b4 bd ......Medialink MWN-USB150N
 11...c8 60 00 ea b5 1c ......Realtek PCIe GBE Family Controller
 16...7a 79 19 bb 36 e5 ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 22...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.135     25
         25.0.0.0        255.0.0.0         On-link     25.187.54.229   9256
    25.187.54.229  255.255.255.255         On-link     25.187.54.229   9256
   25.255.255.255  255.255.255.255         On-link     25.187.54.229   9256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.135    281
    192.168.1.135  255.255.255.255         On-link     192.168.1.135    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.135    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     25.187.54.229   9256
        224.0.0.0        240.0.0.0         On-link     192.168.1.135    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     25.187.54.229   9256
  255.255.255.255  255.255.255.255         On-link     192.168.1.135    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 16   9020 ::/0                     2620:9b::1900:1
 15    281 ::/0                     fe80::c2c1:c0ff:fef8:b159
  1    306 ::1/128                  On-link
 15     33 2601:2:2080:4::/64       On-link
 15     41 2601:2:2080:4::/64       fe80::c2c1:c0ff:fef8:b159
 15    281 2601:2:2080:4:e516:5ec7:67a6:ab16/128
                                    On-link
 15    281 2601:2:2080:4:fda2:fd32:c603:dbe/128
                                    On-link
 16    276 2620:9b::/64             On-link
 16    276 2620:9b::/96             On-link
 16    276 2620:9b::19bb:36e5/128   On-link
 15     33 fd63:aad4:63bd::/64      On-link
 15    281 fd63:aad4:63bd:0:e516:5ec7:67a6:ab16/128
                                    On-link
 15    281 fd63:aad4:63bd:0:fda2:fd32:c603:dbe/128
                                    On-link
 16    276 fe80::/64                On-link
 15    281 fe80::/64                On-link
 16    276 fe80::5d1:4b8d:353d:7e3a/128
                                    On-link
 15    281 fe80::fda2:fd32:c603:dbe/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    276 ff00::/8                 On-link
 15    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/08/2013 10:39:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2013 10:37:10 PM) (Source: MsiInstaller) (User: hdtv35)
Description: Product: Java Auto Updater -- Error 1719.The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.
 
Error: (07/08/2013 10:21:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2013 10:03:03 PM) (Source: Application Hang) (User: )
Description: The program explorer.exe version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 2168
 
Start Time: 01ce7c4862079d6f
 
Termination Time: 5
 
Application Path: C:\windows\explorer.exe
 
Report Id: a7408cb4-e83b-11e2-b169-c86000eab51c
 
Error: (07/08/2013 08:20:13 PM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422
 
Error: (07/08/2013 05:54:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.
 
Error: (07/08/2013 05:19:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2013 11:38:37 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/07/2013 08:57:41 PM) (Source: Microsoft-Windows-RestartManager) (User: hdtv35)
Description: Application or service 'Windows Explorer' could not be shut down.
 
Error: (07/07/2013 05:21:11 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (07/08/2013 10:57:35 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DAVE-NETWORK
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{6BF78C63-E210-4C59-8B01-F7330DB6394D}.
The master browser is stopping or an election is being forced.
 
Error: (07/08/2013 10:39:05 PM) (Source: Service Control Manager) (User: )
Description: The Trend Micro RUBotted Service service failed to start due to the following error: 
%%1053
 
Error: (07/08/2013 10:39:05 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Trend Micro RUBotted Service service to connect.
 
Error: (07/08/2013 10:22:14 PM) (Source: NetBT) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 192.168.1.106.
The computer with the IP address 192.168.1.1 did not allow the name to be claimed by
this computer.
 
Error: (07/08/2013 10:21:31 PM) (Source: Service Control Manager) (User: )
Description: The Trend Micro RUBotted Service service failed to start due to the following error: 
%%1053
 
Error: (07/08/2013 10:21:31 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Trend Micro RUBotted Service service to connect.
 
Error: (07/08/2013 10:19:06 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (07/08/2013 10:18:44 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (07/08/2013 10:16:47 PM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
 
Error: (07/08/2013 10:13:12 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
 
Microsoft Office Sessions:
=========================
Error: (07/08/2013 10:39:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2013 10:37:10 PM) (Source: MsiInstaller)(User: hdtv35)
Description: Product: Java Auto Updater -- Error 1719.The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (07/08/2013 10:21:54 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2013 10:03:03 PM) (Source: Application Hang)(User: )
Description: explorer.exe6.1.7601.17567216801ce7c4862079d6f5C:\windows\explorer.exea7408cb4-e83b-11e2-b169-c86000eab51c
 
Error: (07/08/2013 08:20:13 PM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422
 
Error: (07/08/2013 05:54:28 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8
 
Error: (07/08/2013 05:19:29 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2013 11:38:37 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/07/2013 08:57:41 PM) (Source: Microsoft-Windows-RestartManager)(User: hdtv35)
Description: 1C:\Windows\explorer.exeWindows Explorer0411734080
 
Error: (07/07/2013 05:21:11 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-07-08 22:16:47.362
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-07-08 22:16:47.324
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-03-29 16:21:56.122
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-03-29 16:19:19.333
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-03-29 16:11:08.462
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-03-29 13:29:38.057
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-03-29 13:04:49.240
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-03-29 12:54:20.351
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-03-29 12:30:31.878
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-03-29 12:12:09.661
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00185_023\avcuf64.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.0.29625)
64 Bit HP CIO Components Installer (Version: 1.2.0)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Ace of Spades
Adobe AIR (Version: 3.3.0.3650)
Adobe Creative Cloud (Version: 2.0.0.183)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 11.6 (Version: 11.6.8.638)
Advertising Center (Version: 0.0.0.1)
AI Manager (Version: 1.09.07)
AI Suite II (Version: 1.01.40)
AirMech
Alien Swarm
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Aquaria
ARMA 2
ARMA 2: Operation Arrowhead
Asmedia ASM104x USB 3.0 Host Controller Driver (Version: 1.14.1.0)
ASUS Backup Wizard (Version: 1.01.00)
ASUS Easy Update (Version: 2.00.22)
AsusVibe2.0 (Version: 2.0.10.168)
Audacity 2.0.2 (Version: 2.0.2)
Audiosurf
AviSynth 2.5
Awesomenauts
Battlefield 3™ (Version: 1.0.0.0)
Beat Hazard Ultra
Belkin AV Upgrader Release
Best Buy pc app (Version: 3.3.0.0)
Bitdefender Total Security (Version: 17.13.0.551)
BitTorrent (Version: 7.8.0.29626)
Blacklight Retribution
Blacklight: Retribution
BlueStacks (Version: 0.7.5.2700)
Bonjour (Version: 3.0.0.10)
Borderlands 2
Capsized
Castle Crashers
ClipConverter (Version: 1.1.0)
CodeBlocks (Version: 9.02-wiley1)
Company of Heroes (New Steam Version)
Company of Heroes 2 – OPEN BETA
Company of Heroes: Opposing Fronts
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
Counter-Strike
Counter-Strike: Condition Zero Deleted Scenes
Counter-Strike: Global Offensive
Counter-Strike: Global Offensive - SDK
Counter-Strike: Source
Cubemen
Curse Client (Version: 5.1.1.644)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Pro (Version: 5.2.0.0348)
Day of Defeat
Dead Pixels
Dear Esther
Deathmatch Classic
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Desura (Version: 100.53)
DisplayFusion 4.3 (Version: 4.3.0.0)
Dota 2
Dual-Core Optimizer (Version: 1.1.4.0169)
Dungeon Defenders 7.46 (Version: 7.46)
Echovoice Gamer Statistics x64 1.14
Endless Space
Entropia Universe (Version: 14.1.3.108300)
EVGA OC Scanner X 2.2.3
EVGA Precision X 4.2.0 (Version: 4.2.0)
Exe to msi Converter (Version: 1.0.0)
FileZilla Client 3.7.0.1 (Version: 3.7.0.1)
foobar2000 v1.2.5 (Version: 1.2.5)
Fractal: Make Blooms Not War
Fraps (remove only)
FTL: Faster Than Light
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
GameMaker: Studio
Garry's Mod
Google Chrome (Version: 27.0.1453.116)
Google Earth (Version: 7.0.3.8542)
Google Talk Plugin (Version: 4.1.3.13728)
Google Update Helper (Version: 1.3.21.149)
Grand Theft Auto IV
Grand Theft Auto: Episodes from Liberty City
Half-Life 2
Half-Life: Blue Shift
Half-Life: Opposing Force
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HP FWUpdateEDO2 (Version: 1.2.0.0)
HP Officejet Pro 8600 Basic Device Software (Version: 25.0.619.0)
HP Officejet Pro 8600 Help (Version: 140.0.2.2)
HP Officejet Pro 8600 Product Improvement Study (Version: 25.0.619.0)
HP Update (Version: 5.005.000.002)
HPDiagnosticAlert (Version: 1.00.0000)
I.R.I.S. OCR (Version: 12.3.4.0)
iCloud (Version: 2.1.2.8)
ImagXpress (Version: 7.0.74.0)
InboxDollars
InfraRecorder
InstEd 1.5.15.26 (Version: 1.5.15.26)
Intel® Management Engine Components (Version: 7.0.0.1144)
iTunes (Version: 11.0.4.4)
Java 7 Update 13 (64-bit) (Version: 7.0.130)
Java Auto Updater (Version: 2.1.9.5)
Java SE Development Kit 7 Update 13 (Version: 1.7.0.130)
JavaFX 2.1.1 (Version: 2.1.1)
JC2-MP version 0.0.11 (Version: 0.0.11)
Junk Mail filter update (Version: 15.4.3502.0922)
Just Cause 2
Killing Floor
Killing Floor Beta Dedicated Server
LAME v3.99.3 (for Windows)
Left 4 Dead 2
LG Outlook Sync (Version: 1.1.0.4)
LG United Mobile Driver (Version: 3.7.2.0)
LG USB WML Modem Driver (Version: 1.0)
LG Verizon United Drivers (Version: 2.6.0)
LIMBO
Little Inferno
Loadout
Logitech Gaming Software (Version: 8.30.86)
Logitech Gaming Software 8.46 (Version: 8.46.27)
LogMeIn Hamachi (Version: 2.1.0.374)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Medialink MWN-USB150N (Version: 1.00.0000)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (Version: 3.5.0.0)
Microsoft Document Explorer 2008
Microsoft Document Explorer 2008 (Version: 9.0.21022)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SkyDrive (Version: 17.0.2011.0627)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (Version: 11.0.50727.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Windows SDK for Windows 7 (7.0) (Version: 7.0.40715)
Microsoft Windows SDK for Windows 7 (7.0) (Version: 7.0.7600.16385.40715)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Moonbase Alpha
Mortal Kombat Kollection
MotioninJoy Gamepad tool 0.7.0000 (Version: 0.7.0000)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
Natural Selection 2
Nero BurnRights (Version: 3.4.7.100)
Nero BurnRights Help (Version: 3.4.4.100)
Nero ControlCenter (Version: 9.0.0.1)
Nero CoverDesigner (Version: 4.4.7.100)
Nero CoverDesigner Help (Version: 4.4.9.100)
Nero DiscSpeed (Version: 5.4.7.100)
Nero DiscSpeed Help (Version: 5.4.4.100)
Nero DriveSpeed (Version: 4.4.4.100)
Nero DriveSpeed Help (Version: 4.4.4.100)
Nero Express Help (Version: 9.6.2.101)
Nero InfoTool (Version: 6.4.7.100)
Nero InfoTool Help (Version: 6.4.4.100)
Nero Installer (Version: 4.4.8.1)
Nero Online Upgrade (Version: 1.3.0.0)
Nero StartSmart (Version: 9.4.11.208)
Nero StartSmart Help (Version: 9.4.1.100)
Nero StartSmart OEM (Version: 9.4.10.100)
NeroExpress (Version: 9.4.10.505)
neroxml (Version: 1.0.0)
Netmarble Downloader Plugin ?? 1.0.0.1 (Version: 1.0.0.1)
Nexuiz Beta
Notepad++ (Version: 6.3.2)
NVIDIA 3D Vision Controller Driver 320.18 (Version: 320.18)
NVIDIA Control Panel 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.5 (Version: 1.5)
NVIDIA Graphics Driver 320.49 (Version: 320.49)
NVIDIA HD Audio Driver 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Install Application (Version: 2.1002.124.810)
NVIDIA PhysX (Version: 9.12.1031)
NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
NVIDIA Update 4.11.9 (Version: 4.11.9)
NVIDIA Update Components (Version: 4.11.9)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Orca (Version: 3.1.3790.0000)
Organ Trail: Director's Cut
Origin (Version: 9.1.15.109)
ORION: Dino Beatdown
Overwolf (Version: 0.40.228)
Pando Media Booster (Version: 2.6.0.8)
PDF Settings CS6 (Version: 11.0)
Pivot Stickfigure Animator version 2.2.6 (Version: 2.2.6)
PlanetSide 2
Plantronics® GameCom 780 Software for Dolby® Headphone (Version: 1.00.0001)
Portal 2
Portforward Static IP Address 1.0.47 (Version: 1.0.47)
Power Packet Utility  (Version: 1.0.12)
PowerISO (Version: 5.6)
PSP Video 9 6 (Version: 6)
QuickTime (Version: 7.74.80.86)
RaidCall (Version: 7.2.0-1.0.5185.1)
Realm of the Mad God
Realtek Ethernet Controller Driver (Version: 7.44.421.2011)
Realtek Ethernet Diagnostic Utility (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6402)
Resource Hacker Version 3.6.0
Revo Uninstaller Pro 2.5.9 (Version: 2.5.9)
Ricochet
RivaTuner Statistics Server 5.1.2 (Version: 5.1.2)
RuneScape Launcher 1.2 (Version: 1.2.0)
RuneScape Launcher 1.2.2 (Version: 1.2.2)
Saints Row: The Third
ShiftWindow 1.02
Sid Meier's Civilization V
SivModeler
Six Updater (Version: 2.09.7038)
Skype™ 6.5 (Version: 6.5.158)
Smite (Version: 0.1.1594.8)
Solar 2 (Version: 1.1.0.0)
Soldier Front 2
Source SDK Base 2007
SpeedFan (remove only)
Splashtop Software Updater (Version: 1.5.6.11)
Splashtop Streamer (Version: 2.3.0.2)
Spybot - Search & Destroy (Version: 1.6.2)
Star Ruler
Star Wars - Battlefront II
StarCraft II (Version: 2.0.9.26147)
StarCraft II Beta (Version: 1.5.0.21995)
Stealth Bastard Deluxe
Steam (Version: 1.0.0.0)
Stykz for Windows 1.0.2 (Version: 1.0.2)
Super Meat Boy
SUPERAntiSpyware (Version: 5.6.1014)
swMSM (Version: 12.0.0.1)
Synthesia (Version: 8.4)
System Requirements Lab CYRI (Version: 6.0.3.0)
System Requirements Lab Detection (Version: 1.0.5.0)
Tansee iPod Transfer 5.3.0.0 (Version: 5.3.0.0)
Team Fortress 2
Team Fortress Classic
TeamViewer 8 (Version: 8.0.19617)
Terraria
The Ship
Thomas Was Alone
Titan Quest (Version: 1.00.0000)
Titan Quest Immortal Throne (Version: 1.00.0000)
Towns
Trend Micro RUBotted 2.0 Beta (Version: 2.0.0.1030)
Tribes: Ascend
Tunngle beta
Tweaking.com - Windows Repair (All in One) (Version: 1.9.14)
UltraMon (Version: 3.2.2)
Uninstall Helper (Version: 2.0.1.0)
Unity Web Player (Version: )
Universal Extractor 1.6.1 (Version: 1.6.1)
Universe Sandbox
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Vegas Movie Studio HD 11.0 (Version: 11.0.75)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Vid-Saver Extension (Version: 1.24.151.151)
ViewSonic Monitor Drivers
ViewSonic Windows 7 Signed Files
VTFEdit 1.2.5
Waveform
Windows Live (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live Family Safety (Version: 15.4.3538.0513)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (Version: 15.4.5722.2)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPcap 4.1.1 (Version: 4.1.0.1753)
winpcap-nmap 4.02
WinRAR 4.20 (64-bit) (Version: 4.20.0)
WinX Free MP4 to PSP Converter 3.2.9
World of Goo
XSplit (Version: 1.2.1303.0101)
YouTube Downloader App 3.00 (Version: 3.00)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 30%
Total physical RAM: 16384 MB
Available physical RAM: 11350.08 MB
Total Pagefile: 32766.18 MB
Available Pagefile: 27786.44 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.56 MB
 
