Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Adchoices Malware/Virus


  • Please log in to reply
7 replies to this topic

#1 flameof_Suzaku

flameof_Suzaku

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 25 July 2013 - 12:39 AM

Hi
 
It seems i have accidently given myself some malware.  I can't remember exactly what i downloaded to do it but i know it was a flash video downloader.  
 
This has been going on for a few weeks now and just got progressively worse until i realized i was actually infected.  I had large bar ads on the side and bottom of every internet window.  I only use Chrome and it didn't occur to me to check IE to see if both were infected the same.  Also I had lots of redirects and "surverys" blah blah blah lots of frustration.  
 
So i googled it and followed these instructions exactly:  https://www.bleepingcomputer.com/virus-removal/remove-webcake-deals-and-ads

After this completed I checked my Chrome and the "Webcake" ad was gone as was also the super large bar ads.  Also no redirects.  But i was still having multiple extra page ads.  So I downloaded the add-on to Chrome called AdBlock.  That worked to bring the loading ads down drastically, however, this thing is still here and slowing down my machine.  This AdBlocker has blocked 78 things in just one hour.  The first 19 came from Amazon (I know because that was the first site i went to and i looked at the counter supplied).
 
After seeing this i did an additional run with HitmanPro which removed another 20 items on top of the 80 or so from before (not including everything removed by the previous tools).
 
Please let me know if you can help. 
 
