Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Win32:BHO-AGM and other issues


  • Please log in to reply
11 replies to this topic

#1 ReyM1337

ReyM1337

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 12:38 PM

Last night I left my computer scanning using Avast since it started running slow, when I woke up it had located four trojans, I think Malware might also be involved, don't have malware bytes yet on this computer. Can soemone help me remove these from my computer? I am using Windows 7

 

Edit: also I assume sweetpacks was involved as well due to my browser going to the page on default


Edited by ReyM1337, 09 July 2013 - 12:47 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:30 AM

Posted 09 July 2013 - 01:11 PM

Welcome Rey... Lets start here.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 ReyM1337

ReyM1337
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 01:20 PM

thank you for the assistance. Here is the result page for minitoolbox, I will post the rest asap.

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Jmartinez3511 (administrator) on 09-07-2013 at 13:16:55
Running from "C:\Users\Jmartinez3511\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.1 publish=Yes
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
add address name="Local Area Connection" address=192.168.1.72 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Martinez
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Tunngle:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : TAP-Win32 Adapter V9 (Tunngle) #4
   Physical Address. . . . . . . . . : 00-FF-FF-23-82-35
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : E8-39-35-60-50-4E
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::285b:743e:84d9:dc00%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.72(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 283654453
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-D4-7A-4A-E8-39-35-60-50-4E
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Hamachi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-0D-A0-75
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::190d:a075(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::d0bf:7cab:6ec9:bdad%15(Preferred) 
   IPv4 Address. . . . . . . . . . . : 25.13.160.117(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Tuesday, July 09, 2013 12:47:45 AM
   Lease Expires . . . . . . . . . . : Wednesday, July 09, 2014 12:47:45 AM
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
                                       25.0.0.1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 360347910
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-D4-7A-4A-E8-39-35-60-50-4E
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Local Area Connection* 12:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:4b4:f5:bcf4:2e47(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::4b4:f5:bcf4:2e47%12(Preferred) 
   Default Gateway . . . . . . . . . : 
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.{BAA51C97-A830-4830-920B-0F4D6042F74D}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{FF238235-2AE3-4782-9AFF-2292AEF61FAA}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{9FD86031-3D31-4B95-AE48-B09C85B2F342}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  google-public-dns-a.google.com
Address:  8.8.8.8
 
Name:    google.com
Addresses:  2607:f8b0:4000:805::1002
 74.125.227.198
 74.125.227.197
 74.125.227.201
 74.125.227.195
 74.125.227.206
 74.125.227.192
 74.125.227.193
 74.125.227.196
 74.125.227.200
 74.125.227.199
 74.125.227.194
 
 
Pinging google.com [74.125.227.198] with 32 bytes of data:
Reply from 74.125.227.198: bytes=32 time=16ms TTL=53
Reply from 74.125.227.198: bytes=32 time=21ms TTL=53
 
Ping statistics for 74.125.227.198:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 16ms, Maximum = 21ms, Average = 18ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8
 
Name:    yahoo.com
Addresses:  98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=60ms TTL=46
Reply from 98.138.253.109: bytes=32 time=64ms TTL=46
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 60ms, Maximum = 64ms, Average = 62ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 21...00 ff ff 23 82 35 ......TAP-Win32 Adapter V9 (Tunngle) #4
 13...e8 39 35 60 50 4e ......Realtek PCIe GBE Family Controller
 15...7a 79 19 0d a0 75 ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 37...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.72    276
          0.0.0.0          0.0.0.0         25.0.0.1    25.13.160.117   9256
         25.0.0.0        255.0.0.0         On-link     25.13.160.117   9256
    25.13.160.117  255.255.255.255         On-link     25.13.160.117   9256
   25.255.255.255  255.255.255.255         On-link     25.13.160.117   9256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.72    276
     192.168.1.72  255.255.255.255         On-link      192.168.1.72    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.72    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.72    276
        224.0.0.0        240.0.0.0         On-link     25.13.160.117   9256
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.72    276
  255.255.255.255  255.255.255.255         On-link     25.13.160.117   9256
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.1.1  Default 
          0.0.0.0          0.0.0.0         25.0.0.1  Default 
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15   9020 ::/0                     2620:9b::1900:1
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:4137:9e76:4b4:f5:bcf4:2e47/128
                                    On-link
 15    276 2620:9b::/64             On-link
 15    276 2620:9b::/96             On-link
 15    276 2620:9b::190d:a075/128   On-link
 13    276 fe80::/64                On-link
 15    276 fe80::/64                On-link
 12    306 fe80::/64                On-link
 12    306 fe80::4b4:f5:bcf4:2e47/128
                                    On-link
 13    276 fe80::285b:743e:84d9:dc00/128
                                    On-link
 15    276 fe80::d0bf:7cab:6ec9:bdad/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 13    276 ff00::/8                 On-link
 15    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/09/2013 04:24:30 AM) (Source: Application Hang) (User: )
Description: The program Steam.exe version 1.78.87.58 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 145c
 
Start Time: 01ce7792c1f7a0c7
 
Termination Time: 2826
 
Application Path: C:\Program Files (x86)\Steam\Steam.exe
 
Report Id: 3da649f1-e879-11e2-9a42-e8393560504e
 
Error: (07/09/2013 00:44:17 AM) (Source: hshld) (User: )
Description: hshld error: 0SetServiceStatus
 
Error: (07/07/2013 01:34:05 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d81332
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d81332
Exception code: 0xc0000005
Fault offset: 0x000016ca
Faulting process id: 0x1674
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
Error: (07/05/2013 11:59:27 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Exception code: 0xc0000005
Fault offset: 0x000016da
Faulting process id: 0x1494
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
Error: (07/05/2013 11:49:50 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Exception code: 0xc0000417
Fault offset: 0x001f25f6
Faulting process id: 0x18e4
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
Error: (07/05/2013 11:10:22 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Exception code: 0xc0000005
Fault offset: 0x000016da
Faulting process id: 0x22f4
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
Error: (07/05/2013 11:09:49 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Exception code: 0xc0000005
Fault offset: 0x000016da
Faulting process id: 0x2358
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
Error: (07/05/2013 11:09:35 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Exception code: 0xc0000005
Fault offset: 0x000016da
Faulting process id: 0x17e8
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
Error: (07/05/2013 11:07:49 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d689cb
Exception code: 0xc0000005
Fault offset: 0x000016da
Faulting process id: 0x1df4
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
Error: (07/05/2013 04:37:25 AM) (Source: Application Error) (User: )
Description: Faulting application name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d55bca
Faulting module name: Skullgirls.exe, version: 0.0.0.0, time stamp: 0x51d55bca
Exception code: 0xc0000005
Fault offset: 0x000016da
Faulting process id: 0x1c8c
Faulting application start time: 0xSkullgirls.exe0
Faulting application path: Skullgirls.exe1
Faulting module path: Skullgirls.exe2
Report Id: Skullgirls.exe3
 
 
System errors:
=============
Error: (07/09/2013 04:26:42 AM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error: 
%%1053
 
Error: (07/09/2013 04:26:42 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
 
Error: (07/09/2013 00:47:49 AM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Monitoring Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (07/09/2013 00:45:14 AM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Routing Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (07/09/2013 00:39:27 AM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (07/02/2013 09:25:54 AM) (Source: Service Control Manager) (User: )
Description: The LogMeIn Hamachi Tunneling Engine service failed to start due to the following error: 
%%1053
 
Error: (07/02/2013 09:25:54 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the LogMeIn Hamachi Tunneling Engine service to connect.
 
Error: (07/02/2013 09:25:53 AM) (Source: Service Control Manager) (User: )
Description: The LogMeIn Hamachi Tunneling Engine service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (06/28/2013 05:26:35 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
 
Error: (06/28/2013 05:26:30 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
 
 
Microsoft Office Sessions:
=========================
Error: (07/09/2013 04:24:30 AM) (Source: Application Hang)(User: )
Description: Steam.exe1.78.87.58145c01ce7792c1f7a0c72826C:\Program Files (x86)\Steam\Steam.exe3da649f1-e879-11e2-9a42-e8393560504e
 
Error: (07/09/2013 00:44:17 AM) (Source: hshld)(User: )
Description: hshld error: 0SetServiceStatus
 
Error: (07/07/2013 01:34:05 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d81332Skullgirls.exe0.0.0.051d81332c0000005000016ca167401ce7adbf0f7cfdaC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exe37bcbc1a-e6cf-11e2-9a42-e8393560504e
 
Error: (07/05/2013 11:59:27 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d689cbSkullgirls.exe0.0.0.051d689cbc0000005000016da149401ce79a0ff8117beC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exe3fa57247-e594-11e2-9a42-e8393560504e
 
Error: (07/05/2013 11:49:50 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d689cbSkullgirls.exe0.0.0.051d689cbc0000417001f25f618e401ce799a2e3c6283C:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exee8495e67-e592-11e2-9a42-e8393560504e
 