========================= Partitions: =====================================
 
1 Drive c: (WIN7) (Fixed) (Total:917.23 GB) (Free:450.19 GB) NTFS
3 Drive e: (ACER) (Fixed) (Total:142.04 GB) (Free:131.57 GB) NTFS
4 Drive f: (DATA) (Fixed) (Total:142.04 GB) (Free:97.62 GB) NTFS
11 Drive m: (JASON DRIVE) (Fixed) (Total:1396.92 GB) (Free:1027.32 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\HDTV35
 
Administrator            Guest                    Jason                    
UpdatusUser              
 
 
**** End of log ****

 

 

 

TDSSKiller:

 

23:31:09.0988 3336  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:31:10.0493 3336  ============================================================
23:31:10.0493 3336  Current date / time: 2013/07/08 23:31:10.0493
23:31:10.0493 3336  SystemInfo:
23:31:10.0493 3336  
23:31:10.0493 3336  OS Version: 6.1.7601 ServicePack: 1.0
23:31:10.0493 3336  Product type: Workstation
23:31:10.0493 3336  ComputerName: HDTV35
23:31:10.0493 3336  UserName: Jason
23:31:10.0493 3336  Windows directory: C:\windows
23:31:10.0493 3336  System windows directory: C:\windows
23:31:10.0493 3336  Running under WOW64
23:31:10.0493 3336  Processor architecture: Intel x64
23:31:10.0493 3336  Number of processors: 8
23:31:10.0493 3336  Page size: 0x1000
23:31:10.0493 3336  Boot type: Normal boot
23:31:10.0493 3336  ============================================================
23:31:14.0608 3336  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:31:14.0609 3336  Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:31:14.0635 3336  Drive \Device\Harddisk6\DR6 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x57ABE, SectorsPerTrack: 0x20, TracksPerCylinder: 0xFF, Type 'W'
23:31:14.0637 3336  ============================================================
23:31:14.0637 3336  \Device\Harddisk0\DR0:
23:31:14.0638 3336  MBR partitions:
23:31:14.0638 3336  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:31:14.0638 3336  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C90800, BlocksNum 0x72A75800
23:31:14.0638 3336  \Device\Harddisk1\DR1:
23:31:14.0638 3336  MBR partitions:
23:31:14.0638 3336  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x11C16800
23:31:14.0638 3336  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x13817000, BlocksNum 0x11C17000
23:31:14.0638 3336  \Device\Harddisk6\DR6:
23:31:14.0638 3336  MBR partitions:
23:31:14.0638 3336  \Device\Harddisk6\DR6\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xAEA86702
23:31:14.0638 3336  ============================================================
23:31:14.0655 3336  C: <-> \Device\Harddisk0\DR0\Partition2
23:31:14.0675 3336  E: <-> \Device\Harddisk1\DR1\Partition1
23:31:14.0729 3336  F: <-> \Device\Harddisk1\DR1\Partition2
23:31:14.0730 3336  M: <-> \Device\Harddisk6\DR6\Partition1
23:31:14.0730 3336  ============================================================
23:31:14.0730 3336  Initialize success
23:31:14.0730 3336  ============================================================
23:31:17.0718 4292  ============================================================
23:31:17.0718 4292  Scan started
23:31:17.0718 4292  Mode: Manual; 
23:31:17.0718 4292  ============================================================
23:31:18.0694 4292  ================ Scan system memory ========================
23:31:18.0694 4292  System memory - ok
23:31:18.0694 4292  ================ Scan services =============================
23:31:18.0751 4292  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
23:31:18.0753 4292  !SASCORE - ok
23:31:18.0947 4292  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
23:31:18.0953 4292  1394ohci - ok
23:31:18.0972 4292  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
23:31:18.0981 4292  ACPI - ok
23:31:18.0997 4292  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
23:31:19.0026 4292  AcpiPmi - ok
23:31:19.0148 4292  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:31:19.0157 4292  AdobeARMservice - ok
23:31:19.0308 4292  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:31:19.0347 4292  AdobeFlashPlayerUpdateSvc - ok
23:31:19.0371 4292  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
23:31:19.0394 4292  adp94xx - ok
23:31:19.0399 4292  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
23:31:19.0462 4292  adpahci - ok
23:31:19.0496 4292  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
23:31:19.0520 4292  adpu320 - ok
23:31:19.0567 4292  [ BB6F577A7BB95B5CD3A7BBECB104C100 ] AE3000          C:\windows\system32\DRIVERS\AE3000w764.sys
23:31:19.0599 4292  AE3000 - ok
23:31:19.0647 4292  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
23:31:19.0648 4292  AeLookupSvc - ok
23:31:19.0693 4292  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
23:31:19.0697 4292  AFD - ok
23:31:19.0711 4292  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
23:31:19.0729 4292  agp440 - ok
23:31:19.0755 4292  [ 8B6625D53C18774F0102F690E285B5E8 ] AiChargerPlus   C:\windows\system32\DRIVERS\AiChargerPlus.sys
23:31:19.0757 4292  AiChargerPlus - ok
23:31:19.0767 4292  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
23:31:19.0767 4292  ALG - ok
23:31:19.0779 4292  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
23:31:19.0800 4292  aliide - ok
23:31:19.0821 4292  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
23:31:19.0823 4292  amdide - ok
23:31:19.0832 4292  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
23:31:19.0835 4292  AmdK8 - ok
23:31:19.0846 4292  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
23:31:19.0849 4292  AmdPPM - ok
23:31:19.0886 4292  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
23:31:19.0902 4292  amdsata - ok
23:31:19.0927 4292  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
23:31:19.0946 4292  amdsbs - ok
23:31:19.0964 4292  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
23:31:19.0967 4292  amdxata - ok
23:31:19.0980 4292  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
23:31:19.0983 4292  AppID - ok
23:31:19.0994 4292  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
23:31:19.0997 4292  AppIDSvc - ok
23:31:20.0038 4292  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
23:31:20.0039 4292  Appinfo - ok
23:31:20.0108 4292  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:31:20.0118 4292  Apple Mobile Device - ok
23:31:20.0153 4292  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
23:31:20.0176 4292  arc - ok
23:31:20.0208 4292  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
23:31:20.0242 4292  arcsas - ok
23:31:20.0320 4292  [ 6E3F4538B33BC19259E99BE1826286A3 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
23:31:20.0323 4292  asComSvc - ok
23:31:20.0371 4292  [ A63173897EA1A73A75D0E65036DE5B15 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
23:31:20.0390 4292  asHmComSvc - ok
23:31:20.0432 4292  [ EDAA17CE771C696655B6585F7CAD2100 ] ASInsHelp       C:\Windows\SysWow64\drivers\AsInsHelp64.sys
23:31:20.0434 4292  ASInsHelp - ok
23:31:20.0442 4292  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO            C:\windows\syswow64\drivers\AsIO.sys
23:31:20.0452 4292  AsIO - ok
23:31:20.0472 4292  [ 6D9C024AA8F24065A6DBEAB1F431D854 ] asmthub3        C:\windows\system32\DRIVERS\asmthub3.sys
23:31:20.0483 4292  asmthub3 - ok
23:31:20.0513 4292  [ ECAD22F15D8F17CC04F24E9A6FB00F2F ] asmtxhci        C:\windows\system32\DRIVERS\asmtxhci.sys
23:31:20.0527 4292  asmtxhci - ok
23:31:20.0625 4292  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:31:20.0628 4292  aspnet_state - ok
23:31:20.0656 4292  [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
23:31:20.0670 4292  AsSysCtrlService - ok
23:31:20.0689 4292  [ 1392B92179B07B672720763D9B1028A5 ] AsUpIO          C:\windows\syswow64\drivers\AsUpIO.sys
23:31:20.0692 4292  AsUpIO - ok
23:31:20.0723 4292  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
23:31:20.0727 4292  AsyncMac - ok
23:31:20.0779 4292  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
23:31:20.0779 4292  atapi - ok
23:31:20.0821 4292  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
23:31:20.0824 4292  AudioEndpointBuilder - ok
23:31:20.0864 4292  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
23:31:20.0866 4292  AudioSrv - ok
23:31:20.0917 4292  [ AAE1DAE483DD57D0E267FCA42FCB5133 ] avc3            C:\windows\system32\DRIVERS\avc3.sys
23:31:20.0953 4292  avc3 - ok
23:31:20.0975 4292  [ 3B9549FEF98AB1768A1D6A919F355B70 ] avchv           C:\windows\system32\DRIVERS\avchv.sys
23:31:20.0991 4292  avchv - ok
23:31:21.0012 4292  [ 8183B715BD56561C27BEBB68B1192B7A ] avckf           C:\windows\system32\DRIVERS\avckf.sys
23:31:21.0057 4292  avckf - ok
23:31:21.0089 4292  [ 837DC57745D3589E5E8BC6B6E5B008CA ] avisfltr        C:\windows\system32\DRIVERS\avisfltr.sys
23:31:21.0232 4292  avisfltr - ok
23:31:21.0254 4292  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
23:31:21.0259 4292  AxInstSV - ok
23:31:21.0354 4292  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
23:31:21.0359 4292  b06bdrv - ok
23:31:21.0379 4292  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
23:31:21.0385 4292  b57nd60a - ok
23:31:21.0489 4292  [ D3F83146F85FF72E7E3579C73B3A989B ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe
23:31:21.0493 4292  BdDesktopParental - ok
23:31:21.0495 4292  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
23:31:21.0498 4292  BDESVC - ok
23:31:21.0628 4292  [ 3FAFE12C5D1D4D5F3567E7A0A2F15A7C ] BdfNdisf        c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
23:31:21.0640 4292  BdfNdisf - ok
23:31:21.0688 4292  [ 4CE4B0098FC315C237FA8867F07886C4 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
23:31:21.0711 4292  bdfwfpf - ok
23:31:21.0734 4292  [ 5B648BAD8E4338E2204CDBE13195BD79 ] bdfwfpf_pc      C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys
23:31:21.0749 4292  bdfwfpf_pc - ok
23:31:21.0774 4292  [ E311541A584A29C0D91DD73730B1DCBE ] BDSandBox       C:\windows\system32\drivers\bdsandbox.sys
23:31:21.0788 4292  BDSandBox - ok
23:31:21.0835 4292  [ 50F796CB1E8C80F3D19435CB50C3DAB5 ] BDVEDISK        C:\windows\system32\DRIVERS\bdvedisk.sys
23:31:21.0839 4292  BDVEDISK - ok
23:31:21.0859 4292  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
23:31:21.0860 4292  Beep - ok
23:31:21.0892 4292  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
23:31:21.0895 4292  BFE - ok
23:31:21.0926 4292  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\system32\qmgr.dll
23:31:21.0930 4292  BITS - ok
23:31:21.0966 4292  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\drivers\blbdrive.sys
23:31:21.0969 4292  blbdrive - ok
23:31:22.0001 4292  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:31:22.0009 4292  Bonjour Service - ok
23:31:22.0021 4292  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
23:31:22.0039 4292  bowser - ok
23:31:22.0059 4292  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
23:31:22.0067 4292  BrFiltLo - ok
23:31:22.0105 4292  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
23:31:22.0107 4292  BrFiltUp - ok
23:31:22.0138 4292  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\windows\system32\DRIVERS\bridge.sys
23:31:22.0158 4292  BridgeMP - ok
23:31:22.0212 4292  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
23:31:22.0213 4292  Browser - ok
23:31:22.0257 4292  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
23:31:22.0277 4292  Brserid - ok
23:31:22.0302 4292  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
23:31:22.0305 4292  BrSerWdm - ok
23:31:22.0342 4292  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
23:31:22.0345 4292  BrUsbMdm - ok
23:31:22.0355 4292  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
23:31:22.0357 4292  BrUsbSer - ok
23:31:22.0405 4292  [ A792736DB1A49A47F0A2C45D63683F0C ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
23:31:22.0415 4292  BstHdAndroidSvc - ok
23:31:22.0434 4292  [ DE6D8FC8F1534AEA59ECA1EADCBBAEB0 ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
23:31:22.0438 4292  BstHdDrv - ok
23:31:22.0459 4292  [ 599243FC4D8BD5CF06FF5E3294B98D13 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
23:31:22.0468 4292  BstHdLogRotatorSvc - ok
23:31:22.0480 4292  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
23:31:22.0483 4292  BTHMODEM - ok
23:31:22.0513 4292  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
23:31:22.0516 4292  bthserv - ok
23:31:22.0524 4292  catchme - ok
23:31:22.0532 4292  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
23:31:22.0535 4292  cdfs - ok
23:31:22.0560 4292  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
23:31:22.0566 4292  cdrom - ok
23:31:22.0597 4292  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
23:31:22.0599 4292  CertPropSvc - ok
23:31:22.0635 4292  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
23:31:22.0644 4292  circlass - ok
23:31:22.0687 4292  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
23:31:22.0696 4292  CLFS - ok
23:31:22.0813 4292  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:31:22.0836 4292  clr_optimization_v2.0.50727_32 - ok
23:31:22.0876 4292  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:31:22.0898 4292  clr_optimization_v2.0.50727_64 - ok
23:31:23.0066 4292  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:31:23.0087 4292  clr_optimization_v4.0.30319_32 - ok
23:31:23.0135 4292  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:31:23.0156 4292  clr_optimization_v4.0.30319_64 - ok
23:31:23.0173 4292  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\drivers\CmBatt.sys
23:31:23.0176 4292  CmBatt - ok
23:31:23.0186 4292  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
23:31:23.0189 4292  cmdide - ok
23:31:23.0243 4292  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\windows\system32\Drivers\cng.sys
23:31:23.0251 4292  CNG - ok
23:31:23.0264 4292  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
23:31:23.0267 4292  Compbatt - ok
23:31:23.0283 4292  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\drivers\CompositeBus.sys
23:31:23.0306 4292  CompositeBus - ok
23:31:23.0308 4292  COMSysApp - ok
23:31:23.0335 4292  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
23:31:23.0337 4292  crcdisk - ok
23:31:23.0376 4292  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\windows\system32\cryptsvc.dll
23:31:23.0377 4292  CryptSvc - ok
23:31:23.0405 4292  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
23:31:23.0407 4292  DcomLaunch - ok
23:31:23.0425 4292  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
23:31:23.0428 4292  defragsvc - ok
23:31:23.0497 4292  [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
23:31:23.0511 4292  Desura Install Service - ok
23:31:23.0656 4292  [ 0A403702CB00432AC818523CD416BF67 ] Device Handle Service C:\Windows\SysWOW64\AsHookDevice.exe
23:31:23.0659 4292  Device Handle Service - ok
23:31:23.0700 4292  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
23:31:23.0704 4292  DfsC - ok
23:31:23.0717 4292  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
23:31:23.0719 4292  Dhcp - ok
23:31:23.0725 4292  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
23:31:23.0725 4292  discache - ok
23:31:23.0736 4292  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
23:31:23.0740 4292  Disk - ok
23:31:23.0766 4292  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
23:31:23.0768 4292  Dnscache - ok
23:31:23.0776 4292  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