***************************
 
SERVICES
Name PID Description Status Group
HitmanProScheduler 1040 HitmanPro Scheduler Running
ZuneWlanCfgSvc Zune Wireless Configuration Service Stopped
ZuneNetworkSvc Zune Network Sharing Service Stopped
WSearch 3592 Windows Search Running
WMZuneComm Zune Windows Mobile Connectivity Service Stopped
WMPNetworkSvc 3748 Windows Media Player Network Sharing Service Running
wmiApSrv WMI Performance Adapter Stopped
WinDefend Windows Defender Service Stopped
wbengine Block Level Backup Engine Service Stopped
vToolbarUpdater15.3.0 2496 vToolbarUpdater15.3.0 Running
VSS Volume Shadow Copy Stopped
vds Virtual Disk Stopped
VaultSvc Credential Manager Stopped
UI0Detect Interactive Services Detection Stopped
TrustedInstaller Windows Modules Installer Stopped
STacSV 1320 Audio Service Running
sppsvc Software Protection Stopped
Spooler 1700 Print Spooler Running
SNMPTRAP SNMP Trap Stopped
SamSs 856 Security Accounts Manager Running
RpcLocator Remote Procedure Call (RPC) Locator Stopped
PerfHost Performance Counter DLL Host Stopped
NetTcpPortSharing Net.Tcp Port Sharing Service Stopped
Netlogon Netlogon Stopped
msiserver Windows Installer Stopped
MSDTC Distributed Transaction Coordinator Stopped
MBAMService 2380 MBAMService Running
MBAMScheduler 1788 MBAMScheduler Running
KeyIso CNG Key Isolation Stopped
IntuitUpdateServiceV4 3980 Intuit Update Service v4 Running
IconMan_R 3268 IconMan_R Running
HPWMISVC 1512 HPWMISVC Running
hpqwmiex 4688 HP Software Framework Service Running
HP Support Assistant Service 2976 HP Support Assistant Service Running
gupdatem Google Update Service (gupdatem) Stopped
gupdate Google Update Service (gupdate) Stopped
GamesAppService GamesAppService Stopped
FontCache3.0.0.0 Windows Presentation Foundation Font Cache 3.0.0.0 Stopped
Fax Fax Stopped
EFS Encrypting File System (EFS) Stopped
COMSysApp COM+ System Application Stopped
Bonjour Service 1072 Bonjour Service Running
avgwd 2008 AVG WatchDog Running
AVGIDSAgent 1916 AVGIDSAgent Running
aspnet_state ASP.NET State Service Stopped
AMD FUEL Service 1872 AMD FUEL Service Running
AMD External Events Utility 516 AMD External Events Utility Running
ALG Application Layer Gateway Service Stopped
AppHostSvc 1896 Application Host Helper Service Running apphost
AxInstSV ActiveX Installer (AxInstSV) Stopped AxInstSVGroup
Power 952 Power Running DcomLaunch
PlugPlay 952 Plug and Play Running DcomLaunch
LSM 952 Local Session Manager Running DcomLaunch
DeviceInstall Device Install Service Stopped DcomLaunch
DcomLaunch 952 DCOM Server Process Launcher Running DcomLaunch
BrokerInfrastructure 952 Background Tasks Infrastructure Service Running DcomLaunch
defragsvc Optimize drives Stopped defragsvc
vmicrdv Hyper-V Remote Desktop Virtualization Service Stopped ICService
vmicheartbeat Hyper-V Heartbeat Service Stopped ICService
WAS Windows Process Activation Service Stopped iissvcs
stisvc 2428 Windows Image Acquisition (WIA) Running imgsvc
WinHttpAutoProxySvc 1132 WinHTTP Web Proxy Auto-Discovery Service Running LocalService
WebClient WebClient Stopped LocalService
WdiServiceHost 1132 Diagnostic Service Host Running LocalService
W32Time Windows Time Stopped LocalService
THREADORDER Thread Ordering Server Stopped LocalService
SstpSvc Secure Socket Tunneling Protocol Service Stopped LocalService
RemoteRegistry Remote Registry Stopped localService
nsi 1132 Network Store Interface Service Running LocalService
netprofm 1132 Network List Service Running LocalService