Error: (07/05/2013 11:10:22 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d689cbSkullgirls.exe0.0.0.051d689cbc0000005000016da22f401ce799a247d6e1bC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exe646b7598-e58d-11e2-9a42-e8393560504e
 
Error: (07/05/2013 11:09:49 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d689cbSkullgirls.exe0.0.0.051d689cbc0000005000016da235801ce799a11ca7963C:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exe510e0d92-e58d-11e2-9a42-e8393560504e
 
Error: (07/05/2013 11:09:35 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d689cbSkullgirls.exe0.0.0.051d689cbc0000005000016da17e801ce799a08ae7e1eC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exe4851e6f4-e58d-11e2-9a42-e8393560504e
 
Error: (07/05/2013 11:07:49 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d689cbSkullgirls.exe0.0.0.051d689cbc0000005000016da1df401ce7999c584f94dC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exe09a4d354-e58d-11e2-9a42-e8393560504e
 
Error: (07/05/2013 04:37:25 AM) (Source: Application Error)(User: )
Description: Skullgirls.exe0.0.0.051d55bcaSkullgirls.exe0.0.0.051d55bcac0000005000016da1c8c01ce79633f84567aC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exeC:\Program Files (x86)\Steam\steamapps\common\Skullgirls Beta\Skullgirls.exe7f98d248-e556-11e2-9a42-e8393560504e
 
 
=========================== Installed Programs ============================
 
Ace of Spades (Version: 0.75.015)
Adobe AIR (Version: 3.7.0.2090)
Adobe Download Assistant (Version: 1.2.5)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader 9.2 (Version: 9.2.0)
Alan Wake
Alan Wake's American Nightmare
Alice: Madness Returns
Alien Swarm
Apprentice version 2.0 (Version: 2.0)
Archeblade
ARMA 2: Operation Arrowhead Beta
Ask Toolbar (Version: 1.15.2.0)
Ask Toolbar Updater (Version: 1.2.1.23037)
avast! Free Antivirus (Version: 8.0.1489.0)
Awesomenauts
Bastion
BattlEye for OA Uninstall
BattlEye Uninstall
Bejeweled 3 (Version: 2.2.0.97)
Bing Bar (Version: 7.0.826.0)
BitTorrent (Version: 7.6.1)
BitTorrentBar Toolbar (Version: 6.8.11.4)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blio (Version: 2.2.8188)
Borderlands 2
Bubble Wrap (Version: 1.0.0.0)
Cave Story+
Chuzzle Deluxe (Version: 2.2.0.95)
ClaDun x2
Closure
Clownfish for Skype
Cockatrice
Counter-Strike: Source
Cradle of Rome 2 (Version: 2.2.0.98)
D3DX10 (Version: 15.4.2368.0902)
DayZ Commander (Version: 0.9.112)
Define Ext (Version: 8)
DFOLauncher
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Don't Starve
Dora's World Adventure (Version: 2.2.0.95)
Dota 2
Dungeon Defenders
Dungeon Fighter Online
Facebook (Version: 1.1.0004)
Fallout: New Vegas
Farm Frenzy (Version: 2.2.0.98)
Farmscapes (Version: 2.2.0.98)
FATE (Version: 2.2.0.97)
Final Drive Fury (Version: 2.2.0.95)
Garry's Mod
Google Chrome (Version: 27.0.1453.116)
Google Drive (Version: 1.10.4769.632)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)
Google Update Helper (Version: 1.3.21.149)
Gotham City Impostors: Free To Play
Guild Wars 2
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
Hotline Miami
Hoyle Card Games (Version: 2.2.0.95)
HP Application Assistant (Version: 1.0.393.3870)
HP Auto (Version: 1.0.12935.3667)
HP Calendar (Version: 5.1.4245.23508)
HP Client Services (Version: 1.1.12938.3539)
HP Clock (Version: 5.1.4244.16367)
HP Customer Experience Enhancements (Version: 6.0.1.8)
HP Games (Version: 1.0.2.5)
HP LinkUp (Version: 2.01.029)
HP Magic Canvas (Version: 5.1.15.0)
HP Magic Canvas Tutorials (Version: 5.0.0.3)
HP MovieStore (Version: 2.1.091)
HP MovieStore (Version: 2.1.21091.0)
HP Notes (Version: 5.1.4274.30382)
HP Odometer (Version: 2.10.0000)
HP RSS (Version: 5.1.4301.21494)
HP Setup (Version: 9.0.15130.3904)
HP Setup Manager (Version: 1.2.15145.3905)
HP Support Assistant (Version: 7.0.39.15)
HP Support Information (Version: 11.00.0001)
HP TouchSmart RecipeBox (Version: 3.0.3830.27730)
HP Update (Version: 5.003.001.001)
HP Vision Hardware Diagnostics (Version: 2.12.1.0)
HP Weather (Version: 5.1.4295.16450)
Indie Game: The Movie
Intel® Management Engine Components (Version: 8.0.0.1351)
Intel® OpenCL CPU Runtime
Intel® Processor Graphics (Version: 8.15.10.2598)
Intel® Trusted Connect Service Client (Version: 1.23.216.0)
Internet Explorer Toolbar 4.8 by SweetPacks (Version: 4.8.0000)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
Jewel Match 3 (Version: 2.2.0.98)
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (Version: 2.2.0.98)
John Deere Drive Green (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Katawa Shoujo
Kobo (Version: 2.0.3)
LabelPrint (Version: 2.5.4507)
League of Legends (Version: 1.3)
Left 4 Dead 2
Legend of Grimrock
Letters from Nowhere 2 (Version: 2.2.0.97)
LogMeIn Hamachi (Version: 2.1.0.374)
Lumines Demo
Luxor HD (Version: 2.2.0.98)
Magic 2014 
Magic: The Gathering - Duels of the Planeswalkers 2013
Mah Jong Medley (Version: 2.2.0.95)
MapleStory
Mesh Runtime (Version: 15.4.5722.2)
Metric Converter (Version: 1.0.0.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Mathematics (Version: 4.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5139.5005)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
midicairus Toolbar (Version: 6.8.12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nexon Game Manager
NVIDIA PhysX (Version: 9.12.0613)
Offspring Fling!
OpenAL
opensource (Version: 1.0.14960.3876)
Pando Media Booster (Version: 2.6.0.8)
PAYDAY: The Heist
PDF Complete Special Edition (Version: 4.0.65)
PDF Settings CS6 (Version: 11.0)
Penguins! (Version: 2.2.0.98)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.98)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Night at the Inventory
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.98)
Portal 2
Portal 2 Publishing Tool
Power2Go (Version: 6.1.5706)
PressReader (Version: 5.11.0721.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6463)
Recettear: An Item Shop's Tale
Recovery Manager (Version: 5.5.0.4424)
Remote Graphics Receiver (Version: 5.4.5)
RollerCoaster Tycoon 3: Platinum (Version: 2.2.0.98)
Search Protection (Version: 7.3.0.3)
SearchDonkey (Version: 2.5.91)
Shank 2
Skullgirls Beta
Skype Click to Call (Version: 6.9.12585)
Skype™ 6.3 (Version: 6.3.105)
Snapshot
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Spot (Version: 1.0.0.0)
Steam (Version: 1.0.0.0)
Super Street Fighter IV: Arcade Edition
SweetPacks Updater Service (Version: 3.0.5.5)
Tap Tap Bear (Version: 1.0.0.0)
Team Fortress 2
TERA (Version: 1.41)
The Basement Collection
The Binding of Isaac
The Treasures of Mystery Island: The Ghost Ship (Version: 2.2.0.98)
The Walking Dead
TidyNetwork.com
Torchlight (Version: 2.2.0.98)
TSHostedAppLauncher (Version: 5.1.15.0)
Tunngle beta
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update Installer for WildTangent Games App
Updater By SweetPacks 2.0.0.586 (Version: 2.0.0.586)
Vindictus
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.98)
VLC media player 2.0.0 (Version: 2.0.0)
Warframe
WildTangent Games App (HP Games) (Version: 4.0.5.32)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
Yontoo 1.10.02 (Version: 1.10.02)
Zinio Reader 4 (Version: 4.2.4164)
Zombie Panic Source
Zuma's Revenge (Version: 2.2.0.98)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 65%
Total physical RAM: 4000.83 MB
Available physical RAM: 1381.45 MB
Total Pagefile: 7999.84 MB
Available Pagefile: 4393.87 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.38 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:914.61 GB) (Free:619.92 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:16.8 GB) (Free:2.1 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\MARTINEZ
 
Administrator            Guest                    Jmartinez3511            
 
 
**** End of log ****


#4 ReyM1337

ReyM1337
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 01:30 PM

Log for TDSSkiller:

 