23:31:23.0783 4292  dot3svc - ok
23:31:23.0792 4292  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
23:31:23.0793 4292  DPS - ok
23:31:23.0804 4292  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
23:31:23.0806 4292  drmkaud - ok
23:31:23.0847 4292  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\windows\system32\DRIVERS\dtsoftbus01.sys
23:31:23.0923 4292  dtsoftbus01 - ok
23:31:24.0061 4292  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
23:31:24.0066 4292  DXGKrnl - ok
23:31:24.0142 4292  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
23:31:24.0143 4292  EapHost - ok
23:31:24.0277 4292  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
23:31:24.0344 4292  ebdrv - ok
23:31:24.0393 4292  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
23:31:24.0394 4292  EFS - ok
23:31:24.0464 4292  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
23:31:24.0473 4292  ehRecvr - ok
23:31:24.0486 4292  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
23:31:24.0490 4292  ehSched - ok
23:31:24.0514 4292  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
23:31:24.0521 4292  elxstor - ok
23:31:24.0554 4292  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
23:31:24.0557 4292  ErrDev - ok
23:31:24.0597 4292  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
23:31:24.0598 4292  EventSystem - ok
23:31:24.0629 4292  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
23:31:24.0650 4292  exfat - ok
23:31:24.0673 4292  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
23:31:24.0678 4292  fastfat - ok
23:31:24.0699 4292  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
23:31:24.0708 4292  Fax - ok
23:31:24.0723 4292  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
23:31:24.0725 4292  fdc - ok
23:31:24.0739 4292  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
23:31:24.0740 4292  fdPHost - ok
23:31:24.0752 4292  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
23:31:24.0753 4292  FDResPub - ok
23:31:24.0796 4292  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
23:31:24.0798 4292  FileInfo - ok
23:31:24.0806 4292  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
23:31:24.0810 4292  Filetrace - ok
23:31:24.0823 4292  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
23:31:24.0840 4292  flpydisk - ok
23:31:24.0859 4292  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
23:31:24.0863 4292  FltMgr - ok
23:31:24.0922 4292  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
23:31:24.0926 4292  FontCache - ok
23:31:24.0962 4292  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:31:24.0968 4292  FontCache3.0.0.0 - ok
23:31:24.0981 4292  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
23:31:24.0984 4292  FsDepends - ok
23:31:25.0006 4292  [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr         C:\windows\system32\DRIVERS\fssfltr.sys
23:31:25.0009 4292  fssfltr - ok
23:31:25.0076 4292  [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:31:25.0269 4292  fsssvc - ok
23:31:25.0309 4292  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
23:31:25.0311 4292  Fs_Rec - ok
23:31:25.0355 4292  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
23:31:25.0357 4292  fvevol - ok
23:31:25.0375 4292  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
23:31:25.0378 4292  gagp30kx - ok
23:31:25.0420 4292  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
23:31:25.0423 4292  GEARAspiWDM - ok
23:31:25.0476 4292  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
23:31:25.0480 4292  gpsvc - ok
23:31:25.0560 4292  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:31:25.0571 4292  gupdate - ok
23:31:25.0587 4292  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:31:25.0588 4292  gupdatem - ok
23:31:25.0618 4292  [ DB8A82239139348D6666434128D6F5DC ] gzflt           C:\windows\system32\DRIVERS\gzflt.sys
23:31:25.0625 4292  gzflt - ok
23:31:25.0655 4292  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\windows\system32\DRIVERS\hamachi.sys
23:31:25.0658 4292  hamachi - ok
23:31:25.0801 4292  [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
23:31:25.0900 4292  Hamachi2Svc - ok
23:31:25.0912 4292  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
23:31:25.0915 4292  hcw85cir - ok
23:31:25.0935 4292  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
23:31:25.0952 4292  HdAudAddService - ok
23:31:25.0999 4292  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
23:31:26.0010 4292  HDAudBus - ok
23:31:26.0021 4292  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
23:31:26.0025 4292  HidBatt - ok
23:31:26.0072 4292  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
23:31:26.0084 4292  HidBth - ok
23:31:26.0122 4292  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
23:31:26.0133 4292  HidIr - ok
23:31:26.0174 4292  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\System32\hidserv.dll
23:31:26.0175 4292  hidserv - ok
23:31:26.0195 4292  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
23:31:26.0197 4292  HidUsb - ok
23:31:26.0244 4292  [ 3037B6A26B271720F0941073390399B4 ] HiPatchService  C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
23:31:26.0249 4292  HiPatchService - ok
23:31:26.0290 4292  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
23:31:26.0291 4292  hkmsvc - ok
23:31:26.0319 4292  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
23:31:26.0321 4292  HomeGroupListener - ok
23:31:26.0355 4292  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
23:31:26.0356 4292  HomeGroupProvider - ok
23:31:26.0374 4292  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
23:31:26.0381 4292  HpSAMD - ok
23:31:26.0404 4292  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
23:31:26.0409 4292  HTTP - ok
23:31:26.0424 4292  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
23:31:26.0425 4292  hwpolicy - ok
23:31:26.0437 4292  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\drivers\i8042prt.sys
23:31:26.0441 4292  i8042prt - ok
23:31:26.0464 4292  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\windows\system32\drivers\iaStor.sys
23:31:26.0482 4292  iaStor - ok
23:31:26.0501 4292  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
23:31:26.0508 4292  iaStorV - ok
23:31:26.0584 4292  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:31:26.0601 4292  IDriverT - ok
23:31:26.0663 4292  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:31:26.0666 4292  idsvc - ok
23:31:26.0707 4292  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
23:31:26.0710 4292  iirsp - ok
23:31:26.0740 4292  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
23:31:26.0743 4292  IKEEXT - ok
23:31:26.0759 4292  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\windows\system32\drivers\Impcd.sys
23:31:26.0764 4292  Impcd - ok
23:31:26.0842 4292  [ EB5FA493A4B6EA290200AE39EBA2FBC6 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
23:31:26.0899 4292  IntcAzAudAddService - ok
23:31:26.0909 4292  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
23:31:26.0931 4292  intelide - ok
23:31:26.0956 4292  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
23:31:26.0956 4292  intelppm - ok
23:31:26.0962 4292  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
23:31:26.0963 4292  IPBusEnum - ok
23:31:26.0996 4292  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
23:31:27.0020 4292  IpFilterDriver - ok
23:31:27.0059 4292  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
23:31:27.0062 4292  iphlpsvc - ok
23:31:27.0094 4292  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
23:31:27.0097 4292  IPMIDRV - ok
23:31:27.0105 4292  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
23:31:27.0106 4292  IPNAT - ok
23:31:27.0177 4292  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
23:31:27.0201 4292  iPod Service - ok
23:31:27.0237 4292  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
23:31:27.0250 4292  IRENUM - ok
23:31:27.0259 4292  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
23:31:27.0265 4292  isapnp - ok
23:31:27.0277 4292  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
23:31:27.0295 4292  iScsiPrt - ok
23:31:27.0314 4292  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
23:31:27.0316 4292  kbdclass - ok
23:31:27.0328 4292  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
23:31:27.0330 4292  kbdhid - ok
23:31:27.0332 4292  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
23:31:27.0333 4292  KeyIso - ok
23:31:27.0363 4292  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
23:31:27.0367 4292  KSecDD - ok
23:31:27.0412 4292  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
23:31:27.0418 4292  KSecPkg - ok
23:31:27.0428 4292  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
23:31:27.0431 4292  ksthunk - ok
23:31:27.0478 4292  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
23:31:27.0497 4292  KtmRm - ok
23:31:27.0533 4292  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\System32\srvsvc.dll
23:31:27.0535 4292  LanmanServer - ok
23:31:27.0555 4292  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
23:31:27.0557 4292  LanmanWorkstation - ok
23:31:27.0593 4292  [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum       C:\windows\system32\drivers\LGBusEnum.sys
23:31:27.0596 4292  LGBusEnum - ok
23:31:27.0612 4292  [ CDDC07D414B08FECD48E4940C29F483F ] LGSHidFilt      C:\windows\system32\DRIVERS\LGSHidFilt.Sys
23:31:27.0623 4292  LGSHidFilt - ok
23:31:27.0639 4292  [ 64D2D4FDC00B9CF396B4FD4B07BCD06E ] LGSUsbFilt      C:\windows\system32\DRIVERS\LGSUsbFilt.Sys
23:31:27.0642 4292  LGSUsbFilt - ok
23:31:27.0653 4292  [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid        C:\windows\system32\drivers\LGVirHid.sys
23:31:27.0656 4292  LGVirHid - ok
23:31:27.0696 4292  [ 584528BF596A54B2BF6BE5067ADDA44A ] Linksys_adapter_H C:\windows\system32\DRIVERS\AE2500w764.sys
23:31:27.0718 4292  Linksys_adapter_H - ok
23:31:27.0734 4292  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
23:31:27.0734 4292  lltdio - ok
23:31:27.0772 4292  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
23:31:27.0786 4292  lltdsvc - ok
23:31:27.0819 4292  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
23:31:27.0820 4292  lmhosts - ok
23:31:27.0884 4292  [ 98B16E756243BEA9410E32025B19C06F ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:31:27.0886 4292  LMS - ok
23:31:27.0932 4292  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
23:31:27.0942 4292  LSI_FC - ok
23:31:27.0973 4292  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
23:31:27.0994 4292  LSI_SAS - ok
23:31:28.0015 4292  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
23:31:28.0018 4292  LSI_SAS2 - ok
23:31:28.0033 4292  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
23:31:28.0050 4292  LSI_SCSI - ok
23:31:28.0056 4292  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
23:31:28.0058 4292  luafv - ok
23:31:28.0102 4292  [ 9DB17B1DD76CF0FD0BB3DA5F1DA078C2 ] LxrSII1d        C:\windows\System32\Drivers\LxrSII1d.sys
23:31:28.0105 4292  LxrSII1d - ok
23:31:28.0107 4292  LxrSII1s - ok
23:31:28.0148 4292  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
23:31:28.0151 4292  MBAMProtector - ok
23:31:28.0199 4292  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
23:31:28.0203 4292  MBAMScheduler - ok
23:31:28.0233 4292  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
23:31:28.0263 4292  MBAMService - ok
23:31:28.0291 4292  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
23:31:28.0310 4292  Mcx2Svc - ok
23:31:28.0338 4292  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
23:31:28.0341 4292  megasas - ok
23:31:28.0384 4292  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
23:31:28.0424 4292  MegaSR - ok
23:31:28.0467 4292  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\windows\system32\drivers\HECIx64.sys
23:31:28.0482 4292  MEIx64 - ok
23:31:28.0496 4292  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
23:31:28.0497 4292  MMCSS - ok
23:31:28.0523 4292  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
23:31:28.0526 4292  Modem - ok
23:31:28.0561 4292  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
23:31:28.0562 4292  monitor - ok
23:31:28.0581 4292  [ EB03D4164E7F10B601D280413655ADE4 ] MotioninJoyXFilter C:\windows\system32\DRIVERS\MijXfilt.sys
23:31:28.0599 4292  MotioninJoyXFilter - ok
23:31:28.0622 4292  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
23:31:28.0624 4292  mouclass - ok
23:31:28.0635 4292  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
23:31:28.0637 4292  mouhid - ok
23:31:28.0647 4292  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
23:31:28.0648 4292  mountmgr - ok
23:31:28.0662 4292  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
23:31:28.0668 4292  mpio - ok
23:31:28.0671 4292  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
23:31:28.0672 4292  mpsdrv - ok
23:31:28.0690 4292  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\windows\system32\mpssvc.dll
23:31:28.0694 4292  MpsSvc - ok
23:31:28.0711 4292  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
23:31:28.0716 4292  MRxDAV - ok
23:31:28.0727 4292  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
23:31:28.0729 4292  mrxsmb - ok
23:31:28.0745 4292  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
23:31:28.0749 4292  mrxsmb10 - ok
23:31:28.0760 4292  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
23:31:28.0761 4292  mrxsmb20 - ok
23:31:28.0773 4292  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\drivers\msahci.sys
23:31:28.0820 4292  msahci - ok
23:31:28.0842 4292  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
23:31:28.0848 4292  msdsm - ok
23:31:28.0857 4292  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
23:31:28.0868 4292  MSDTC - ok
23:31:28.0885 4292  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
23:31:28.0888 4292  Msfs - ok
23:31:28.0897 4292  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
23:31:28.0899 4292  mshidkmdf - ok
23:31:28.0911 4292  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
23:31:28.0914 4292  msisadrv - ok
23:31:28.0960 4292  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
23:31:28.0965 4292  MSiSCSI - ok
23:31:28.0967 4292  msiserver - ok
23:31:28.0976 4292  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
23:31:28.0979 4292  MSKSSRV - ok
23:31:28.0986 4292  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
23:31:28.0988 4292  MSPCLOCK - ok
23:31:28.0999 4292  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
23:31:29.0001 4292  MSPQM - ok
23:31:29.0021 4292  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
23:31:29.0028 4292  MsRPC - ok
23:31:29.0071 4292  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\drivers\mssmbios.sys
23:31:29.0073 4292  mssmbios - ok
23:31:29.0158 4292  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
23:31:29.0161 4292  MSTEE - ok
23:31:29.0176 4292  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
23:31:29.0180 4292  MTConfig - ok
23:31:29.0228 4292  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
23:31:29.0228 4292  Mup - ok
23:31:29.0534 4292  [ B54B122DCEA87B66C6DC4A364FB1453F ] mv91cons        C:\windows\system32\drivers\mv91cons.sys
23:31:29.0537 4292  mv91cons - ok
23:31:29.0564 4292  [ 34D08C9C64F657D194961E96C47E9C69 ] mv91xx          C:\windows\system32\drivers\mv91xx.sys
23:31:29.0588 4292  mv91xx - ok
23:31:29.0617 4292  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