lltdsvc Link-Layer Topology Discovery Mapper Stopped LocalService
FontCache 1132 Windows Font Cache Service Running LocalService
fdPHost Function Discovery Provider Host Stopped LocalService
EventSystem 1132 COM+ Event System Running LocalService
bthserv Bluetooth Support Service Stopped LocalService
WSService Windows Store Service (WSService) Stopped LocalServiceAndNoImpersonation
wcncsvc Windows Connect Now - Config Registrar Stopped LocalServiceAndNoImpersonation
upnphost 2936 UPnP Device Host Running LocalServiceAndNoImpersonation
TimeBroker 2936 Time Broker Running LocalServiceAndNoImpersonation
SSDPSRV 2936 SSDP Discovery Running LocalServiceAndNoImpersonation
SensrSvc Sensor Monitoring Service Stopped LocalServiceAndNoImpersonation
SCardSvr Smart Card Stopped LocalServiceAndNoImpersonation
QWAVE Quality Windows Audio Video Experience Stopped LocalServiceAndNoImpersonation
FDResPub Function Discovery Resource Publication Stopped LocalServiceAndNoImpersonation
wscsvc 632 Security Center Running LocalServiceNetworkRestricted
WPCSvc Family Safety Stopped LocalServiceNetworkRestricted
Wcmsvc 632 Windows Connection Manager Running LocalServiceNetworkRestricted
vmictimesync Hyper-V Time Synchronization Service Stopped LocalServiceNetworkRestricted
lmhosts 632 TCP/IP NetBIOS Helper Running LocalServiceNetworkRestricted
HomeGroupProvider HomeGroup Provider Stopped LocalServiceNetworkRestricted
EventLog 632 Windows Event Log Running LocalServiceNetworkRestricted
Dhcp 632 DHCP Client Running LocalServiceNetworkRestricted
Audiosrv 632 Windows Audio Running LocalServiceNetworkRestricted
AppIDSvc Application Identity Stopped LocalServiceNetworkRestricted
WwanSvc WWAN AutoConfig Stopped LocalServiceNoNetwork
pla Performance Logs & Alerts Stopped LocalServiceNoNetwork
NcdAutoSetup Network Connected Devices Auto-Setup Stopped LocalServiceNoNetwork
MpsSvc 1736 Windows Firewall Running LocalServiceNoNetwork
DPS 1736 Diagnostic Policy Service Running LocalServiceNoNetwork
BFE 1736 Base Filtering Engine Running LocalServiceNoNetwork
PNRPsvc Peer Name Resolution Protocol Stopped LocalServicePeerNet
PNRPAutoReg PNRP Machine Name Publication Service Stopped LocalServicePeerNet
p2psvc Peer Networking Grouping Stopped LocalServicePeerNet
p2pimsvc Peer Networking Identity Manager Stopped LocalServicePeerNet
wudfsvc 1224 Windows Driver Foundation - User-mode Driver Framework Running LocalSystemNetworkRestricted
WPDBusEnum Portable Device Enumerator Service Stopped LocalSystemNetworkRestricted
WlanSvc 1224 WLAN AutoConfig Running LocalSystemNetworkRestricted
WiaRpc Still Image Acquisition Events Stopped LocalSystemNetworkRestricted
WdiSystemHost 1224 Diagnostic System Host Running LocalSystemNetworkRestricted
vmicvss Hyper-V Volume Shadow Copy Requestor Stopped LocalSystemNetworkRestricted
vmicshutdown Hyper-V Guest Shutdown Service Stopped LocalSystemNetworkRestricted
vmickvpexchange Hyper-V Data Exchange Service Stopped LocalSystemNetworkRestricted
UmRdpService Remote Desktop Services UserMode Port Redirector Stopped LocalSystemNetworkRestricted
TrkWks 1224 Distributed Link Tracking Client Running LocalSystemNetworkRestricted
TabletInputService Touch Keyboard and Handwriting Panel Service Stopped LocalSystemNetworkRestricted
SysMain 1224 Superfetch Running LocalSystemNetworkRestricted
svsvc Spot Verifier Stopped LocalSystemNetworkRestricted
StorSvc Storage Service Stopped LocalSystemNetworkRestricted
PcaSvc 1224 Program Compatibility Assistant Service Running LocalSystemNetworkRestricted