13:26:15.0925 6556  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
13:26:16.0454 6556  ============================================================
13:26:16.0454 6556  Current date / time: 2013/07/09 13:26:16.0454
13:26:16.0454 6556  SystemInfo:
13:26:16.0454 6556  
13:26:16.0454 6556  OS Version: 6.1.7601 ServicePack: 1.0
13:26:16.0454 6556  Product type: Workstation
13:26:16.0454 6556  ComputerName: MARTINEZ
13:26:16.0454 6556  UserName: Jmartinez3511
13:26:16.0454 6556  Windows directory: C:\Windows
13:26:16.0454 6556  System windows directory: C:\Windows
13:26:16.0454 6556  Running under WOW64
13:26:16.0454 6556  Processor architecture: Intel x64
13:26:16.0454 6556  Number of processors: 2
13:26:16.0455 6556  Page size: 0x1000
13:26:16.0455 6556  Boot type: Normal boot
13:26:16.0455 6556  ============================================================
13:26:17.0882 6556  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:26:17.0909 6556  ============================================================
13:26:17.0909 6556  \Device\Harddisk0\DR0:
13:26:17.0909 6556  MBR partitions:
13:26:17.0909 6556  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:26:17.0909 6556  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x7253A000
13:26:17.0909 6556  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x7256C800, BlocksNum 0x2199800
13:26:17.0909 6556  ============================================================
13:26:17.0937 6556  C: <-> \Device\Harddisk0\DR0\Partition2
13:26:18.0026 6556  D: <-> \Device\Harddisk0\DR0\Partition3
13:26:18.0051 6556  ============================================================
13:26:18.0051 6556  Initialize success
13:26:18.0051 6556  ============================================================
13:27:01.0536 9124  ============================================================
13:27:01.0536 9124  Scan started
13:27:01.0536 9124  Mode: Manual; TDLFS; 
13:27:01.0536 9124  ============================================================
13:27:01.0849 9124  ================ Scan system memory ========================
13:27:01.0849 9124  System memory - ok
13:27:01.0849 9124  ================ Scan services =============================
13:27:02.0066 9124  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
13:27:02.0071 9124  1394ohci - ok
13:27:02.0121 9124  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:27:02.0126 9124  ACPI - ok
13:27:02.0152 9124  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
13:27:02.0160 9124  AcpiPmi - ok
13:27:02.0367 9124  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:27:02.0389 9124  AdobeFlashPlayerUpdateSvc - ok
13:27:02.0475 9124  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
13:27:02.0493 9124  adp94xx - ok
13:27:02.0545 9124  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
13:27:02.0549 9124  adpahci - ok
13:27:02.0578 9124  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
13:27:02.0582 9124  adpu320 - ok
13:27:02.0606 9124  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
13:27:02.0608 9124  AeLookupSvc - ok
13:27:02.0648 9124  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
13:27:02.0653 9124  AFD - ok
13:27:02.0686 9124  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
13:27:02.0693 9124  agp440 - ok
13:27:02.0704 9124  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
13:27:02.0706 9124  ALG - ok
13:27:02.0737 9124  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
13:27:02.0739 9124  aliide - ok
13:27:02.0752 9124  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
13:27:02.0754 9124  amdide - ok
13:27:02.0785 9124  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
13:27:02.0787 9124  AmdK8 - ok
13:27:02.0816 9124  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
13:27:02.0817 9124  AmdPPM - ok
13:27:02.0833 9124  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:27:02.0835 9124  amdsata - ok
13:27:02.0850 9124  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
13:27:02.0853 9124  amdsbs - ok
13:27:02.0862 9124  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:27:02.0863 9124  amdxata - ok
13:27:02.0871 9124  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
13:27:02.0874 9124  AppID - ok
13:27:02.0882 9124  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:27:02.0884 9124  AppIDSvc - ok
13:27:02.0922 9124  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
13:27:02.0924 9124  Appinfo - ok
13:27:02.0935 9124  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
13:27:02.0936 9124  arc - ok
13:27:02.0950 9124  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
13:27:02.0952 9124  arcsas - ok
13:27:03.0021 9124  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:27:03.0043 9124  aspnet_state - ok
13:27:03.0083 9124  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
13:27:03.0087 9124  aswFsBlk - ok
13:27:03.0098 9124  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
13:27:03.0101 9124  aswMonFlt - ok
13:27:03.0131 9124  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
13:27:03.0133 9124  aswRdr - ok
13:27:03.0169 9124  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
13:27:03.0170 9124  aswRvrt - ok
13:27:03.0203 9124  [ 10ED1CAB84AA65983C41A11F60294C9B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
13:27:03.0214 9124  aswSnx - ok
13:27:03.0227 9124  [ 00E5253353717D3CA12A0F5A6F9991EC ] aswSP           C:\Windows\system32\drivers\aswSP.sys
13:27:03.0231 9124  aswSP - ok
13:27:03.0238 9124  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
13:27:03.0240 9124  aswTdi - ok
13:27:03.0292 9124  [ 6359B99C955DB9F40B653159A0EED261 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
13:27:03.0294 9124  aswVmm - ok
13:27:03.0308 9124  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
13:27:03.0310 9124  AsyncMac - ok
13:27:03.0343 9124  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
13:27:03.0345 9124  atapi - ok
13:27:03.0385 9124  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:27:03.0392 9124  AudioEndpointBuilder - ok
13:27:03.0401 9124  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
13:27:03.0405 9124  AudioSrv - ok
13:27:03.0477 9124  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:27:03.0478 9124  avast! Antivirus - ok
13:27:03.0489 9124  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:27:03.0492 9124  AxInstSV - ok
13:27:03.0529 9124  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
13:27:03.0535 9124  b06bdrv - ok
13:27:03.0550 9124  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
13:27:03.0553 9124  b57nd60a - ok
13:27:03.0612 9124  [ 28A4012E68BC9597BCB9B26B51AAC4B6 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
13:27:03.0614 9124  BBSvc - ok
13:27:03.0647 9124  [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
13:27:03.0649 9124  BBUpdate - ok
13:27:03.0656 9124  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
13:27:03.0658 9124  BDESVC - ok
13:27:03.0673 9124  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
13:27:03.0674 9124  Beep - ok
13:27:03.0708 9124  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
13:27:03.0716 9124  BFE - ok
13:27:03.0756 9124  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
13:27:03.0776 9124  BITS - ok
13:27:03.0793 9124  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
13:27:03.0795 9124  blbdrive - ok
13:27:03.0814 9124  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:27:03.0816 9124  bowser - ok
13:27:03.0828 9124  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
13:27:03.0829 9124  BrFiltLo - ok
13:27:03.0838 9124  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
13:27:03.0840 9124  BrFiltUp - ok
13:27:03.0884 9124  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
13:27:03.0886 9124  Browser - ok
13:27:03.0910 9124  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
13:27:03.0914 9124  Brserid - ok
13:27:03.0925 9124  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
13:27:03.0926 9124  BrSerWdm - ok
13:27:03.0936 9124  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
13:27:03.0937 9124  BrUsbMdm - ok
13:27:03.0949 9124  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
13:27:03.0950 9124  BrUsbSer - ok
13:27:03.0958 9124  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
13:27:03.0960 9124  BTHMODEM - ok
13:27:03.0973 9124  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
13:27:03.0975 9124  bthserv - ok
13:27:04.0017 9124  [ A3AD13CA2747953DDD4C9AE4FB925BEC ] CalendarSynchService C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
13:27:04.0019 9124  CalendarSynchService - ok
13:27:04.0034 9124  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:27:04.0036 9124  cdfs - ok
13:27:04.0057 9124  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
13:27:04.0059 9124  cdrom - ok
13:27:04.0074 9124  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
13:27:04.0076 9124  CertPropSvc - ok
13:27:04.0085 9124  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
13:27:04.0087 9124  circlass - ok
13:27:04.0099 9124  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
13:27:04.0104 9124  CLFS - ok
13:27:04.0164 9124  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:27:04.0166 9124  clr_optimization_v2.0.50727_32 - ok
13:27:04.0199 9124  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:27:04.0203 9124  clr_optimization_v2.0.50727_64 - ok
13:27:04.0284 9124  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:27:04.0293 9124  clr_optimization_v4.0.30319_32 - ok
13:27:04.0358 9124  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:27:04.0361 9124  clr_optimization_v4.0.30319_64 - ok
13:27:04.0397 9124  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
13:27:04.0398 9124  CmBatt - ok
13:27:04.0438 9124  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
13:27:04.0439 9124  cmdide - ok
13:27:04.0534 9124  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
13:27:04.0540 9124  CNG - ok
13:27:04.0569 9124  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
13:27:04.0571 9124  Compbatt - ok
13:27:04.0603 9124  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
13:27:04.0605 9124  CompositeBus - ok
13:27:04.0608 9124  COMSysApp - ok
13:27:04.0646 9124  [ A0050420B91E097C178DFC3C0598F67B ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
13:27:04.0650 9124  cphs - ok
13:27:04.0669 9124  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
13:27:04.0670 9124  crcdisk - ok
13:27:04.0711 9124  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:27:04.0714 9124  CryptSvc - ok
13:27:04.0798 9124  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
13:27:04.0810 9124  cvhsvc - ok
13:27:04.0853 9124  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:27:04.0861 9124  DcomLaunch - ok
13:27:04.0896 9124  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
13:27:04.0900 9124  defragsvc - ok
13:27:04.0913 9124  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
13:27:04.0915 9124  DfsC - ok
13:27:04.0927 9124  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:27:04.0931 9124  Dhcp - ok
13:27:04.0943 9124  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
13:27:04.0945 9124  discache - ok
13:27:04.0969 9124  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
13:27:04.0971 9124  Disk - ok
13:27:05.0004 9124  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:27:05.0007 9124  Dnscache - ok
13:27:05.0024 9124  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:27:05.0027 9124  dot3svc - ok
13:27:05.0042 9124  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
13:27:05.0045 9124  DPS - ok
13:27:05.0064 9124  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
13:27:05.0065 9124  drmkaud - ok
13:27:05.0112 9124  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:27:05.0122 9124  DXGKrnl - ok
13:27:05.0125 9124  EagleX64 - ok
13:27:05.0140 9124  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
13:27:05.0149 9124  EapHost - ok
13:27:05.0219 9124  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
13:27:05.0271 9124  ebdrv - ok
13:27:05.0306 9124  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
13:27:05.0309 9124  EFS - ok
13:27:05.0373 9124  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
13:27:05.0385 9124  ehRecvr - ok
13:27:05.0394 9124  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
13:27:05.0396 9124  ehSched - ok
13:27:05.0417 9124  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
13:27:05.0423 9124  elxstor - ok
13:27:05.0436 9124  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
13:27:05.0437 9124  ErrDev - ok