23:31:29.0636 4292  napagent - ok
23:31:29.0671 4292  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
23:31:29.0674 4292  NativeWifiP - ok
23:31:29.0730 4292  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
23:31:29.0733 4292  NDIS - ok
23:31:29.0760 4292  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
23:31:29.0763 4292  NdisCap - ok
23:31:29.0782 4292  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
23:31:29.0784 4292  NdisTapi - ok
23:31:29.0792 4292  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
23:31:29.0792 4292  Ndisuio - ok
23:31:29.0799 4292  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
23:31:29.0805 4292  NdisWan - ok
23:31:29.0815 4292  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
23:31:29.0818 4292  NDProxy - ok
23:31:29.0951 4292  [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
23:31:29.0993 4292  Nero BackItUp Scheduler 4.0 - ok
23:31:30.0032 4292  [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
23:31:30.0046 4292  Net Driver HPZ12 - ok
23:31:30.0056 4292  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
23:31:30.0074 4292  NetBIOS - ok
23:31:30.0090 4292  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
23:31:30.0092 4292  NetBT - ok
23:31:30.0112 4292  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
23:31:30.0113 4292  Netlogon - ok
23:31:30.0148 4292  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
23:31:30.0150 4292  Netman - ok
23:31:30.0252 4292  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:31:30.0267 4292  NetMsmqActivator - ok
23:31:30.0284 4292  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:31:30.0284 4292  NetPipeActivator - ok
23:31:30.0318 4292  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
23:31:30.0320 4292  netprofm - ok
23:31:30.0382 4292  [ 91C1AF448975764538F3B5CF9526CC3C ] netr28ux        C:\windows\system32\DRIVERS\netr28ux.sys
23:31:30.0412 4292  netr28ux - ok
23:31:30.0425 4292  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:31:30.0425 4292  NetTcpActivator - ok
23:31:30.0428 4292  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:31:30.0428 4292  NetTcpPortSharing - ok
23:31:30.0445 4292  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
23:31:30.0448 4292  nfrd960 - ok
23:31:30.0507 4292  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
23:31:30.0509 4292  NlaSvc - ok
23:31:30.0522 4292  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
23:31:30.0525 4292  Npfs - ok
23:31:30.0534 4292  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
23:31:30.0535 4292  nsi - ok
23:31:30.0539 4292  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
23:31:30.0540 4292  nsiproxy - ok
23:31:30.0596 4292  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
23:31:30.0629 4292  Ntfs - ok
23:31:30.0648 4292  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
23:31:30.0650 4292  Null - ok
23:31:30.0676 4292  [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub        C:\windows\system32\drivers\nusb3hub.sys
23:31:30.0679 4292  nusb3hub - ok
23:31:30.0708 4292  [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc        C:\windows\system32\drivers\nusb3xhc.sys
23:31:30.0728 4292  nusb3xhc - ok
23:31:30.0782 4292  [ 805F0C2B9C07E4C0F74D0EF70E9E827A ] NVHDA           C:\windows\system32\drivers\nvhda64v.sys
23:31:30.0821 4292  NVHDA - ok
23:31:31.0325 4292  [ EE6B7B6A54BCAFF516E30B1C15467495 ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
23:31:31.0558 4292  nvlddmkm - ok
23:31:31.0597 4292  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
23:31:31.0658 4292  nvraid - ok
23:31:31.0698 4292  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
23:31:31.0704 4292  nvstor - ok
23:31:31.0742 4292  [ 25626309AD2F81D47C829CCB5E46E478 ] nvsvc           C:\windows\system32\nvvsvc.exe
23:31:31.0762 4292  nvsvc - ok
23:31:31.0842 4292  [ A9AFE5B0648C8D7A411A72D8222F7F6E ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
23:31:31.0870 4292  nvUpdatusService - ok
23:31:31.0902 4292  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
23:31:31.0908 4292  nv_agp - ok
23:31:31.0927 4292  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
23:31:31.0931 4292  ohci1394 - ok
23:31:31.0952 4292  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:31:31.0965 4292  ose - ok
23:31:32.0088 4292  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:31:32.0173 4292  osppsvc - ok
23:31:32.0281 4292  [ 23E03977052162A348ADD43621C2CAB4 ] OverwolfUpdaterService C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
23:31:32.0286 4292  OverwolfUpdaterService - ok
23:31:32.0315 4292  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
23:31:32.0318 4292  p2pimsvc - ok
23:31:32.0340 4292  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
23:31:32.0343 4292  p2psvc - ok
23:31:32.0361 4292  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
23:31:32.0365 4292  Parport - ok
23:31:32.0413 4292  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
23:31:32.0414 4292  partmgr - ok
23:31:32.0427 4292  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
23:31:32.0429 4292  PcaSvc - ok
23:31:32.0442 4292  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
23:31:32.0450 4292  pci - ok
23:31:32.0476 4292  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\drivers\pciide.sys
23:31:32.0480 4292  pciide - ok
23:31:32.0501 4292  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
23:31:32.0528 4292  pcmcia - ok
23:31:32.0545 4292  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
23:31:32.0550 4292  pcw - ok
23:31:32.0577 4292  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
23:31:32.0583 4292  PEAUTH - ok
23:31:32.0738 4292  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
23:31:32.0743 4292  PerfHost - ok
23:31:32.0774 4292  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
23:31:32.0795 4292  pla - ok
23:31:32.0829 4292  [ AB168D5CF1CD69F9FA6F09C828FEA660 ] PlantronicsGC   C:\windows\system32\drivers\PLTGC.sys
23:31:32.0867 4292  PlantronicsGC - ok
23:31:32.0890 4292  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
23:31:32.0893 4292  PlugPlay - ok
23:31:32.0946 4292  [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
23:31:32.0948 4292  Pml Driver HPZ12 - ok
23:31:32.0950 4292  PnkBstrA - ok
23:31:32.0963 4292  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
23:31:32.0966 4292  PNRPAutoReg - ok
23:31:32.0999 4292  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
23:31:33.0001 4292  PNRPsvc - ok
23:31:33.0031 4292  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
23:31:33.0033 4292  PolicyAgent - ok
23:31:33.0212 4292  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
23:31:33.0213 4292  Power - ok
23:31:33.0304 4292  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
23:31:33.0399 4292  PptpMiniport - ok
23:31:33.0471 4292  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
23:31:33.0571 4292  Processor - ok
23:31:33.0708 4292  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
23:31:33.0709 4292  ProfSvc - ok
23:31:33.0726 4292  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
23:31:33.0727 4292  ProtectedStorage - ok
23:31:33.0735 4292  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
23:31:33.0736 4292  Psched - ok
23:31:33.0798 4292  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
23:31:33.0825 4292  ql2300 - ok
23:31:33.0863 4292  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
23:31:33.0868 4292  ql40xx - ok
23:31:33.0889 4292  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
23:31:33.0897 4292  QWAVE - ok
23:31:33.0908 4292  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
23:31:33.0912 4292  QWAVEdrv - ok
23:31:33.0926 4292  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
23:31:33.0929 4292  RasAcd - ok
23:31:33.0945 4292  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
23:31:33.0948 4292  RasAgileVpn - ok
23:31:33.0962 4292  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
23:31:33.0968 4292  RasAuto - ok
23:31:33.0980 4292  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
23:31:33.0985 4292  Rasl2tp - ok
23:31:33.0995 4292  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
23:31:33.0997 4292  RasMan - ok
23:31:34.0005 4292  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
23:31:34.0010 4292  RasPppoe - ok
23:31:34.0019 4292  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
23:31:34.0024 4292  RasSstp - ok
23:31:34.0034 4292  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
23:31:34.0044 4292  rdbss - ok
23:31:34.0051 4292  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
23:31:34.0055 4292  rdpbus - ok
23:31:34.0070 4292  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
23:31:34.0071 4292  RDPCDD - ok
23:31:34.0083 4292  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
23:31:34.0084 4292  RDPENCDD - ok
23:31:34.0092 4292  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
23:31:34.0092 4292  RDPREFMP - ok
23:31:34.0126 4292  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
23:31:34.0129 4292  RdpVideoMiniport - ok
23:31:34.0158 4292  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
23:31:34.0164 4292  RDPWD - ok
23:31:34.0179 4292  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
23:31:34.0189 4292  rdyboost - ok
23:31:34.0206 4292  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
23:31:34.0211 4292  RemoteAccess - ok
23:31:34.0224 4292  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
23:31:34.0232 4292  RemoteRegistry - ok
23:31:34.0248 4292  [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt         C:\windows\system32\DRIVERS\revoflt.sys
23:31:34.0252 4292  Revoflt - ok
23:31:34.0253 4292  rpcapd - ok
23:31:34.0264 4292  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
23:31:34.0265 4292  RpcEptMapper - ok
23:31:34.0273 4292  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
23:31:34.0277 4292  RpcLocator - ok
23:31:34.0297 4292  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
23:31:34.0299 4292  RpcSs - ok
23:31:34.0329 4292  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
23:31:34.0331 4292  rspndr - ok
23:31:34.0413 4292  [ 96C850E53CACA0469E1C4604E6C1AAD1 ] RTCore64        C:\Program Files (x86)\EVGA Precision X\RTCore64.sys
23:31:34.0417 4292  RTCore64 - ok
23:31:34.0461 4292  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
23:31:34.0469 4292  RTL8167 - ok
23:31:34.0484 4292  [ E16B7C030A05EF649B18FAB0A93D871F ] RtNdPt60        C:\windows\system32\DRIVERS\RtNdPt60.sys
23:31:34.0488 4292  RtNdPt60 - ok
23:31:34.0504 4292  [ 1DE78F5008120CD79B34C12394DCD493 ] RTTEAMPT        C:\windows\system32\DRIVERS\RtTeam60.sys
23:31:34.0508 4292  RTTEAMPT - ok
23:31:34.0514 4292  [ B1018AA1B5735F5FA89FD4DADF4BEA7A ] RTVLANPT        C:\windows\system32\DRIVERS\RtVlan60.sys
23:31:34.0517 4292  RTVLANPT - ok
23:31:34.0574 4292  [ A0EEA6F631349D0E0B7A6CAA7E099CB0 ] RUBotSrv        C:\Program Files (x86)\Trend Micro\RUBotted\RUBotSrv.exe
23:31:34.0602 4292  RUBotSrv - ok
23:31:34.0718 4292  [ 75832BD33AF48027FE43A9F1ACA39F4F ] SafeBox         C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
23:31:34.0721 4292  SafeBox - ok
23:31:34.0742 4292  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
23:31:34.0743 4292  SamSs - ok
23:31:34.0797 4292  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
23:31:34.0801 4292  SASDIFSV - ok
23:31:34.0808 4292  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
23:31:34.0811 4292  SASKUTIL - ok
23:31:34.0824 4292  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
23:31:34.0845 4292  sbp2port - ok
23:31:34.0930 4292  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
23:31:34.0939 4292  SBSDWSCService - ok
23:31:34.0972 4292  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
23:31:34.0980 4292  SCardSvr - ok
23:31:35.0021 4292  [ 8CA4B51D1B07EC3CC5D907251F1800AB ] SCDEmu          C:\windows\system32\drivers\SCDEmu.sys
23:31:35.0125 4292  SCDEmu - ok
23:31:35.0177 4292  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
23:31:35.0185 4292  scfilter - ok
23:31:35.0331 4292  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
23:31:35.0336 4292  Schedule - ok
23:31:35.0394 4292  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
23:31:35.0395 4292  SCPolicySvc - ok
23:31:35.0441 4292  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
23:31:35.0443 4292  SDRSVC - ok
23:31:35.0456 4292  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
23:31:35.0457 4292  secdrv - ok
23:31:35.0473 4292  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
23:31:35.0474 4292  seclogon - ok
23:31:35.0507 4292  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\system32\sens.dll
23:31:35.0508 4292  SENS - ok
23:31:35.0514 4292  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
23:31:35.0517 4292  SensrSvc - ok
23:31:35.0530 4292  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
23:31:35.0548 4292  Serenum - ok
23:31:35.0570 4292  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
23:31:35.0575 4292  Serial - ok
23:31:35.0585 4292  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
23:31:35.0588 4292  sermouse - ok
23:31:35.0607 4292  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
23:31:35.0612 4292  SessionEnv - ok
23:31:35.0626 4292  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
23:31:35.0644 4292  sffdisk - ok
23:31:35.0661 4292  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
23:31:35.0664 4292  sffp_mmc - ok
23:31:35.0675 4292  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
23:31:35.0678 4292  sffp_sd - ok
23:31:35.0684 4292  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
23:31:35.0687 4292  sfloppy - ok
23:31:35.0740 4292  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
23:31:35.0742 4292  SharedAccess - ok
23:31:35.0788 4292  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
23:31:35.0790 4292  ShellHWDetection - ok
23:31:35.0827 4292  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
23:31:35.0879 4292  SiSRaid2 - ok
23:31:35.0905 4292  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
23:31:36.0016 4292  SiSRaid4 - ok
23:31:36.0062 4292  [ 4762425FAB5B7DA46ACB727D3EE5B232 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:31:36.0063 4292  SkypeUpdate - ok
23:31:36.0071 4292  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
23:31:36.0075 4292  Smb - ok
23:31:36.0087 4292  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
23:31:36.0088 4292  SNMPTRAP - ok
23:31:36.0121 4292  [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan        C:\windows\syswow64\speedfan.sys
23:31:36.0125 4292  speedfan - ok
23:31:36.0208 4292  [ C94279F34B1F39ED2F6D2DDCB4E6CDCB ] SplashtopRemoteService C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
23:31:36.0240 4292  SplashtopRemoteService - ok
23:31:36.0247 4292  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
23:31:36.0250 4292  spldr - ok
23:31:36.0297 4292  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
23:31:36.0300 4292  Spooler - ok
23:31:36.0361 4292  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
23:31:36.0375 4292  sppsvc - ok
23:31:36.0414 4292  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
23:31:36.0423 4292  sppuinotify - ok
23:31:36.0440 4292  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
23:31:36.0445 4292  srv - ok