Netman Network Connections Stopped LocalSystemNetworkRestricted
HomeGroupListener HomeGroup Listener Stopped LocalSystemNetworkRestricted
hidserv Human Interface Device Access Stopped LocalSystemNetworkRestricted
fhsvc File History Service Stopped LocalSystemNetworkRestricted
dot3svc Wired AutoConfig Stopped LocalSystemNetworkRestricted
DeviceAssociationService 1224 Device Association Service Running LocalSystemNetworkRestricted
AudioEndpointBuilder 1224 Windows Audio Endpoint Builder Running LocalSystemNetworkRestricted
AllUserInstallAgent Windows All-User Install Agent Stopped LocalSystemNetworkRestricted
wuauserv 672 Windows Update Running netsvcs
wlidsvc Microsoft Account Sign-in Assistant Stopped netsvcs
Winmgmt 672 Windows Management Instrumentation Running netsvcs
wercplsupport Problem Reports and Solutions Control Panel Support Stopped netsvcs
Themes 672 Themes Running netsvcs
SystemEventsBroker 672 System Events Broker Running netsvcs
ShellHWDetection 672 Shell Hardware Detection Running netsvcs
SharedAccess Internet Connection Sharing (ICS) Stopped netsvcs
SessionEnv Remote Desktop Configuration Stopped netsvcs
SENS 672 System Event Notification Service Running netsvcs
seclogon Secondary Logon Stopped netsvcs
SCPolicySvc Smart Card Removal Policy Stopped netsvcs
Schedule 672 Task Scheduler Running netsvcs
RemoteAccess Routing and Remote Access Stopped netsvcs
RasMan Remote Access Connection Manager Stopped netsvcs
RasAuto Remote Access Auto Connection Manager Stopped netsvcs
ProfSvc 672 User Profile Service Running netsvcs
NcaSvc Network Connectivity Assistant Stopped NetSvcs
MSiSCSI Microsoft iSCSI Initiator Service Stopped netsvcs
MMCSS Multimedia Class Scheduler Stopped netsvcs
LanmanServer 672 Server Running netsvcs
iphlpsvc 672 IP Helper Running NetSvcs
IKEEXT 672 IKE and AuthIP IPsec Keying Modules Running netsvcs
hkmsvc Health Key and Certificate Management Stopped netsvcs
gpsvc 672 Group Policy Client Running netsvcs
Eaphost Extensible Authentication Protocol Stopped netsvcs
DsmSvc Device Setup Manager Stopped netsvcs
CertPropSvc Certificate Propagation Stopped netsvcs
Browser Computer Browser Stopped netsvcs
BITS 672 Background Intelligent Transfer Service Running netsvcs
BDESVC BitLocker Drive Encryption Service Stopped netsvcs
Appinfo 672 Application Information Running netsvcs
AeLookupSvc Application Experience Stopped netsvcs
WinRM Windows Remote Management (WS-Management) Stopped NetworkService
Wecsvc Windows Event Collector Stopped NetworkService
TermService Remote Desktop Services Stopped NetworkService
TapiSrv Telephony Stopped NetworkService
NlaSvc 1504 Network Location Awareness Running NetworkService
napagent Network Access Protection Agent Stopped NetworkService
LanmanWorkstation 1504 Workstation Running NetworkService
Dnscache 1504 DNS Client Running NetworkService
CryptSvc 1504 Cryptographic Services Running NetworkService
KtmRm KtmRm for Distributed Transaction Coordinator Stopped NetworkServiceAndNoImpersonation
PolicyAgent 2888 IPsec Policy Agent Running NetworkServiceNetworkRestricted
PrintNotify Printer Extensions and Notifications Stopped print
RpcSs 1004 Remote Procedure Call (RPC) Running rpcss
RpcEptMapper 1004 RPC Endpoint Mapper Running RPCSS
SDRSVC Windows Backup Stopped SDRSVC
swprv Microsoft Software Shadow Copy Provider Stopped swprv
WbioSrvc Windows Biometric Service Stopped WbioSvcGroup
WcsPlugInService Windows Color System Stopped wcssvc
WerSvc Windows Error Reporting Service Stopped WerSvcGroup