13:27:05.0454 9124  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
13:27:05.0459 9124  EventSystem - ok
13:27:05.0480 9124  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
13:27:05.0484 9124  exfat - ok
13:27:05.0497 9124  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:27:05.0500 9124  fastfat - ok
13:27:05.0521 9124  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
13:27:05.0530 9124  Fax - ok
13:27:05.0543 9124  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
13:27:05.0545 9124  fdc - ok
13:27:05.0568 9124  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
13:27:05.0570 9124  fdPHost - ok
13:27:05.0577 9124  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
13:27:05.0580 9124  FDResPub - ok
13:27:05.0588 9124  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:27:05.0590 9124  FileInfo - ok
13:27:05.0597 9124  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:27:05.0599 9124  Filetrace - ok
13:27:05.0608 9124  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
13:27:05.0609 9124  flpydisk - ok
13:27:05.0622 9124  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:27:05.0626 9124  FltMgr - ok
13:27:05.0676 9124  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
13:27:05.0703 9124  FontCache - ok
13:27:05.0747 9124  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:27:05.0749 9124  FontCache3.0.0.0 - ok
13:27:05.0765 9124  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:27:05.0767 9124  FsDepends - ok
13:27:05.0783 9124  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:27:05.0784 9124  Fs_Rec - ok
13:27:05.0820 9124  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:27:05.0823 9124  fvevol - ok
13:27:05.0833 9124  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
13:27:05.0835 9124  gagp30kx - ok
13:27:05.0861 9124  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
13:27:05.0864 9124  GamesAppService - ok
13:27:05.0884 9124  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
13:27:05.0892 9124  gpsvc - ok
13:27:05.0955 9124  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:27:05.0957 9124  gupdate - ok
13:27:05.0962 9124  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:27:05.0964 9124  gupdatem - ok
13:27:05.0987 9124  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:27:05.0990 9124  gusvc - ok
13:27:06.0037 9124  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
13:27:06.0038 9124  hamachi - ok
13:27:06.0165 9124  [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
13:27:06.0208 9124  Hamachi2Svc - ok
13:27:06.0223 9124  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
13:27:06.0224 9124  hcw85cir - ok
13:27:06.0251 9124  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:27:06.0256 9124  HdAudAddService - ok
13:27:06.0310 9124  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
13:27:06.0317 9124  HDAudBus - ok
13:27:06.0353 9124  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
13:27:06.0355 9124  HidBatt - ok
13:27:06.0406 9124  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
13:27:06.0408 9124  HidBth - ok
13:27:06.0413 9124  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
13:27:06.0415 9124  HidIr - ok
13:27:06.0433 9124  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
13:27:06.0442 9124  hidserv - ok
13:27:06.0461 9124  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
13:27:06.0467 9124  HidUsb - ok
13:27:06.0495 9124  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
13:27:06.0505 9124  hkmsvc - ok
13:27:06.0533 9124  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:27:06.0538 9124  HomeGroupListener - ok
13:27:06.0568 9124  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:27:06.0572 9124  HomeGroupProvider - ok
13:27:06.0629 9124  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
13:27:06.0631 9124  HP Support Assistant Service - ok
13:27:06.0684 9124  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
13:27:06.0688 9124  HPClientSvc - ok
13:27:06.0733 9124  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
13:27:06.0744 9124  hpqwmiex - ok
13:27:06.0763 9124  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:27:06.0765 9124  HpSAMD - ok
13:27:06.0787 9124  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:27:06.0795 9124  HTTP - ok
13:27:06.0809 9124  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:27:06.0810 9124  hwpolicy - ok
13:27:06.0825 9124  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
13:27:06.0828 9124  i8042prt - ok
13:27:06.0844 9124  [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
13:27:06.0848 9124  iaStor - ok
13:27:06.0860 9124  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:27:06.0864 9124  iaStorV - ok
13:27:06.0917 9124  [ 8AC7ECAD268CF04FB0BAC6AE7D300E6D ] IBUpdaterService C:\Windows\system32\dmwu.exe
13:27:06.0943 9124  IBUpdaterService - ok
13:27:06.0985 9124  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:27:06.0996 9124  idsvc - ok
13:27:07.0215 9124  [ 0638D16029B1C800908D965AC78970C7 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
13:27:07.0430 9124  igfx - ok
13:27:07.0449 9124  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
13:27:07.0451 9124  iirsp - ok
13:27:07.0487 9124  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
13:27:07.0497 9124  IKEEXT - ok
13:27:07.0565 9124  [ 68E799ADC93086EA170D3314DF23BEDB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:27:07.0608 9124  IntcAzAudAddService - ok
13:27:07.0642 9124  [ 2D66067C7A8A0112156BCD1C0BAA7042 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
13:27:07.0648 9124  Intel® Capability Licensing Service Interface - ok
13:27:07.0686 9124  [ C9DCE1CB628AEED3C0C30ABBF4F1E718 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
13:27:07.0688 9124  Intel® ME Service - ok
13:27:07.0700 9124  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
13:27:07.0702 9124  intelide - ok
13:27:07.0737 9124  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
13:27:07.0739 9124  intelppm - ok
13:27:07.0750 9124  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
13:27:07.0753 9124  IPBusEnum - ok
13:27:07.0788 9124  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:27:07.0790 9124  IpFilterDriver - ok
13:27:07.0831 9124  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:27:07.0838 9124  iphlpsvc - ok
13:27:07.0852 9124  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
13:27:07.0853 9124  IPMIDRV - ok
13:27:07.0862 9124  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:27:07.0864 9124  IPNAT - ok
13:27:07.0871 9124  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:27:07.0873 9124  IRENUM - ok
13:27:07.0877 9124  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:27:07.0879 9124  isapnp - ok
13:27:07.0892 9124  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
13:27:07.0895 9124  iScsiPrt - ok
13:27:07.0912 9124  [ 3628933AF5305EAB8173949BFF912F04 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
13:27:07.0914 9124  jhi_service - ok
13:27:07.0942 9124  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
13:27:07.0943 9124  kbdclass - ok
13:27:07.0952 9124  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
13:27:07.0954 9124  kbdhid - ok
13:27:07.0961 9124  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
13:27:07.0964 9124  KeyIso - ok
13:27:07.0998 9124  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:27:08.0000 9124  KSecDD - ok
13:27:08.0012 9124  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:27:08.0014 9124  KSecPkg - ok
13:27:08.0027 9124  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
13:27:08.0029 9124  ksthunk - ok
13:27:08.0050 9124  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:27:08.0056 9124  KtmRm - ok
13:27:08.0091 9124  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:27:08.0096 9124  LanmanServer - ok
13:27:08.0110 9124  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:27:08.0115 9124  LanmanWorkstation - ok
13:27:08.0136 9124  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
13:27:08.0138 9124  lltdio - ok
13:27:08.0152 9124  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:27:08.0157 9124  lltdsvc - ok
13:27:08.0167 9124  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:27:08.0170 9124  lmhosts - ok
13:27:08.0192 9124  [ BF22ACF4CF3734D61357E67F0521BC03 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
13:27:08.0195 9124  LMS - ok
13:27:08.0225 9124  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
13:27:08.0228 9124  LSI_FC - ok
13:27:08.0257 9124  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
13:27:08.0260 9124  LSI_SAS - ok
13:27:08.0290 9124  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
13:27:08.0297 9124  LSI_SAS2 - ok
13:27:08.0326 9124  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
13:27:08.0329 9124  LSI_SCSI - ok
13:27:08.0383 9124  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
13:27:08.0387 9124  luafv - ok
13:27:08.0416 9124  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
13:27:08.0422 9124  Mcx2Svc - ok
13:27:08.0426 9124  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
13:27:08.0427 9124  megasas - ok
13:27:08.0445 9124  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
13:27:08.0449 9124  MegaSR - ok
13:27:08.0458 9124  [ 6B01B7414A105B9E51652089A03027CF ] MEIx64          C:\Windows\system32\drivers\HECIx64.sys
13:27:08.0460 9124  MEIx64 - ok
13:27:08.0472 9124  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
13:27:08.0483 9124  MMCSS - ok
13:27:08.0487 9124  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
13:27:08.0488 9124  Modem - ok
13:27:08.0515 9124  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
13:27:08.0517 9124  monitor - ok
13:27:08.0524 9124  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
13:27:08.0526 9124  mouclass - ok
13:27:08.0544 9124  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
13:27:08.0546 9124  mouhid - ok
13:27:08.0555 9124  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:27:08.0556 9124  mountmgr - ok
13:27:08.0612 9124  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
13:27:08.0615 9124  MpFilter - ok
13:27:08.0630 9124  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
13:27:08.0633 9124  mpio - ok
13:27:08.0647 9124  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:27:08.0649 9124  mpsdrv - ok
13:27:08.0669 9124  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:27:08.0679 9124  MpsSvc - ok
13:27:08.0700 9124  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:27:08.0704 9124  MRxDAV - ok
13:27:08.0730 9124  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:27:08.0732 9124  mrxsmb - ok
13:27:08.0749 9124  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:27:08.0753 9124  mrxsmb10 - ok
13:27:08.0765 9124  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:27:08.0767 9124  mrxsmb20 - ok
13:27:08.0789 9124  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
13:27:08.0790 9124  msahci - ok
13:27:08.0802 9124  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
13:27:08.0805 9124  msdsm - ok
13:27:08.0829 9124  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
13:27:08.0833 9124  MSDTC - ok
13:27:08.0853 9124  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:27:08.0855 9124  Msfs - ok
13:27:08.0861 9124  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:27:08.0863 9124  mshidkmdf - ok
13:27:08.0873 9124  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:27:08.0875 9124  msisadrv - ok
13:27:08.0890 9124  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:27:08.0893 9124  MSiSCSI - ok
13:27:08.0898 9124  msiserver - ok
13:27:08.0913 9124  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
13:27:08.0915 9124  MSKSSRV - ok
13:27:08.0973 9124  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
13:27:08.0974 9124  MsMpSvc - ok
13:27:08.0988 9124  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
13:27:08.0989 9124  MSPCLOCK - ok
13:27:08.0999 9124  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
13:27:09.0000 9124  MSPQM - ok
13:27:09.0017 9124  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:27:09.0022 9124  MsRPC - ok
13:27:09.0045 9124  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
13:27:09.0047 9124  mssmbios - ok
13:27:09.0055 9124  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
13:27:09.0056 9124  MSTEE - ok
13:27:09.0064 9124  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
13:27:09.0065 9124  MTConfig - ok
13:27:09.0076 9124  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