23:31:36.0465 4292  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
23:31:36.0469 4292  srv2 - ok
23:31:36.0477 4292  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
23:31:36.0479 4292  srvnet - ok
23:31:36.0491 4292  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
23:31:36.0493 4292  SSDPSRV - ok
23:31:36.0506 4292  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
23:31:36.0508 4292  SstpSvc - ok
23:31:36.0536 4292  [ 6E6B9B863C5B894F3C6A60680C7317A4 ] SSUService      C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
23:31:36.0571 4292  SSUService - ok
23:31:36.0607 4292  Steam Client Service - ok
23:31:36.0620 4292  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
23:31:36.0625 4292  stexstor - ok
23:31:36.0666 4292  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\windows\system32\DRIVERS\serscan.sys
23:31:36.0668 4292  StillCam - ok
23:31:36.0687 4292  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
23:31:36.0690 4292  stisvc - ok
23:31:36.0696 4292  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\drivers\swenum.sys
23:31:36.0698 4292  swenum - ok
23:31:36.0774 4292  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
23:31:36.0802 4292  SwitchBoard - ok
23:31:36.0829 4292  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
23:31:36.0834 4292  swprv - ok
23:31:36.0880 4292  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
23:31:36.0887 4292  SysMain - ok
23:31:36.0891 4292  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
23:31:36.0894 4292  TabletInputService - ok
23:31:36.0928 4292  [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t        C:\windows\system32\DRIVERS\tap0901t.sys
23:31:36.0931 4292  tap0901t - ok
23:31:36.0948 4292  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
23:31:36.0950 4292  TapiSrv - ok
23:31:36.0962 4292  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
23:31:36.0964 4292  TBS - ok
23:31:37.0225 4292  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\windows\system32\drivers\tcpip.sys
23:31:38.0289 4292  Tcpip - ok
23:31:38.0368 4292  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
23:31:38.0375 4292  TCPIP6 - ok
23:31:38.0440 4292  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
23:31:38.0441 4292  tcpipreg - ok
23:31:38.0458 4292  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
23:31:38.0461 4292  TDPIPE - ok
23:31:38.0482 4292  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
23:31:38.0486 4292  TDTCP - ok
23:31:38.0501 4292  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
23:31:38.0506 4292  tdx - ok
23:31:38.0517 4292  [ 1DE78F5008120CD79B34C12394DCD493 ] TEAM            C:\windows\system32\DRIVERS\RtTeam60.sys
23:31:38.0517 4292  TEAM - ok
23:31:38.0886 4292  [ 402794A75A899E296AB3EDEC4ECCB9A8 ] TeamViewer8     C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
23:31:38.0920 4292  TeamViewer8 - ok
23:31:38.0951 4292  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\drivers\termdd.sys
23:31:38.0953 4292  TermDD - ok
23:31:38.0978 4292  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
23:31:38.0981 4292  TermService - ok
23:31:38.0990 4292  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
23:31:38.0991 4292  Themes - ok
23:31:39.0011 4292  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
23:31:39.0012 4292  THREADORDER - ok
23:31:39.0020 4292  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
23:31:39.0022 4292  TrkWks - ok
23:31:39.0200 4292  [ 34D60AAB948E4A3A32748AEF63D1B11C ] trufos          C:\windows\system32\DRIVERS\trufos.sys
23:31:39.0219 4292  trufos - ok
23:31:39.0284 4292  [ A51E66B06E405F9AB8E65532A255FF22 ] TrufosAlt       C:\windows\system32\DRIVERS\TrufosAlt.sys
23:31:39.0297 4292  TrufosAlt - ok
23:31:39.0335 4292  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
23:31:39.0341 4292  TrustedInstaller - ok
23:31:39.0352 4292  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
23:31:39.0356 4292  tssecsrv - ok
23:31:39.0373 4292  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
23:31:39.0378 4292  TsUsbFlt - ok
23:31:39.0396 4292  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
23:31:39.0400 4292  TsUsbGD - ok
23:31:39.0426 4292  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
23:31:39.0429 4292  tunnel - ok
23:31:39.0527 4292  [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
23:31:39.0637 4292  TunngleService - ok
23:31:39.0662 4292  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
23:31:39.0667 4292  uagp35 - ok
23:31:39.0691 4292  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
23:31:39.0701 4292  udfs - ok
23:31:39.0736 4292  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
23:31:39.0762 4292  UI0Detect - ok
23:31:39.0792 4292  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
23:31:39.0796 4292  uliagpkx - ok
23:31:39.0856 4292  [ 694BCF23662F97D987CF4C6739C35F8B ] UltraMonUtility C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys
23:31:39.0860 4292  UltraMonUtility - ok
23:31:39.0880 4292  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
23:31:39.0884 4292  umbus - ok
23:31:39.0897 4292  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
23:31:39.0897 4292  UmPass - ok
23:31:40.0002 4292  [ 7A78ED1088890114DFDE2C4AB038D6B6 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:31:40.0011 4292  UNS - ok
23:31:40.0104 4292  [ 5EA30F95227C5A4A92F60F60B4433E23 ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
23:31:40.0106 4292  UPDATESRV - ok
23:31:40.0149 4292  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
23:31:40.0151 4292  upnphost - ok
23:31:40.0187 4292  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
23:31:40.0190 4292  USBAAPL64 - ok
23:31:40.0208 4292  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\windows\system32\drivers\usbaudio.sys
23:31:40.0214 4292  usbaudio - ok
23:31:40.0254 4292  [ C85B8247FADD432FA54FE11667C8D97D ] usbbus          C:\windows\system32\DRIVERS\lgx64bus.sys
23:31:40.0256 4292  usbbus - ok
23:31:40.0268 4292  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
23:31:40.0273 4292  usbccgp - ok
23:31:40.0296 4292  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
23:31:40.0301 4292  usbcir - ok
23:31:40.0338 4292  [ D8CDC12F5429878F23DDB3785A0FDF95 ] UsbDiag         C:\windows\system32\DRIVERS\lgx64diag.sys
23:31:40.0341 4292  UsbDiag - ok
23:31:40.0355 4292  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\DRIVERS\usbehci.sys
23:31:40.0359 4292  usbehci - ok
23:31:40.0378 4292  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
23:31:40.0397 4292  usbhub - ok
23:31:40.0411 4292  [ 79FA7A22B0F6F0082F640CBC82A00FCE ] USBModem        C:\windows\system32\DRIVERS\lgx64modem.sys
23:31:40.0414 4292  USBModem - ok
23:31:40.0428 4292  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
23:31:40.0432 4292  usbohci - ok
23:31:40.0446 4292  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\drivers\usbprint.sys
23:31:40.0448 4292  usbprint - ok
23:31:40.0464 4292  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
23:31:40.0468 4292  USBSTOR - ok
23:31:40.0479 4292  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
23:31:40.0482 4292  usbuhci - ok
23:31:40.0490 4292  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
23:31:40.0492 4292  UxSms - ok
23:31:40.0528 4292  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
23:31:40.0529 4292  VaultSvc - ok
23:31:40.0540 4292  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
23:31:40.0544 4292  vdrvroot - ok
23:31:40.0564 4292  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
23:31:40.0575 4292  vds - ok
23:31:40.0585 4292  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
23:31:40.0588 4292  vga - ok
23:31:40.0602 4292  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
23:31:40.0605 4292  VgaSave - ok
23:31:40.0620 4292  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
23:31:40.0629 4292  vhdmp - ok
23:31:40.0650 4292  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
23:31:40.0653 4292  viaide - ok
23:31:40.0675 4292  [ B1018AA1B5735F5FA89FD4DADF4BEA7A ] VLAN            C:\windows\system32\DRIVERS\RtVLAN60.sys
23:31:40.0675 4292  VLAN - ok
23:31:40.0691 4292  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
23:31:40.0696 4292  volmgr - ok
23:31:40.0705 4292  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
23:31:40.0709 4292  volmgrx - ok
23:31:40.0766 4292  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\windows\system32\drivers\volsnap.sys
23:31:40.0783 4292  volsnap - ok
23:31:41.0262 4292  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
23:31:42.0680 4292  vsmraid - ok
23:31:42.0847 4292  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
23:31:42.0905 4292  VSS - ok
23:31:42.0953 4292  [ 88773DB4FC5F2304E5510AEC166568B9 ] VSSERV          C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
23:31:42.0978 4292  VSSERV - ok
23:31:42.0985 4292  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
23:31:42.0986 4292  vwifibus - ok
23:31:43.0003 4292  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
23:31:43.0006 4292  vwififlt - ok
23:31:43.0010 4292  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
23:31:43.0013 4292  vwifimp - ok
23:31:43.0024 4292  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
23:31:43.0029 4292  W32Time - ok
23:31:43.0041 4292  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
23:31:43.0043 4292  WacomPen - ok
23:31:43.0059 4292  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
23:31:43.0062 4292  WANARP - ok
23:31:43.0065 4292  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
23:31:43.0066 4292  Wanarpv6 - ok
23:31:43.0152 4292  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
23:31:43.0169 4292  WatAdminSvc - ok
23:31:43.0199 4292  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
23:31:43.0223 4292  wbengine - ok
23:31:43.0238 4292  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
23:31:43.0245 4292  WbioSrvc - ok
23:31:43.0257 4292  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
23:31:43.0274 4292  wcncsvc - ok
23:31:43.0294 4292  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
23:31:43.0298 4292  WcsPlugInService - ok
23:31:43.0307 4292  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
23:31:43.0309 4292  Wd - ok
23:31:43.0340 4292  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
23:31:43.0343 4292  Wdf01000 - ok
23:31:43.0349 4292  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
23:31:43.0351 4292  WdiServiceHost - ok
23:31:43.0354 4292  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
23:31:43.0355 4292  WdiSystemHost - ok
23:31:43.0362 4292  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
23:31:43.0369 4292  WebClient - ok
23:31:43.0380 4292  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
23:31:43.0387 4292  Wecsvc - ok
23:31:43.0395 4292  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
23:31:43.0397 4292  wercplsupport - ok
23:31:43.0403 4292  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
23:31:43.0404 4292  WerSvc - ok
23:31:43.0417 4292  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
23:31:43.0418 4292  WfpLwf - ok
23:31:43.0430 4292  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
23:31:43.0433 4292  WIMMount - ok
23:31:43.0442 4292  WinDefend - ok
23:31:43.0446 4292  WinHttpAutoProxySvc - ok
23:31:43.0498 4292  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
23:31:43.0501 4292  Winmgmt - ok
23:31:43.0546 4292  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
23:31:43.0595 4292  WinRM - ok
23:31:43.0614 4292  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
23:31:43.0617 4292  WinUsb - ok
23:31:43.0652 4292  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
23:31:43.0656 4292  Wlansvc - ok
23:31:43.0701 4292  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:31:43.0705 4292  wlcrasvc - ok
23:31:43.0773 4292  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:31:43.0806 4292  wlidsvc - ok
23:31:43.0828 4292  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
23:31:43.0829 4292  WmiAcpi - ok
23:31:43.0850 4292  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
23:31:43.0856 4292  wmiApSrv - ok
23:31:43.0869 4292  WMPNetworkSvc - ok
23:31:43.0877 4292  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
23:31:43.0879 4292  WPCSvc - ok
23:31:43.0886 4292  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
23:31:43.0888 4292  WPDBusEnum - ok
23:31:43.0905 4292  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
23:31:43.0906 4292  ws2ifsl - ok
23:31:43.0914 4292  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\windows\system32\wscsvc.dll
23:31:43.0916 4292  wscsvc - ok
23:31:43.0918 4292  WSearch - ok
23:31:43.0961 4292  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
23:31:43.0971 4292  wuauserv - ok
23:31:44.0001 4292  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
23:31:44.0002 4292  WudfPf - ok
23:31:44.0019 4292  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
23:31:44.0021 4292  WUDFRd - ok
23:31:44.0044 4292  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
23:31:44.0045 4292  wudfsvc - ok
23:31:44.0096 4292  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
23:31:44.0103 4292  WwanSvc - ok
23:31:44.0131 4292  [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21          C:\windows\system32\DRIVERS\xusb21.sys
23:31:44.0134 4292  xusb21 - ok
23:31:44.0164 4292  ================ Scan global ===============================
23:31:44.0199 4292  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
23:31:44.0249 4292  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
23:31:44.0254 4292  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
23:31:44.0270 4292  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
23:31:44.0287 4292  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
23:31:44.0289 4292  [Global] - ok
23:31:44.0289 4292  ================ Scan MBR ==================================
23:31:44.0297 4292  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:31:44.0732 4292  \Device\Harddisk0\DR0 - ok
23:31:44.0755 4292  [ EF932EAA6EF4C94E66A7F6CEEC7EB422 ] \Device\Harddisk1\DR1
23:31:46.0030 4292  \Device\Harddisk1\DR1 - ok
23:31:46.0032 4292  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk6\DR6
23:31:47.0490 4292  \Device\Harddisk6\DR6 - ok
23:31:47.0491 4292  ================ Scan VBR ==================================
23:31:47.0502 4292  [ 4641D8BFE4DD3706CD9CF734FA8C4953 ] \Device\Harddisk0\DR0\Partition1
23:31:47.0503 4292  \Device\Harddisk0\DR0\Partition1 - ok
23:31:47.0514 4292  [ B682B49D2BC8608EFD6403164B3DCBB0 ] \Device\Harddisk0\DR0\Partition2
23:31:47.0516 4292  \Device\Harddisk0\DR0\Partition2 - ok
23:31:47.0517 4292  [ 7A6F4586341E8AFFB6F71ADBEC08D707 ] \Device\Harddisk1\DR1\Partition1
23:31:47.0518 4292  \Device\Harddisk1\DR1\Partition1 - ok
23:31:47.0531 4292  [ 7D464FAB2DA852A7CC6CB8A2D43BE27B ] \Device\Harddisk1\DR1\Partition2
23:31:47.0532 4292  \Device\Harddisk1\DR1\Partition2 - ok
23:31:47.0534 4292  [ 0A2E3BDBE2D1330FCC5E584E2397F6BC ] \Device\Harddisk6\DR6\Partition1
23:31:47.0535 4292  \Device\Harddisk6\DR6\Partition1 - ok
23:31:47.0535 4292  ============================================================
23:31:47.0535 4292  Scan finished
23:31:47.0535 4292  ============================================================
23:31:47.0539 6160  Detected object count: 0
23:31:47.0539 6160  Actual detected object count: 0