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:32 AM

Posted 25 July 2013 - 10:17 AM

Hello,Lets do this next..

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 flameof_Suzaku

flameof_Suzaku
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 28 July 2013 - 08:48 AM

Thanks for such a fast reply!  

 

MiniToolBoxResults

 

========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Ralink RT5390R 802.11bgn Wi-Fi Adapter = Wi-Fi (Connected)
Realtek PCIe FE Family Controller = Ethernet (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : flameofSuzaku
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Home
 
Wireless LAN adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 08-3E-8E-23-84-CA
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : Home
   Description . . . . . . . . . . . : Ralink RT5390R 802.11bgn Wi-Fi Adapter
   Physical Address. . . . . . . . . : 08-3E-8E-23-84-C8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : fd00::7818:b5c:d4ea:a99f(Preferred) 
   Temporary IPv6 Address. . . . . . : fd00::741e:7d9c:7117:16d0(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::7818:b5c:d4ea:a99f%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.20(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, July 24, 2013 7:44:32 PM
   Lease Expires . . . . . . . . . . : Sunday, July 28, 2013 11:51:46 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DNS Servers . . . . . . . . . . . : 192.168.0.1
                                       205.171.2.25
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 28-92-4A-D5-2D-11
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:8ce:3418:3f57:ffeb(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::8ce:3418:3f57:ffeb%16(Preferred) 
   Default Gateway . . . . . . . . . : 
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.Home:
 
   Connection-specific DNS Suffix  . : Home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.20%17(Preferred) 
   Default Gateway . . . . . . . . . : 
   DNS Servers . . . . . . . . . . . : 192.168.0.1
                                       205.171.2.25
   NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.0.1
 
Name:    google.com
Addresses:  2607:f8b0:4009:805::1000
 173.194.46.65
 173.194.46.64
 173.194.46.66
 173.194.46.69
 173.194.46.72
 173.194.46.70
 173.194.46.78
 173.194.46.71
 173.194.46.67
 173.194.46.68
 173.194.46.73
 