13:27:09.0078 9124  Mup - ok
13:27:09.0109 9124  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
13:27:09.0116 9124  napagent - ok
13:27:09.0135 9124  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:27:09.0139 9124  NativeWifiP - ok
13:27:09.0186 9124  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:27:09.0195 9124  NDIS - ok
13:27:09.0210 9124  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
13:27:09.0211 9124  NdisCap - ok
13:27:09.0227 9124  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:27:09.0229 9124  NdisTapi - ok
13:27:09.0250 9124  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
13:27:09.0252 9124  Ndisuio - ok
13:27:09.0264 9124  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
13:27:09.0266 9124  NdisWan - ok
13:27:09.0272 9124  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
13:27:09.0274 9124  NDProxy - ok
13:27:09.0282 9124  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
13:27:09.0283 9124  NetBIOS - ok
13:27:09.0293 9124  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:27:09.0297 9124  NetBT - ok
13:27:09.0310 9124  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
13:27:09.0312 9124  Netlogon - ok
13:27:09.0327 9124  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
13:27:09.0332 9124  Netman - ok
13:27:09.0405 9124  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:27:09.0408 9124  NetMsmqActivator - ok
13:27:09.0415 9124  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:27:09.0417 9124  NetPipeActivator - ok
13:27:09.0438 9124  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
13:27:09.0444 9124  netprofm - ok
13:27:09.0449 9124  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:27:09.0450 9124  NetTcpActivator - ok
13:27:09.0454 9124  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:27:09.0455 9124  NetTcpPortSharing - ok
13:27:09.0479 9124  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
13:27:09.0480 9124  nfrd960 - ok
13:27:09.0530 9124  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:27:09.0532 9124  NisDrv - ok
13:27:09.0559 9124  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
13:27:09.0564 9124  NisSrv - ok
13:27:09.0580 9124  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:27:09.0586 9124  NlaSvc - ok
13:27:09.0593 9124  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:27:09.0595 9124  Npfs - ok
13:27:09.0598 9124  npggsvc - ok
13:27:09.0621 9124  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
13:27:09.0624 9124  nsi - ok
13:27:09.0632 9124  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:27:09.0634 9124  nsiproxy - ok
13:27:09.0688 9124  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
13:27:09.0713 9124  Ntfs - ok
13:27:09.0726 9124  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
13:27:09.0728 9124  Null - ok
13:27:09.0768 9124  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:27:09.0771 9124  nvraid - ok
13:27:09.0797 9124  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:27:09.0800 9124  nvstor - ok
13:27:09.0830 9124  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
13:27:09.0833 9124  nv_agp - ok
13:27:09.0842 9124  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
13:27:09.0844 9124  ohci1394 - ok
13:27:09.0877 9124  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:27:09.0880 9124  ose - ok
13:27:10.0031 9124  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:27:10.0109 9124  osppsvc - ok
13:27:10.0166 9124  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:27:10.0183 9124  p2pimsvc - ok
13:27:10.0220 9124  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
13:27:10.0228 9124  p2psvc - ok
13:27:10.0274 9124  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
13:27:10.0276 9124  Parport - ok
13:27:10.0308 9124  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:27:10.0317 9124  partmgr - ok
13:27:10.0344 9124  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:27:10.0349 9124  PcaSvc - ok
13:27:10.0371 9124  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
13:27:10.0374 9124  pci - ok
13:27:10.0379 9124  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
13:27:10.0381 9124  pciide - ok
13:27:10.0419 9124  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
13:27:10.0423 9124  pcmcia - ok
13:27:10.0446 9124  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:27:10.0449 9124  pcw - ok
13:27:10.0493 9124  pdfcDispatcher - ok
13:27:10.0537 9124  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:27:10.0547 9124  PEAUTH - ok
13:27:10.0635 9124  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
13:27:10.0639 9124  PerfHost - ok
13:27:10.0718 9124  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
13:27:10.0748 9124  pla - ok
13:27:10.0856 9124  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:27:10.0873 9124  PlugPlay - ok
13:27:10.0896 9124  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:27:10.0899 9124  PNRPAutoReg - ok
13:27:10.0906 9124  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:27:10.0910 9124  PNRPsvc - ok
13:27:10.0938 9124  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:27:10.0945 9124  PolicyAgent - ok
13:27:10.0975 9124  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
13:27:10.0979 9124  Power - ok
13:27:10.0991 9124  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
13:27:10.0994 9124  PptpMiniport - ok
13:27:11.0028 9124  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
13:27:11.0030 9124  Processor - ok
13:27:11.0054 9124  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:27:11.0059 9124  ProfSvc - ok
13:27:11.0075 9124  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:27:11.0077 9124  ProtectedStorage - ok
13:27:11.0100 9124  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
13:27:11.0102 9124  Psched - ok
13:27:11.0135 9124  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
13:27:11.0161 9124  ql2300 - ok
13:27:11.0200 9124  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
13:27:11.0203 9124  ql40xx - ok
13:27:11.0217 9124  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
13:27:11.0222 9124  QWAVE - ok
13:27:11.0234 9124  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:27:11.0237 9124  QWAVEdrv - ok
13:27:11.0250 9124  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:27:11.0254 9124  RasAcd - ok
13:27:11.0302 9124  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
13:27:11.0304 9124  RasAgileVpn - ok
13:27:11.0314 9124  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
13:27:11.0319 9124  RasAuto - ok
13:27:11.0327 9124  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
13:27:11.0331 9124  Rasl2tp - ok
13:27:11.0348 9124  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
13:27:11.0354 9124  RasMan - ok
13:27:11.0364 9124  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:27:11.0367 9124  RasPppoe - ok
13:27:11.0381 9124  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
13:27:11.0383 9124  RasSstp - ok
13:27:11.0399 9124  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:27:11.0403 9124  rdbss - ok
13:27:11.0411 9124  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
13:27:11.0413 9124  rdpbus - ok
13:27:11.0418 9124  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
13:27:11.0419 9124  RDPCDD - ok
13:27:11.0442 9124  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
13:27:11.0443 9124  RDPENCDD - ok
13:27:11.0455 9124  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
13:27:11.0457 9124  RDPREFMP - ok
13:27:11.0480 9124  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
13:27:11.0482 9124  RDPWD - ok
13:27:11.0497 9124  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:27:11.0500 9124  rdyboost - ok
13:27:11.0521 9124  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:27:11.0524 9124  RemoteAccess - ok
13:27:11.0539 9124  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:27:11.0544 9124  RemoteRegistry - ok
13:27:11.0555 9124  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:27:11.0559 9124  RpcEptMapper - ok
13:27:11.0573 9124  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
13:27:11.0575 9124  RpcLocator - ok
13:27:11.0604 9124  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
13:27:11.0609 9124  RpcSs - ok
13:27:11.0625 9124  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
13:27:11.0627 9124  rspndr - ok
13:27:11.0666 9124  [ 9140DB0911DE035FED0A9A77A2D156EA ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
13:27:11.0672 9124  RTL8167 - ok
13:27:11.0682 9124  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
13:27:11.0684 9124  SamSs - ok
13:27:11.0693 9124  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:27:11.0696 9124  sbp2port - ok
13:27:11.0705 9124  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:27:11.0709 9124  SCardSvr - ok
13:27:11.0714 9124  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:27:11.0716 9124  scfilter - ok
13:27:11.0735 9124  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
13:27:11.0762 9124  Schedule - ok
13:27:11.0782 9124  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:27:11.0783 9124  SCPolicySvc - ok
13:27:11.0798 9124  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:27:11.0802 9124  SDRSVC - ok
13:27:11.0806 9124  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
13:27:11.0808 9124  secdrv - ok
13:27:11.0812 9124  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
13:27:11.0815 9124  seclogon - ok
13:27:11.0819 9124  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
13:27:11.0822 9124  SENS - ok
13:27:11.0836 9124  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:27:11.0839 9124  SensrSvc - ok
13:27:11.0862 9124  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
13:27:11.0863 9124  Serenum - ok
13:27:11.0874 9124  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
13:27:11.0876 9124  Serial - ok
13:27:11.0888 9124  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
13:27:11.0889 9124  sermouse - ok
13:27:11.0903 9124  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
13:27:11.0908 9124  SessionEnv - ok
13:27:11.0912 9124  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
13:27:11.0913 9124  sffdisk - ok
13:27:11.0926 9124  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
13:27:11.0928 9124  sffp_mmc - ok
13:27:11.0941 9124  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
13:27:11.0943 9124  sffp_sd - ok
13:27:11.0955 9124  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
13:27:11.0957 9124  sfloppy - ok
13:27:12.0002 9124  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
13:27:12.0010 9124  Sftfs - ok
13:27:12.0087 9124  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
13:27:12.0092 9124  sftlist - ok
13:27:12.0150 9124  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
13:27:12.0153 9124  Sftplay - ok
13:27:12.0182 9124  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
13:27:12.0187 9124  Sftredir - ok
13:27:12.0228 9124  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
13:27:12.0237 9124  Sftvol - ok
13:27:12.0326 9124  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
13:27:12.0368 9124  sftvsa - ok
13:27:12.0426 9124  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:27:12.0432 9124  SharedAccess - ok
13:27:12.0503 9124  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:27:12.0528 9124  ShellHWDetection - ok
13:27:12.0553 9124  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
13:27:12.0555 9124  SiSRaid2 - ok
13:27:12.0567 9124  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
13:27:12.0569 9124  SiSRaid4 - ok
13:27:12.0672 9124  [ EB17DF573B4423DF0B3B2EE3B268A6DE ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:27:12.0723 9124  Skype C2C Service - ok
13:27:12.0777 9124  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
13:27:12.0780 9124  SkypeUpdate - ok
13:27:12.0801 9124  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
13:27:12.0803 9124  Smb - ok
13:27:12.0820 9124  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:27:12.0825 9124  SNMPTRAP - ok
13:27:12.0838 9124  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
13:27:12.0839 9124  spldr - ok
13:27:12.0887 9124  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
13:27:12.0895 9124  Spooler - ok
13:27:12.0950 9124  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
13:27:13.0010 9124  sppsvc - ok
13:27:13.0020 9124  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
13:27:13.0025 9124  sppuinotify - ok
13:27:13.0055 9124  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:27:13.0060 9124  srv - ok