 

 

 

 

AdwCleaner:

# AdwCleaner v2.304 - Logfile created 07/08/2013 at 23:35:30
# Updated 03/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Jason - HDTV35
# Boot Mode : Normal
# Running from : C:\Users\Jason\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16611
 
[OK] Registry is clean.
 
-\\ Google Chrome v27.0.1453.116
 
File : C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [4319 octets] - [29/06/2013 16:20:36]
AdwCleaner[R2].txt - [1281 octets] - [08/07/2013 23:32:59]
AdwCleaner[S1].txt - [4574 octets] - [29/06/2013 16:21:15]
AdwCleaner[S2].txt - [1220 octets] - [08/07/2013 23:35:30]
 
########## EOF - C:\AdwCleaner[S2].txt - [1280 octets] ##########

 

 

 

 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:50 AM

Posted 09 July 2013 - 12:58 PM

Well unless combofix had an issue with spybot ,then I don't see it here. So having run Combofix, we need to see what that did, if anything.
Post that log with a DDS log....

Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 HDTV35

HDTV35
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:50 AM

Posted 09 July 2013 - 02:25 PM

UPDATE: Bitdefender found a virus, and moved it to quarantine, and see if I can delete it then. ESET is 95% done (I had it run overnight which you would think would take less then 13.5 hours) and found 6 infected files so far. here is what bitdefender found: Application.Hacktool.RemoveWAT.A   . also, I do not know if this means anything but, svchost is running at 508664K on system. I mean, I have 16GB of ram, and a intel 2600k i7 processor and my computer is at 35% ram, and around 15% cpu. Bitdefender just crashed so I was heading to see the crash info file and found a folder named this: Bi꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯꾯. I have no clue what that is, nor the language. EDIT: it is korean.