 
Pinging google.com [173.194.46.66] with 32 bytes of data:
Reply from 173.194.46.66: bytes=32 time=41ms TTL=57
Reply from 173.194.46.66: bytes=32 time=43ms TTL=57
 
Ping statistics for 173.194.46.66:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 41ms, Maximum = 43ms, Average = 42ms
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.0.1
 
Name:    yahoo.com
Addresses:  98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=60ms TTL=53
Reply from 98.138.253.109: bytes=32 time=59ms TTL=53
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 59ms, Maximum = 60ms, Average = 59ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=37ms TTL=128
Reply from 127.0.0.1: bytes=32 time=12ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 12ms, Maximum = 37ms, Average = 24ms
===========================================================================
Interface List
 14...08 3e 8e 23 84 ca ......Microsoft Wi-Fi Direct Virtual Adapter
 13...08 3e 8e 23 84 c8 ......Ralink RT5390R 802.11bgn Wi-Fi Adapter
 12...28 92 4a d5 2d 11 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.20     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.20    281
     192.168.0.20  255.255.255.255         On-link      192.168.0.20    281
    192.168.0.255  255.255.255.255         On-link      192.168.0.20    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.20    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.20    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 16    306 2001::/32                On-link
 16    306 2001:0:5ef5:79fd:8ce:3418:3f57:ffeb/128
                                    On-link
 13    281 fd00::/64                On-link
 13    281 fd00::741e:7d9c:7117:16d0/128
                                    On-link
 13    281 fd00::7818:b5c:d4ea:a99f/128
                                    On-link
 13    281 fe80::/64                On-link
 16    306 fe80::/64                On-link
 17    286 fe80::5efe:192.168.0.20/128
                                    On-link
 16    306 fe80::8ce:3418:3f57:ffeb/128
                                    On-link
 13    281 fe80::7818:b5c:d4ea:a99f/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    306 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/26/2013 08:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3448
 
Error: (07/26/2013 08:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3448
 
Error: (07/26/2013 08:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (07/26/2013 08:20:44 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
 
Error: (07/25/2013 11:24:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10343
 
Error: (07/25/2013 11:24:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10343
 
Error: (07/25/2013 11:24:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (07/25/2013 11:24:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8690
 
Error: (07/25/2013 11:24:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8690
 
Error: (07/25/2013 11:24:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
 
System errors:
=============
Error: (07/24/2013 07:42:42 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
 
Microsoft Office Sessions:
=========================
Error: (07/26/2013 08:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3448
 
Error: (07/26/2013 08:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3448
 
Error: (07/26/2013 08:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (07/26/2013 08:20:44 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
 
Error: (07/25/2013 11:24:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10343
 
Error: (07/25/2013 11:24:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10343
 
Error: (07/25/2013 11:24:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (07/25/2013 11:24:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8690
 
Error: (07/25/2013 11:24:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8690
 