13:27:13.0080 9124  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:27:13.0084 9124  srv2 - ok
13:27:13.0098 9124  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:27:13.0101 9124  srvnet - ok
13:27:13.0125 9124  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:27:13.0130 9124  SSDPSRV - ok
13:27:13.0142 9124  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:27:13.0146 9124  SstpSvc - ok
13:27:13.0166 9124  Steam Client Service - ok
13:27:13.0189 9124  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
13:27:13.0190 9124  stexstor - ok
13:27:13.0215 9124  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
13:27:13.0223 9124  stisvc - ok
13:27:13.0241 9124  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
13:27:13.0243 9124  swenum - ok
13:27:13.0324 9124  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:27:13.0331 9124  SwitchBoard - ok
13:27:13.0350 9124  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
13:27:13.0358 9124  swprv - ok
13:27:13.0395 9124  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
13:27:13.0430 9124  SysMain - ok
13:27:13.0440 9124  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:27:13.0446 9124  TabletInputService - ok
13:27:13.0481 9124  [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
13:27:13.0483 9124  tap0901t - ok
13:27:13.0525 9124  [ 3A7CABF7DE8F1325BE8F46685469AEC3 ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
13:27:13.0527 9124  taphss6 - ok
13:27:13.0540 9124  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:27:13.0547 9124  TapiSrv - ok
13:27:13.0562 9124  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
13:27:13.0565 9124  TBS - ok
13:27:13.0625 9124  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:27:13.0659 9124  Tcpip - ok
13:27:13.0699 9124  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
13:27:13.0710 9124  TCPIP6 - ok
13:27:13.0748 9124  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:27:13.0749 9124  tcpipreg - ok
13:27:13.0760 9124  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
13:27:13.0762 9124  TDPIPE - ok
13:27:13.0789 9124  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
13:27:13.0790 9124  TDTCP - ok
13:27:13.0806 9124  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:27:13.0808 9124  tdx - ok
13:27:13.0824 9124  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
13:27:13.0826 9124  TermDD - ok
13:27:13.0849 9124  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
13:27:13.0858 9124  TermService - ok
13:27:13.0867 9124  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
13:27:13.0870 9124  Themes - ok
13:27:13.0899 9124  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
13:27:13.0901 9124  THREADORDER - ok
13:27:13.0915 9124  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
13:27:13.0919 9124  TrkWks - ok
13:27:13.0976 9124  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:27:13.0978 9124  TrustedInstaller - ok
13:27:13.0991 9124  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
13:27:13.0993 9124  tssecsrv - ok
13:27:14.0008 9124  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:27:14.0010 9124  TsUsbFlt - ok
13:27:14.0021 9124  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
13:27:14.0023 9124  TsUsbGD - ok
13:27:14.0041 9124  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
13:27:14.0044 9124  tunnel - ok
13:27:14.0129 9124  [ 3DB1CE045A552161EF7252988752C65F ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
13:27:14.0137 9124  TunngleService - ok
13:27:14.0152 9124  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
13:27:14.0154 9124  uagp35 - ok
13:27:14.0172 9124  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:27:14.0177 9124  udfs - ok
13:27:14.0200 9124  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:27:14.0204 9124  UI0Detect - ok
13:27:14.0227 9124  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
13:27:14.0229 9124  uliagpkx - ok
13:27:14.0276 9124  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
13:27:14.0278 9124  umbus - ok
13:27:14.0297 9124  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
13:27:14.0302 9124  UmPass - ok
13:27:14.0476 9124  [ B097EBA0E3FEB020BB65FE43AF5ECCFF ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
13:27:14.0484 9124  UNS - ok
13:27:14.0540 9124  [ 4F887D2C0362E1B4183139A5EB926A50 ] Updater By SweetPacks C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe
13:27:14.0544 9124  Updater By SweetPacks - ok
13:27:14.0568 9124  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
13:27:14.0576 9124  upnphost - ok
13:27:14.0627 9124  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
13:27:14.0629 9124  usbaudio - ok
13:27:14.0651 9124  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
13:27:14.0653 9124  usbccgp - ok
13:27:14.0679 9124  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
13:27:14.0682 9124  usbcir - ok
13:27:14.0693 9124  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
13:27:14.0695 9124  usbehci - ok
13:27:14.0720 9124  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
13:27:14.0724 9124  usbhub - ok
13:27:14.0742 9124  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
13:27:14.0744 9124  usbohci - ok
13:27:14.0774 9124  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
13:27:14.0776 9124  usbprint - ok
13:27:14.0796 9124  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
13:27:14.0798 9124  usbscan - ok
13:27:14.0812 9124  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:27:14.0815 9124  USBSTOR - ok
13:27:14.0827 9124  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
13:27:14.0830 9124  usbuhci - ok
13:27:14.0851 9124  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
13:27:14.0855 9124  UxSms - ok
13:27:14.0864 9124  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
13:27:14.0866 9124  VaultSvc - ok
13:27:14.0888 9124  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:27:14.0890 9124  vdrvroot - ok
13:27:14.0913 9124  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
13:27:14.0921 9124  vds - ok
13:27:14.0935 9124  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
13:27:14.0937 9124  vga - ok
13:27:14.0944 9124  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
13:27:14.0946 9124  VgaSave - ok
13:27:14.0965 9124  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
13:27:14.0968 9124  vhdmp - ok
13:27:14.0990 9124  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
13:27:14.0992 9124  viaide - ok
13:27:15.0009 9124  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:27:15.0011 9124  volmgr - ok
13:27:15.0028 9124  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:27:15.0032 9124  volmgrx - ok
13:27:15.0051 9124  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:27:15.0055 9124  volsnap - ok
13:27:15.0073 9124  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
13:27:15.0076 9124  vsmraid - ok
13:27:15.0107 9124  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
13:27:15.0133 9124  VSS - ok
13:27:15.0146 9124  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
13:27:15.0147 9124  vwifibus - ok
13:27:15.0167 9124  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
13:27:15.0180 9124  W32Time - ok
13:27:15.0209 9124  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
13:27:15.0210 9124  WacomPen - ok
13:27:15.0221 9124  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
13:27:15.0229 9124  WANARP - ok
13:27:15.0232 9124  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:27:15.0234 9124  Wanarpv6 - ok
13:27:15.0286 9124  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
13:27:15.0311 9124  WatAdminSvc - ok
13:27:15.0342 9124  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
13:27:15.0370 9124  wbengine - ok
13:27:15.0383 9124  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:27:15.0388 9124  WbioSrvc - ok
13:27:15.0402 9124  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:27:15.0410 9124  wcncsvc - ok
13:27:15.0421 9124  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:27:15.0425 9124  WcsPlugInService - ok
13:27:15.0434 9124  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
13:27:15.0435 9124  Wd - ok
13:27:15.0468 9124  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:27:15.0476 9124  Wdf01000 - ok
13:27:15.0484 9124  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:27:15.0488 9124  WdiServiceHost - ok
13:27:15.0491 9124  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:27:15.0495 9124  WdiSystemHost - ok
13:27:15.0508 9124  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
13:27:15.0514 9124  WebClient - ok
13:27:15.0524 9124  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:27:15.0529 9124  Wecsvc - ok
13:27:15.0539 9124  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:27:15.0543 9124  wercplsupport - ok
13:27:15.0562 9124  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:27:15.0566 9124  WerSvc - ok
13:27:15.0576 9124  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
13:27:15.0577 9124  WfpLwf - ok
13:27:15.0595 9124  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:27:15.0597 9124  WIMMount - ok
13:27:15.0607 9124  WinDefend - ok
13:27:15.0622 9124  WinHttpAutoProxySvc - ok
13:27:15.0659 9124  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:27:15.0663 9124  Winmgmt - ok
13:27:15.0706 9124  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
13:27:15.0740 9124  WinRM - ok
13:27:15.0767 9124  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:27:15.0778 9124  Wlansvc - ok
13:27:15.0805 9124  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:27:15.0807 9124  wlcrasvc - ok
13:27:15.0888 9124  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:27:15.0922 9124  wlidsvc - ok
13:27:15.0941 9124  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
13:27:15.0942 9124  WmiAcpi - ok
13:27:15.0959 9124  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:27:15.0962 9124  wmiApSrv - ok
13:27:15.0972 9124  WMPNetworkSvc - ok
13:27:15.0985 9124  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
13:27:15.0989 9124  WPCSvc - ok
13:27:16.0004 9124  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:27:16.0008 9124  WPDBusEnum - ok
13:27:16.0022 9124  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:27:16.0024 9124  ws2ifsl - ok
13:27:16.0038 9124  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
13:27:16.0044 9124  wscsvc - ok
13:27:16.0048 9124  WSearch - ok
13:27:16.0108 9124  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:27:16.0151 9124  wuauserv - ok
13:27:16.0194 9124  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:27:16.0196 9124  WudfPf - ok
13:27:16.0233 9124  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:27:16.0236 9124  WUDFRd - ok
13:27:16.0275 9124  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:27:16.0279 9124  wudfsvc - ok
13:27:16.0341 9124  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:27:16.0349 9124  WwanSvc - ok
13:27:16.0429 9124  [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
13:27:16.0436 9124  xusb21 - ok
13:27:16.0463 9124  ================ Scan global ===============================
13:27:16.0489 9124  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:27:16.0535 9124  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
13:27:16.0545 9124  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
13:27:16.0557 9124  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:27:16.0583 9124  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:27:16.0589 9124  [Global] - ok
13:27:16.0590 9124  ================ Scan MBR ==================================
13:27:16.0598 9124  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:27:16.0801 9124  \Device\Harddisk0\DR0 - ok
13:27:16.0801 9124  ================ Scan VBR ==================================
13:27:16.0804 9124  [ 82E08543AE8460A1ACD29B7F9C33B4D1 ] \Device\Harddisk0\DR0\Partition1
13:27:16.0806 9124  \Device\Harddisk0\DR0\Partition1 - ok
13:27:16.0833 9124  [ 6D5AFF39AF143F0A9699BD9F1CE592B6 ] \Device\Harddisk0\DR0\Partition2
13:27:16.0835 9124  \Device\Harddisk0\DR0\Partition2 - ok
13:27:16.0864 9124  [ ED4DC91919C4FCF68FED6191F0FAFB79 ] \Device\Harddisk0\DR0\Partition3
13:27:16.0866 9124  \Device\Harddisk0\DR0\Partition3 - ok
13:27:16.0866 9124  ============================================================
13:27:16.0866 9124  Scan finished
13:27:16.0866 9124  ============================================================
13:27:16.0880 4768  Detected object count: 0
13:27:16.0880 4768  Actual detected object count: 0