 

Here is the ComboFix log:

 

 

 

ComboFix 13-07-08.04 - Jason 07/08/2013  22:06:17.1.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.16384.11241 [GMT -4:00]
Running from: c:\users\Jason\Downloads\ComboFix.exe
AV: Bitdefender Antivirus *Disabled/Updated* {9B5F5313-CAF9-DD97-C460-E778420237B4}
FW: Bitdefender Firewall *Enabled* {A364D236-8096-DCCF-EF3F-4E4DBCD170CF}
SP: Bitdefender Antispyware *Disabled/Updated* {203EB2F7-ECC3-D219-FED0-DC0A39857D09}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1345917869.bdinstall.bin
c:\programdata\1364589783.bdinstall.bin
c:\programdata\1373091247.bdinstall.bin
c:\programdata\1373094012.bdinstall.bin
c:\programdata\1373094196.bdinstall.bin
c:\programdata\1373094488.bdinstall.bin
c:\programdata\1373094685.bdinstall.bin
c:\programdata\1373177695.bdinstall.bin
c:\programdata\1373184685.bdinstall.bin
c:\programdata\1373186149.bdinstall.bin
c:\users\Jason\Documents\~WRL1719.tmp
c:\windows\SysWow64\DEBUG.log
c:\windows\SysWow64\frapsvid.dll
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\pthreadVC.dll
c:\windows\SysWow64\SETE9AB.tmp
c:\windows\SysWow64\WanPacket.dll
c:\windows\SysWow64\wpcap.dll
c:\windows\wininit.ini
.
.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
(((((((((((((((((((((((((   Files Created from 2013-06-09 to 2013-07-09  )))))))))))))))))))))))))))))))
.
.
2013-07-09 02:18 . 2013-07-09 02:18 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-07-09 01:31 . 2013-07-09 01:48 -------- d-----w- c:\users\Jason\AppData\Roaming\TeamViewer
2013-07-09 01:28 . 2013-07-09 01:28 -------- d-----w- c:\program files (x86)\TeamViewer
2013-07-09 00:26 . 2013-07-09 01:55 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-07-08 16:52 . 2013-07-08 16:52 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2013-07-08 16:46 . 2013-07-08 16:57 -------- d-----w- c:\users\Jason\AppData\Roaming\Anvisoft
2013-07-08 16:46 . 2013-07-08 16:46 -------- d-----w- c:\programdata\Anvisoft
2013-07-08 16:45 . 2013-07-08 16:45 -------- d-----w- c:\program files (x86)\Anvisoft
2013-07-08 06:20 . 2013-07-08 15:46 -------- d-----w- c:\users\Jason\AppData\Local\AVG SafeGuard toolbar
2013-07-08 06:11 . 2013-07-08 15:46 -------- d-----w- c:\program files (x86)\AVG SafeGuard toolbar
2013-07-08 06:02 . 2013-07-08 06:02 -------- d--h--w- c:\programdata\Common Files
2013-07-07 08:51 . 2013-06-17 06:10 9552976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{742E2C24-89AF-4730-9272-434899AB7DE6}\mpengine.dll
2013-07-07 08:39 . 2012-04-17 18:34 76944 ----a-w- c:\windows\system32\drivers\bdvedisk.sys
2013-07-07 08:39 . 2013-02-22 23:46 93600 ----a-w- c:\windows\system32\drivers\BdfNdisf6.sys
2013-07-07 08:39 . 2012-11-12 22:11 82384 ----a-w- c:\windows\system32\drivers\bdsandbox.sys
2013-07-07 08:39 . 2013-04-17 18:59 593144 ----a-w- c:\windows\system32\drivers\avckf.sys
2013-07-07 08:39 . 2013-04-17 18:59 718840 ----a-w- c:\windows\system32\drivers\avc3.sys
2013-07-07 08:38 . 2013-07-07 08:41 -------- d-----w- c:\users\Jason\AppData\Roaming\Bitdefender
2013-07-07 08:36 . 2012-10-04 18:30 147232 ----a-w- c:\windows\system32\drivers\gzflt.sys
2013-07-07 08:35 . 2013-01-28 19:57 383048 ----a-w- c:\windows\system32\drivers\trufos.sys
2013-07-07 06:29 . 2013-07-07 06:29 0 ----a-w- c:\windows\system32\olepro32.dll
2013-07-07 06:09 . 2013-07-07 06:09 184768 ----a-w- c:\windows\system32\drivers\tmrkb.sys
2013-07-07 06:09 . 2013-07-07 06:09 173504 ----a-w- c:\windows\system32\drivers\tmcomm.sys
2013-07-07 06:08 . 2013-07-07 06:08 -------- d-----w- c:\program files (x86)\Trend Micro
2013-07-06 07:36 . 2013-07-06 07:36 -------- d-----w- c:\progra~3\BI3290~1
2013-07-06 07:03 . 2013-07-07 08:40 -------- d-----w- c:\programdata\Bitdefender
2013-07-06 06:13 . 2013-07-06 06:13 -------- d-----w- c:\program files (x86)\Common Files\Bitdefender
2013-07-02 17:32 . 2013-07-02 17:32 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2013-06-29 20:20 . 2013-06-29 20:20 -------- d-----w- c:\programdata\HitmanPro
2013-06-27 03:15 . 2013-06-27 03:21 -------- d-----w- c:\windows\system32\StarMade
2013-06-27 02:10 . 2013-06-27 03:18 -------- d-----w- c:\users\Jason\AppData\Roaming\.StarMade
2013-06-26 05:37 . 2013-07-08 16:56 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-06-26 05:37 . 2013-07-07 08:34 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2013-06-26 03:34 . 2013-06-26 03:34 -------- d-----w- c:\users\Jason\AppData\Roaming\SUPERAntiSpyware.com
2013-06-26 03:33 . 2013-06-26 08:25 -------- d-----w- c:\program files\SUPERAntiSpyware
2013-06-26 03:33 . 2013-06-26 03:33 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2013-06-26 01:53 . 2013-06-26 01:53 -------- d-----w- c:\users\Jason\AppData\Roaming\Malwarebytes
2013-06-26 01:53 . 2013-06-26 01:53 -------- d-----w- c:\programdata\Malwarebytes
2013-06-26 01:53 . 2013-04-04 18:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-26 01:53 . 2013-06-26 01:53 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-06-26 01:34 . 2013-06-26 01:35 287304 ----a-w- c:\windows\system32\drivers\TrufosAlt.sys
2013-06-26 01:34 . 2013-06-26 01:34 388168 ----a-w- c:\windows\system32\drivers\avisfltr.sys
2013-06-26 01:18 . 2013-06-26 01:29 -------- d-----w- c:\users\Jason\AppData\Roaming\InfraRecorder
2013-06-26 01:18 . 2013-06-26 01:18 -------- d-----w- c:\program files (x86)\InfraRecorder
2013-06-25 03:27 . 2013-06-25 03:28 -------- d-----w- c:\users\Jason\AppData\Local\ACCCx183
2013-06-24 18:36 . 2013-06-24 18:35 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-24 08:58 . 2013-06-24 08:58 -------- d-----w- c:\users\Jason\AppData\Roaming\Netmarble
2013-06-24 08:58 . 2013-06-24 08:58 1174729 ----a-w- c:\windows\unins000.exe
2013-06-24 08:58 . 2012-11-21 15:33 1739720 ----a-w- c:\windows\NMGridDownloaderUpdater.exe
2013-06-21 16:10 . 2013-06-21 16:10 -------- d-----w- c:\program files (x86)\BlueStacks
2013-06-21 16:02 . 2013-06-21 16:10 -------- d-----w- c:\programdata\BlueStacks
2013-06-21 13:59 . 2013-06-21 13:59 -------- d-----w- c:\program files (x86)\QwertyLab
2013-06-21 05:53 . 2013-06-21 05:53 -------- d-----w- c:\programdata\instedit.com
2013-06-21 05:53 . 2013-06-21 05:53 -------- d-----w- c:\program files (x86)\instedit.com
2013-06-21 05:48 . 2013-06-21 05:48 -------- d-----w- c:\program files (x86)\Universal Extractor
2013-06-21 05:30 . 2013-06-21 05:30 -------- d-----w- c:\program files (x86)\Orca
2013-06-21 05:26 . 2013-06-21 05:26 -------- d-----w- c:\program files\Microsoft SDKs
2013-06-20 20:20 . 2013-06-20 20:21 -------- d-----w- c:\users\Jason\AppData\Local\Skyrim
2013-06-20 20:09 . 2013-06-20 20:20 -------- d-----w- c:\program files (x86)\The Elder Scrolls V Skyrim
2013-06-20 06:39 . 2013-07-09 00:11 -------- d-----w- c:\users\Jason\Torrentz
2013-06-18 05:13 . 2013-06-18 06:43 -------- d-----w- c:\program files (x86)\VTFEdit
2013-06-17 23:41 . 2013-06-17 23:41 -------- d-----w- c:\users\Jason\AppData\Roaming\PDAppFlex
2013-06-17 23:30 . 2013-06-17 23:31 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2013-06-17 02:34 . 2013-07-08 01:59 -------- d-----w- c:\program files\Adobe
2013-06-17 02:33 . 2013-06-17 02:33 -------- d-----w- c:\program files (x86)\Entropia Universe
2013-06-17 02:27 . 2013-07-08 02:02 -------- d-----w- c:\program files\Common Files\Adobe
2013-06-17 01:12 . 2013-06-17 01:12 -------- d-----w- c:\programdata\SystemRequirementsLab
2013-06-17 00:28 . 2013-06-17 00:28 -------- d-----w- c:\users\Jason\AppData\Roaming\Awesomium
2013-06-16 23:06 . 2013-06-17 02:33 -------- d-----w- c:\users\Public\entropia universe
2013-06-16 23:05 . 2013-06-17 02:33 -------- d-----w- c:\windows\Entropia Universe
2013-06-16 19:52 . 2013-06-16 19:53 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-16 19:52 . 2013-06-16 19:53 -------- d-----w- c:\program files\iTunes
2013-06-16 19:52 . 2013-06-16 19:53 -------- d-----w- c:\program files (x86)\iTunes
2013-06-16 19:52 . 2013-06-16 19:52 -------- d-----w- c:\program files\iPod
2013-06-15 23:54 . 2013-06-16 06:34 -------- d-----w- c:\users\Jason\AppData\Roaming\codeblocks
2013-06-15 23:53 . 2013-06-15 23:54 -------- d-----w- c:\program files (x86)\CodeBlocks
2013-06-15 23:32 . 2013-06-19 01:03 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2013-06-14 19:43 . 2013-06-08 12:28 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-06-14 19:43 . 2013-06-08 11:13 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-06-14 19:43 . 2013-06-08 14:08 279040 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2013-06-14 19:43 . 2013-06-08 11:41 218112 ----a-w- c:\program files (x86)\Internet Explorer\sqmapi.dll
2013-06-14 19:43 . 2013-06-08 14:08 1365504 ----a-w- c:\windows\system32\urlmon.dll
2013-06-14 19:43 . 2013-06-08 14:06 2648064 ----a-w- c:\windows\system32\iertutil.dll
2013-06-14 19:43 . 2013-06-08 14:06 526336 ----a-w- c:\windows\system32\ieui.dll
2013-06-14 19:43 . 2013-06-08 14:06 15404544 ----a-w- c:\windows\system32\ieframe.dll
2013-06-14 19:42 . 2013-06-08 14:07 19233792 ----a-w- c:\windows\system32\mshtml.dll
2013-06-12 20:28 . 2013-05-08 06:39 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-06-12 00:48 . 2013-06-12 00:48 -------- d-----w- c:\users\Jason\AppData\Roaming\Nero
2013-06-11 21:39 . 2013-06-11 21:42 -------- d-----w- c:\program files (x86)\Nero
2013-06-11 21:39 . 2013-06-11 21:41 -------- d-----w- c:\programdata\Nero
2013-06-11 21:39 . 2013-06-11 21:44 -------- d-----w- c:\program files (x86)\Common Files\Nero
2013-06-11 20:37 . 2013-06-11 20:37 9089416 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-03 13:11 . 2013-04-19 02:48 127384 ----a-w- c:\windows\system32\drivers\scdemu.sys
2013-06-24 18:35 . 2012-06-12 04:07 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-06-24 18:35 . 2012-06-12 04:07 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-06-21 12:06 . 2013-03-26 15:26 15144928 ----a-w- c:\windows\system32\nvd3dumx.dll
2013-06-21 12:06 . 2013-03-06 01:15 2936208 ----a-w- c:\windows\system32\nvapi64.dll
2013-06-21 12:06 . 2013-03-06 01:15 27781920 ----a-w- c:\windows\system32\nvoglv64.dll
2013-06-21 12:06 . 2013-03-06 01:15 15920536 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-06-21 12:06 . 2013-03-06 01:15 12427240 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-06-21 12:06 . 2013-03-06 01:15 1059560 ----a-w- c:\windows\system32\nvumdshimx.dll
2013-06-21 12:06 . 2012-10-11 02:22 2597856 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-06-21 10:23 . 2011-11-09 01:08 6496544 ----a-w- c:\windows\system32\nvcpl.dll
2013-06-21 10:23 . 2011-11-09 01:08 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-06-21 10:23 . 2011-11-09 01:08 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-06-21 10:23 . 2011-11-09 01:08 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-06-21 10:23 . 2011-11-09 01:08 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-06-20 04:17 . 2012-06-12 16:23 3253909 ----a-w- c:\windows\system32\nvcoproc.bin
2013-06-14 02:08 . 2012-06-16 18:56 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-06-14 02:08 . 2012-06-16 18:54 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-06-13 06:54 . 2012-06-16 03:39 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-06-11 20:37 . 2012-06-17 03:11 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-11 20:37 . 2011-11-09 01:01 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-12 21:42 . 2013-06-06 18:04 1832224 ----a-w- c:\windows\system32\nvdispco6432018.dll
2013-05-12 21:42 . 2013-06-06 18:04 1511712 ----a-w- c:\windows\system32\nvdispgenco6432018.dll
2013-05-02 20:39 . 2011-03-29 02:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-02 06:06 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-05-01 07:59 . 2013-05-01 07:59 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2013-05-01 07:59 . 2013-05-01 07:59 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
2013-04-13 05:49 . 2013-05-15 11:45 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 11:45 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 11:45 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 11:45 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 11:45 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 11:45 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 10:32 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-15 11:45 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-15 11:45 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-15 11:44 3153920 ----a-w- c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]
2013-06-19 16:52 95624 ----a-w- c:\program files\Bitdefender\Bitdefender\antispam32\pmbxie.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-07-01 18:40 222832 ----a-w- c:\users\Jason\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-07-01 18:40 222832 ----a-w- c:\users\Jason\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-07-01 18:40 222832 ----a-w- c:\users\Jason\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-06-03 19636840]
"HP Officejet Pro 8600 (NET)"="c:\program files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" [2011-09-09 2676584]
"SkyDrive"="c:\users\Jason\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" [2013-07-01 257136]
"BitTorrent"="c:\program files (x86)\BitTorrent\bittorrent.exe" [2013-05-02 882520]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2013-06-26 5622512]
"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2013-06-19 520496]
"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2013-06-21 971136]
"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" [2013-06-19 609576]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ASUS AiChargerPlus Execute"="c:\program files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe" [2010-11-08 465536]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-10-28 49208]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-31 152392]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2013-04-25 1075296]
"BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2012-09-24 581496]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-06-28 2255184]
"Trend Micro RUBotted V2.0 Beta"="c:\program files (x86)\Trend Micro\RUBotted\RUBottedGUI.exe" [2010-12-17 1103184]
"Adobe Creative Cloud"="c:\program files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" [2013-06-21 2236816]
"PWRISOVM.EXE"="c:\program files (x86)\PowerISO\PWRISOVM.EXE" [2013-07-03 337432]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2013-06-19 520496]
"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2013-06-21 971136]
"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" [2013-06-19 609576]
.
c:\users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Monitor Ink Alerts - HP Officejet Pro 8600 (Network).lnk - c:\windows\system32\RunDll32.exe "c:\program files\HP\HP Officejet Pro 8600\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2BMB2GZ005KD;CONNECTION=NW;MONITOR=1; [2009-7-13 45568]
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 RUBotSrv;Trend Micro RUBotted Service;c:\program files (x86)\Trend Micro\RUBotted\RUBotSrv.exe;c:\program files (x86)\Trend Micro\RUBotted\RUBotSrv.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys;c:\windows\SYSNATIVE\DRIVERS\avckf.sys [x]
R3 avisfltr;avisfltr;c:\windows\system32\DRIVERS\avisfltr.sys;c:\windows\SYSNATIVE\DRIVERS\avisfltr.sys [x]
R3 bdfwfpf_pc;bdfwfpf_pc;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [x]
R3 BDSandBox;BDSandBox;c:\windows\system32\drivers\bdsandbox.sys;c:\windows\SYSNATIVE\drivers\bdsandbox.sys [x]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys;c:\windows\SYSNATIVE\drivers\Impcd.sys [x]
R3 Linksys_adapter_H;Linksys Adapter Network Driver;c:\windows\system32\DRIVERS\AE2500w764.sys;c:\windows\SYSNATIVE\DRIVERS\AE2500w764.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 mv91cons;mv91cons;c:\windows\system32\drivers\mv91cons.sys;c:\windows\SYSNATIVE\drivers\mv91cons.sys [x]
R3 mv91xx;mv91xx;c:\windows\system32\drivers\mv91xx.sys;c:\windows\SYSNATIVE\drivers\mv91xx.sys [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 RTCore64;RTCore64;c:\program files (x86)\EVGA Precision X\RTCore64.sys;c:\program files (x86)\EVGA Precision X\RTCore64.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan60.sys [x]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TrufosAlt;TrufosAlt;c:\windows\system32\DRIVERS\TrufosAlt.sys;c:\windows\SYSNATIVE\DRIVERS\TrufosAlt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN60.sys;c:\windows\SYSNATIVE\DRIVERS\RtVLAN60.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 BdDesktopParental;Bitdefender Desktop Parental Control;c:\program files\Bitdefender\Bitdefender\bdparentalservice.exe;c:\program files\Bitdefender\Bitdefender\bdparentalservice.exe [x]
R4 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R4 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
R4 Desura Install Service;Desura Install Service;c:\program files (x86)\Common Files\Desura\desura_service.exe;c:\program files (x86)\Common Files\Desura\desura_service.exe [x]
R4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
R4 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [x]
R4 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
R4 SplashtopRemoteService;Splashtop® Remote Service;c:\program files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe;c:\program files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [x]
R4 SSUService;Splashtop Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe;c:\program files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [x]
R4 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R4 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 AiChargerPlus;ASUS Charger Plus Driver;c:\windows\system32\DRIVERS\AiChargerPlus.sys;c:\windows\SYSNATIVE\DRIVERS\AiChargerPlus.sys [x]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys;c:\windows\SYSNATIVE\DRIVERS\avc3.sys [x]
S0 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys;c:\windows\SYSNATIVE\DRIVERS\gzflt.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [x]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [x]
S1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys;c:\windows\SYSNATIVE\DRIVERS\bdvedisk.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 Device Handle Service;Device Handle Service;c:\windows\SysWOW64\AsHookDevice.exe;c:\windows\SysWOW64\AsHookDevice.exe [x]
S2 LxrSII1d;Secure II Driver;c:\windows\System32\Drivers\LxrSII1d.sys;c:\windows\SYSNATIVE\Drivers\LxrSII1d.sys [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 SafeBox;SafeBox;c:\program files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe;c:\program files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [x]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 UltraMonUtility;UltraMon Utility Driver;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S2 UPDATESRV;Bitdefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender\updatesrv.exe;c:\program files\Bitdefender\Bitdefender\updatesrv.exe [x]
S3 AE3000;Linksys AE3000 Driver;c:\windows\system32\DRIVERS\AE3000w764.sys;c:\windows\SYSNATIVE\DRIVERS\AE3000w764.sys [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys;c:\windows\SYSNATIVE\DRIVERS\avchv.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 LGSUsbFilt;Logitech Gaming KMDF USB Filter Driver;c:\windows\system32\DRIVERS\LGSUsbFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSUsbFilt.Sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 PlantronicsGC;PLTGC Interface;c:\windows\system32\drivers\PLTGC.sys;c:\windows\SYSNATIVE\drivers\PLTGC.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Hpdevmgmt REG_MULTI_SZ   hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2013-07-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-17 20:37]
.
2013-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-20 22:37]
.
2013-07-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-20 22:37]
.
2013-07-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3990424413-3933562893-4020348434-1000Core.job
- c:\users\Jason\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-12 02:32]
.
2013-07-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3990424413-3933562893-4020348434-1000UA.job
- c:\users\Jason\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-12 02:32]
.
2013-07-08 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 982aae8d-3cca-416f-818b-83b3c4261e34.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
2013-07-08 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task cd40187f-ca01-4ac6-ac14-4942a4622987.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{09F58E74-42B4-4D70-BA26-35FC954E7A17}]
2013-06-19 16:58 115712 ----a-w- c:\program files\Bitdefender\Bitdefender\pmbxie.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-06-20 04:45 3317616 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-06-20 04:45 3317616 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-06-20 04:45 3317616 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-07-01 18:40 261744 ----a-w- c:\users\Jason\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-07-01 18:40 261744 ----a-w- c:\users\Jason\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-07-01 18:40 261744 ----a-w- c:\users\Jason\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1]
@="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}"
[HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}]
2013-05-24 18:27 206352 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2]
@="{342DAA0B-D796-460D-8566-901E08A1CCAD}"
[HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}]
2013-05-24 18:27 206352 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3]
@="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}"
[HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}]
2013-05-24 18:27 206352 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4]
@="{33816773-98AE-4723-ADE0-EBE54C8B5A67}"
[HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}]
2013-05-24 18:27 206352 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-28 11905128]
"GamecomSound"="c:\program files\Plantronics\GameCom780\GameCom780.exe" [2011-12-01 777448]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2013-04-24 7477016]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-06-03 472984]
"Bdagent"="c:\program files\Bitdefender\Bitdefender\bdagent.exe" [2013-07-07 1716832]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = about:blank
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.106 75.75.75.75 75.75.76.76
TCP: Interfaces\{86EB2E32-49BB-4A7F-A478-2A7EE8751D4C}: NameServer = 8.8.8.8,8.8.4.4
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3990424413-3933562893-4020348434-1000\Software\SecuROM\License information*]
"datasecu"=hex:03,2d,1f,14,7d,19,0e,52,15,78,92,e9,5c,ce,f4,56,35,b6,e6,dd,4e,
   60,c7,ff,87,25,14,a2,41,2f,8a,57,d2,b4,be,e7,1a,f8,47,fe,a3,85,00,4e,91,be,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\windows\SysWOW64\LxrSII1s.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\ASUS\AI Suite II\AsRoutineController.exe
c:\program files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
c:\program files (x86)\Google\Update\1.3.21.149\GoogleCrashHandler.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.bin
c:\program files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
.
**************************************************************************
.
Completion time: 2013-07-08  22:29:30 - machine was rebooted
ComboFix-quarantined-files.txt  2013-07-09 02:29
.
Pre-Run: 471,245,897,728 bytes free
Post-Run: 476,363,628,544 bytes free
.
- - End Of File - - 97EB407315A0B531EE4F4F4B41E07188
A36C5E4F47E84449FF07ED3517B43A31