Error: (07/25/2013 11:24:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
 
=========================== Installed Programs ============================
 
4 Elements II (Version: 2.2.0.98)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Fuel (Version: 2012.0806.1156.19437)
AMD VISION Engine Control Center (Version: 2012.0806.1156.19437)
AVG 2013 (Version: 13.0.3209)
AVG 2013 (Version: 13.0.3349)
AVG 2013 (Version: 2013.0.3349)
Bejeweled 3 (Version: 2.2.0.98)
Bonjour (Version: 3.0.0.10)
Build-a-lot 4 - Power Source (Version: 2.2.0.98)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1156.19437)
Catalyst Control Center InstallProxy (Version: 2012.0806.1156.19437)
Catalyst Control Center Localization All (Version: 2012.0806.1156.19437)
CCC Help Chinese Standard (Version: 2012.0806.1155.19437)
CCC Help Chinese Traditional (Version: 2012.0806.1155.19437)
CCC Help Czech (Version: 2012.0806.1155.19437)
CCC Help Danish (Version: 2012.0806.1155.19437)
CCC Help Dutch (Version: 2012.0806.1155.19437)
CCC Help English (Version: 2012.0806.1155.19437)
CCC Help Finnish (Version: 2012.0806.1155.19437)
CCC Help French (Version: 2012.0806.1155.19437)
CCC Help German (Version: 2012.0806.1155.19437)
CCC Help Greek (Version: 2012.0806.1155.19437)
CCC Help Hungarian (Version: 2012.0806.1155.19437)
CCC Help Italian (Version: 2012.0806.1155.19437)
CCC Help Japanese (Version: 2012.0806.1155.19437)
CCC Help Korean (Version: 2012.0806.1155.19437)
CCC Help Norwegian (Version: 2012.0806.1155.19437)
CCC Help Polish (Version: 2012.0806.1155.19437)
CCC Help Portuguese (Version: 2012.0806.1155.19437)
CCC Help Russian (Version: 2012.0806.1155.19437)
CCC Help Spanish (Version: 2012.0806.1155.19437)
CCC Help Swedish (Version: 2012.0806.1155.19437)
CCC Help Thai (Version: 2012.0806.1155.19437)
CCC Help Turkish (Version: 2012.0806.1155.19437)
ccc-utility64 (Version: 2012.0806.1156.19437)
Chuzzle Deluxe (Version: 2.2.0.95)
CollageIt 1.9.2 (Version: 1.9.2)
Cradle Of Egypt Collector's Edition (Version: 2.2.0.98)
Cradle of Rome 2 (Version: 2.2.0.98)
CyberLink LabelPrint (Version: 2.5.1.5407)
CyberLink Media Suite 10 (Version: 10.0.1.1916)
CyberLink Power2Go 8 (Version: 8.0.1.1926)
CyberLink PowerDVD (Version: 10.0.6.4319)
CyberLink YouCam (Version: 3.5.4.5527)
D3DX10 (Version: 15.4.2368.0902)
Define Ext (Version: 8)
Energy Star (Version: 1.0.8)
Farm Frenzy (Version: 2.2.0.98)
FATE: The Cursed King (Version: 2.2.0.97)
Final Drive Fury (Version: 2.2.0.95)
FlatOut 2 (Version: 2.2.0.98)
GIMP 2.8.4 (Version: 2.8.4)
Google Chrome (Version: 28.0.1500.72)
Google Update Helper (Version: 1.3.21.153)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.2.0.0 (Version: 1.00.0000)
HitmanPro 3.7 (Version: 3.7.6.201)
Hoyle Card Games (Version: 2.2.0.95)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.3.0)
HP MyRoom (Version: 9.0.0.0)
HP Postscript Converter (Version: 3.1.3554)
HP Quick Launch (Version: 3.0.3)
HP Recovery Manager (Version: 7.00)
HP Registration Service (Version: 1.0.5976.4186)
HP Software Framework (Version: 4.6.8.1)
HP Support Assistant (Version: 7.0.32.44)
HP Utility Center (Version: 1.0.7)
HP Wireless Button Driver (Version: 1.0.5.1)
IDT Audio (Version: 1.0.6417.0)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Jewel Match 3 (Version: 2.2.0.98)
John Deere Drive Green (Version: 2.2.0.95)
Luxor Evolved (Version: 2.2.0.98)
Mahjongg Dimensions Deluxe: Tiles in Time (Version: 2.2.0.98)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office (Version: 14.0.6120.5004)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mortimer Beckett and the Crimson Thief Premium Edition (Version: 2.2.0.98)
MSVCRT (Version: 15.4.2862.0708)
Mystery P.I. - Curious Case of Counterfeit Cove (Version: 2.2.0.98)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Peggle Nights (Version: 2.2.0.98)
Penguins! (Version: 2.2.0.98)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.98)
Ralink RT5390R 802.11bgn Wi-Fi Adapter (Version: 5.0.2.0)
Realtek Ethernet Controller Driver (Version: 8.2.612.2012)
Realtek PCIE Card Reader (Version: 6.2.8400.28123)
Roads of Rome 3 (Version: 2.2.0.98)
Storybook4 (Version: 4.0.9)
swMSM (Version: 12.0.0.1)
Synaptics TouchPad Driver (Version: 16.2.10.12)
Tales of Lagoona (Version: 2.2.0.110)
TurboTax 2012 (Version: 2012.0)
TurboTax 2012 wiaiper (Version: 012.000.1293)
TurboTax 2012 WinPerFedFormset (Version: 012.000.1925)
TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0433)
TurboTax 2012 WinPerTaxSupport (Version: 012.000.0179)
TurboTax 2012 wrapper (Version: 012.000.0127)
Update for Japanese Microsoft IME Postal Code Dictionary (Version: 15.0.552)
Update for Japanese Microsoft IME Standard Dictionary (Version: 15.0.913)
Update for Japanese Microsoft IME Standard Extended Dictionary (Version: 15.0.913)
Update Installer for WildTangent Games App
Updater By SweetPacks 2.0.0.586 (Version: 2.0.0.586)
Vacation Quest™ - Australia (Version: 2.2.0.98)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.0 (Version: 2.0.0)
WildTangent Games (Version: 1.0.3.0)
WildTangent Games App (Version: 4.0.9.6)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Zuma's Revenge (Version: 2.2.0.98)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 79%
Total physical RAM: 1634.26 MB
Available physical RAM: 340.19 MB
Total Pagefile: 3480.07 MB
Available Pagefile: 910.6 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.11 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:276.8 GB) (Free:177.55 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:20.52 GB) (Free:2.54 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\FLAMEOFSUZAKU
 