#5 ReyM1337

ReyM1337
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 01:41 PM

Log for AdwCleaner after deleting any problems it brought up: 

 

# AdwCleaner v2.304 - Logfile created 07/09/2013 at 13:36:22
# Updated 03/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Jmartinez3511 - MARTINEZ
# Boot Mode : Normal
# Running from : C:\Users\Jmartinez3511\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
Stopped & Deleted : IBUpdaterService
Stopped & Deleted : Updater By SweetPacks
 
***** [Files / Folders] *****
 
File Deleted : C:\END
File Deleted : C:\Users\Jmartinez3511\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage
File Deleted : C:\Users\Jmartinez3511\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Jmartinez3511\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\Jmartinez3511\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\BitTorrentBar
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\midicairus
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\Program Files\Updater By SweetPacks
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Jmartinez3511\AppData\Local\Conduit
Folder Deleted : C:\Users\Jmartinez3511\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhfdcmehmjcclgopdodkjdicohagipid
Folder Deleted : C:\Users\Jmartinez3511\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Folder Deleted : C:\Users\Jmartinez3511\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Jmartinez3511\AppData\LocalLow\BitTorrentBar
Folder Deleted : C:\Users\Jmartinez3511\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Jmartinez3511\AppData\LocalLow\midicairus
Folder Deleted : C:\Users\Jmartinez3511\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Jmartinez3511\AppData\Roaming\search protection
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Folder Deleted : C:\Windows\SysWOW64\WNLT
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\BitTorrentBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\DynConIE
Key Deleted : HKCU\Software\AppDataLow\Software\midicairus
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\BitTorrentBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Google\Chrome\Extensions\mhfdcmehmjcclgopdodkjdicohagipid
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EFB1E45A-148D-40F9-A3F0-09D5577F9970}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{156F4006-0999-4E54-9ED3-B7B064D3DD0A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EFB1E45A-148D-40F9-A3F0-09D5577F9970}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\WNLT
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\BitTorrentBar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Features\FB6D58DD787439A4995AF3C00FEA8843
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\FB6D58DD787439A4995AF3C00FEA8843
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3184201
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{156F4006-0999-4E54-9ED3-B7B064D3DD0A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\Software\midicairus
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{156F4006-0999-4E54-9ED3-B7B064D3DD0A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7D4F1959-3F72-49D5-8E59-F02F8AA6815D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EFB1E45A-148D-40F9-A3F0-09D5577F9970}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mhfdcmehmjcclgopdodkjdicohagipid
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{441D67EA-6E70-46E6-BA78-40132713A2FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7304BC1C-AC5D-4E5E-A2A0-29D6047F08D0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B050A85B-6ACF-4D3D-8657-44B220F3310A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1A50EA2-A6EE-4448-8D2D-305EBC6C66A2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7D4F1959-3F72-49D5-8E59-F02F8AA6815D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EFB1E45A-148D-40F9-A3F0-09D5577F9970}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{DD85D6BF-4787-4A93-99A5-3F0CF0AE8834}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\midicairus Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7D4F1959-3F72-49D5-8E59-F02F8AA6815D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7D4F1959-3F72-49D5-8E59-F02F8AA6815D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Key Deleted : HKU\S-1-5-21-1606548062-2725933679-2933608531-1004\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKU\S-1-5-21-1606548062-2725933679-2933608531-1004\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKU\S-1-5-21-1606548062-2725933679-2933608531-1004\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EFB1E45A-148D-40F9-A3F0-09D5577F9970}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EFB1E45A-148D-40F9-A3F0-09D5577F9970}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{EFB1E45A-148D-40F9-A3F0-09D5577F9970}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EFB1E45A-148D-40F9-A3F0-09D5577F9970}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16618
 