Edited by HDTV35, 09 July 2013 - 02:40 PM.


#6 HDTV35

HDTV35
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:50 AM

Posted 09 July 2013 - 02:58 PM

ESET scan results (it was scanning my backup files which are heavily compressed):

 

 

I had to stop it because it was not even through the first entry in 4 hours (there are 6 total)

 

 

C:\Program Files (x86)\Vid-Saver Extension\Vid-Saver Extension.dll a variant of Win32/Toolbar.CrossRider.A application
C:\Users\Jason\Downloads\Setup__2338_il359324.exe a variant of Win32/Amonetize.D application
C:\Users\Jason\Downloads\SoftonicDownloader_for_exe-to-msi-converter.exe a variant of Win32/SoftonicDownloader.E application
M:\HDTV35\Backup Set 2013-06-25 194739\Backup Files 2013-06-26 145900\Backup files 106.zip a variant of Win32/Toolbar.CrossRider.A application
M:\HDTV35\Backup Set 2013-06-25 194739\Backup Files 2013-06-26 145900\Backup files 115.zip a variant of Win32/Adware.Yontoo.B application
M:\HDTV35\Backup Set 2013-06-25 194739\Backup Files 2013-06-26 145900\Backup files 138.zip multiple threats


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:50 AM

Posted 09 July 2013 - 09:15 PM

If the machine is still not right... see post 4.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users