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10046&barid={9906E05B-E872-11E2-9A42-E8393560504E} --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10046&barid={9906E05B-E872-11E2-9A42-E8393560504E} --> hxxp://www.google.com
 
-\\ Google Chrome v27.0.1453.116
 
File : C:\Users\Jmartinez3511\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.45] : icon_url ="encodings": "UTF-8",        "hxxp://cdn.web.sweetim.com/toolbarff/searchplugin/bin[...]
 
*************************
 
AdwCleaner[R1].txt - [19408 octets] - [09/07/2013 13:35:34]
AdwCleaner[R2].txt - [19469 octets] - [09/07/2013 13:36:14]
AdwCleaner[S1].txt - [18844 octets] - [09/07/2013 13:36:22]
 
########## EOF - C:\AdwCleaner[S1].txt - [18905 octets] ##########


#6 ReyM1337

ReyM1337
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 07:32 PM

Took longer than I anticipated, but here are the results for the ESET scan:

 

C:\Windows\SysWOW64\ARFC\wrtc.exe Win32/SweetIM.E application
C:\Windows\SysWOW64\jmdp\SweetNT.crx Win32/SweetIM.E application
C:\Program Files (x86)\SearchDonkey\Chrome\common.crx Win32/ExFriendAlert.A application deleted - quarantined
C:\Program Files (x86)\SearchDonkey\Chrome\unzip\plugin\gc_getcid.dll Win32/ExFriendAlert.A application cleaned by deleting - quarantined
C:\Program Files (x86)\SearchDonkey\IE\common.dll a variant of Win32/ExFriendAlert.B application cleaned by deleting - quarantined
C:\Users\Jmartinez3511\AppData\Local\Temp\BestVideoDownloader-S-Setup_Suite1_20120416.exe Win32/Adware.Yontoo application cleaned by deleting - quarantined
C:\Users\Jmartinez3511\AppData\Local\Temp\DefaultTabSetup.exe a variant of Win32/Toolbar.DefaultTab.B application cleaned by deleting - quarantined
C:\Users\Jmartinez3511\AppData\Local\Temp\hsbing_717_active.exe multiple threats cleaned by deleting - quarantined
C:\Users\Jmartinez3511\AppData\Local\Temp\Shortcut_sweetpacks_6262013.exe probably a variant of Win32/SweetIM.C application cleaned by deleting - quarantined
C:\Users\Jmartinez3511\AppData\Local\Temp\WSSetup.exe Win32/SweetIM.E application cleaned by deleting - quarantined
C:\Users\Jmartinez3511\AppData\Local\Temp\YontooLayers\background.html JS/Adware.Yontoo.A application cleaned by deleting - quarantined
C:\Users\Jmartinez3511\Downloads\SoftonicDownloader_for_hamachi.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined
C:\Users\Jmartinez3511\Downloads\vlcmediaplayer-setup.exe multiple threats cleaned by deleting - quarantined
C:\Windows\System32\ARFC\wrtc.exe Win32/SweetIM.E application cleaned by deleting - quarantined
C:\Windows\System32\jmdp\SweetNT.crx Win32/SweetIM.E application deleted - quarantined


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:30 AM

Posted 09 July 2013 - 09:01 PM

Ok, I believe we hit it. I would suspect you are getting infected thru torrent downloads.

Run these and tell me how it is.

Please download Malwarebytes Anti-Malware mbamicontw5.gif and save it to your desktop.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
  • Double-click on the renamed file to install, then follow these instructions
  • for doing a Quick Scan in normal mode.
  • Don't forget to check for database definition updates through the program's interface (preferable method) before scanning.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • After completing the scan, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab .
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, use Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).



thisisujrt.gif Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Go into Control Panel // Uninstall and uninstall these

Adobe Reader 9.2 (Version: 9.2.0)
Java 7 Update 9 (Version: 7.0.90)
Internet Explorer Toolbar 4.8 by SweetPacks (Version: 4.8.0000)
If there

Reboot

Install
Adobe Reader XI

Java Version 7 Update 25

 

 

NOTE: Un tick the check box to install any other items like this...

Google_banner_225x66.png

Yes, install Chrome as my default browser and Google Toolbar for Internet Explorer – optional. (32.11 MB) Install Options


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 ReyM1337

ReyM1337
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 09:36 PM

Here is the MalwareBytes Log:

 

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.09.09
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
Jmartinez3511 :: MARTINEZ [administrator]
 
Protection: Enabled
 
7/9/2013 9:18:25 PM
mbam-log-2013-07-09 (21-18-25).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 237757
Time elapsed: 8 minute(s), 6 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 4
HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\TidyNetwork.com (PUP.TidyNetwork) -> Quarantined and deleted successfully.
HKCR\CLSID\{7736C7FA-512D-11E2-B871-DEC36088709B} (PUP.TidyNetwork) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7736C7FA-512D-11E2-B871-DEC36088709B} (PUP.TidyNetwork) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7736C7FA-512D-11E2-B871-DEC36088709B} (PUP.TidyNetwork) -> Quarantined and deleted successfully.
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 2
C:\Users\Jmartinez3511\Local Settings\Application Data\TidyNetwork.com (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\AppData\Local\TidyNetwork.com (PUP.TidyNetwork) -> Quarantined and deleted successfully.
 
Files Detected: 10
C:\Users\Jmartinez3511\Local Settings\Application Data\TidyNetwork.com\sidTRUS10.tidy (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\Local Settings\Application Data\TidyNetwork.com\tidy2ie.dll (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\Local Settings\Application Data\TidyNetwork.com\tidy2update.exe (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\Local Settings\Application Data\TidyNetwork.com\TidyNetwork.exe (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\Local Settings\Application Data\TidyNetwork.com\tidynetwork.log (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\AppData\Local\TidyNetwork.com\sidTRUS10.tidy (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\AppData\Local\TidyNetwork.com\tidy2ie.dll (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\AppData\Local\TidyNetwork.com\tidy2update.exe (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\AppData\Local\TidyNetwork.com\TidyNetwork.exe (PUP.TidyNetwork) -> Quarantined and deleted successfully.
C:\Users\Jmartinez3511\AppData\Local\TidyNetwork.com\tidynetwork.log (PUP.TidyNetwork) -> Quarantined and deleted successfully.
 
(end)


#9 ReyM1337

ReyM1337
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 09:49 PM

JRT Log:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.0.3 (07.09.2013:2)
OS: Windows 7 Home Premium x64
Ran by Jmartinez3511 on Tue 07/09/2013 at 21:43:06.01
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\searchprotection
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\anchorfree
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0F683D99-9CB9-4832-B77A-E8D32560B3C3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{23DF1901-CF93-4161-B823-F7507BCC6156}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7A4BB804-D99D-4711-A57B-5C8708C812D1}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7FAE597C-5619-4ECC-8141-B48B61725065}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{7FAE597C-5619-4ECC-8141-B48B61725065}
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll
Successfully deleted: [File] C:\Windows\syswow64\shoA2.tmp
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 07/09/2013 at 21:47:47.97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:30 AM

Posted 09 July 2013 - 09:53 PM

Looks good, if there are no issues....

Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can re-infect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state. The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup
  • to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically. Vista and Windows 7 users can refer to these links:
  • Create a New Restore Point in Vista
  • Create a New Restore Point in Windows 7 (alternate method)
  • Disk Cleanup in Vista
  • Disk Cleanup in Windows 7
  • ◾Reboot and see how it is.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 ReyM1337

ReyM1337
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 09 July 2013 - 11:04 PM

Everything seems perfectly fine, did a quick scan before I made the restore point and system restore.

No more random tabs opening by themselves and no lag opening chrome either.

Thanks for all the help boopme! I really appreciate it.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:30 AM

Posted 10 July 2013 - 08:04 PM

You're most welcome Rey, thanks for visiting
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users