Administrator            Crystal                  Guest                    
 
 
 
TDSSKILLER Log
 
12:10:24.0210 2836  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:10:24.0210 2836  UEFI system
12:10:25.0783 2836  ============================================================
12:10:25.0784 2836  Current date / time: 2013/07/27 12:10:25.0783
12:10:25.0784 2836  SystemInfo:
12:10:25.0784 2836  
12:10:25.0784 2836  OS Version: 6.2.9200 ServicePack: 0.0
12:10:25.0784 2836  Product type: Workstation
12:10:25.0785 2836  ComputerName: FLAMEOFSUZAKU
12:10:25.0785 2836  UserName: Crystal
12:10:25.0785 2836  Windows directory: C:\Windows
12:10:25.0785 2836  System windows directory: C:\Windows
12:10:25.0785 2836  Running under WOW64
12:10:25.0786 2836  Processor architecture: Intel x64
12:10:25.0786 2836  Number of processors: 2
12:10:25.0786 2836  Page size: 0x1000
12:10:25.0786 2836  Boot type: Normal boot
12:10:25.0786 2836  ============================================================
12:10:30.0351 2836  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:10:30.0363 2836  ============================================================
12:10:30.0363 2836  \Device\Harddisk0\DR0:
12:10:30.0369 2836  GPT partitions:
12:10:30.0376 2836  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {B54F6302-D496-434B-B19E-2CEC2727DCFA}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
12:10:30.0376 2836  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {A77AABCD-095A-439D-BB3B-D74E0F8D6AB4}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
12:10:30.0376 2836  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {5D2653B9-98ED-4E3D-867A-29B8E1EF7F24}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
12:10:30.0376 2836  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {E1BA2478-2E1D-4ABE-8AD7-1E8D49EA13E7}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x2299B000
12:10:30.0378 2836  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {9BA549B8-E11E-4C12-88A0-24A56E965360}, Name: Basic data partition, StartLBA 0x22B25800, BlocksNum 0x2909000
12:10:30.0378 2836  MBR partitions:
12:10:30.0378 2836  ============================================================
12:10:30.0480 2836  C: <-> \Device\Harddisk0\DR0\Partition4
12:10:30.0603 2836  D: <-> \Device\Harddisk0\DR0\Partition5
12:10:30.0603 2836  ============================================================
12:10:30.0604 2836  Initialize success
12:10:30.0604 2836  ============================================================
12:10:37.0790 6084  ============================================================
12:10:37.0790 6084  Scan started
12:10:37.0791 6084  Mode: Manual; 
12:10:37.0791 6084  ============================================================
12:10:47.0770 6084  ================ Scan system memory ========================
12:10:47.0770 6084  System memory - ok
12:10:47.0782 6084  ================ Scan services =============================
12:10:48.0747 6084  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
12:10:48.0811 6084  1394ohci - ok
12:10:48.0847 6084  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware           C:\Windows\system32\drivers\3ware.sys
12:10:48.0853 6084  3ware - ok
12:10:48.0918 6084  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:10:48.0934 6084  ACPI - ok
12:10:48.0984 6084  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
12:10:49.0005 6084  acpiex - ok
12:10:49.0041 6084  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
12:10:49.0064 6084  acpipagr - ok
12:10:49.0080 6084  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
12:10:49.0131 6084  AcpiPmi - ok
12:10:49.0145 6084  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
12:10:49.0162 6084  acpitime - ok
12:10:49.0206 6084  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:10:49.0242 6084  adp94xx - ok
12:10:49.0276 6084  [ D27763E0247292654E7F7D16444C7C72 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:10:49.0317 6084  adpahci - ok
12:10:49.0365 6084  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:10:49.0411 6084  adpu320 - ok
12:10:49.0467 6084  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:10:49.0484 6084  AeLookupSvc - ok
12:10:49.0670 6084  [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD             C:\Windows\system32\drivers\afd.sys
12:10:49.0685 6084  AFD - ok
12:10:49.0749 6084  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:10:49.0772 6084  agp440 - ok
12:10:49.0848 6084  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG             C:\Windows\System32\alg.exe
12:10:49.0879 6084  ALG - ok
12:10:49.0924 6084  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
12:10:49.0966 6084  AllUserInstallAgent - ok
12:10:50.0042 6084  [ 1F500945F87AA517BD2F049256B304DD ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:10:53.0781 6084  AMD External Events Utility - ok
12:10:53.0848 6084  AMD FUEL Service - ok
12:10:53.0918 6084  [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
12:10:54.0022 6084  AmdK8 - ok
12:10:54.0617 6084  [ 2A831A7F9031B5BBA6EF189381D65228 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
12:10:54.0963 6084  amdkmdag - ok
12:10:55.0018 6084  [ B9ACB2AA40709E060CDC34F13F1C9C8F ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:10:55.0027 6084  amdkmdap - ok
12:10:55.0103 6084  [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
12:10:55.0204 6084  AmdPPM - ok
12:10:55.0264 6084  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:10:55.0268 6084  amdsata - ok
12:10:55.0420 6084  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:10:55.0532 6084  amdsbs - ok
12:10:55.0604 6084  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:10:55.0619 6084  amdxata - ok
12:10:55.0675 6084  [ A2EFE3869B976296E097DEF368280F95 ] amd_sata        C:\Windows\system32\drivers\amd_sata.sys
12:10:55.0677 6084  amd_sata - ok
12:10:55.0708 6084  [ 625396421C29FB305C6C6235D01130B8 ] amd_xata        C:\Windows\system32\drivers\amd_xata.sys
12:10:55.0712 6084  amd_xata - ok
12:10:55.0794 6084  [ 823F34D1DEF120A657BB7529ABF4461F ] AppHostSvc      C:\Windows\system32\inetsrv\apphostsvc.dll
12:10:55.0880 6084  AppHostSvc - ok
12:10:55.0923 6084  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID           C:\Windows\system32\drivers\appid.sys
12:10:55.0965 6084  AppID - ok
12:10:56.0106 6084  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:10:56.0132 6084  AppIDSvc - ok
12:10:56.0239 6084  [ 4F750B7EFCB6520AE01E01D082D7D476 ] Appinfo         C:\Windows\System32\appinfo.dll
12:10:56.0256 6084  Appinfo - ok
12:10:56.0295 6084  [ E933401B392387F4BE34DE8BAF1722A7 ] arc             C:\Windows\system32\drivers\arc.sys
12:10:56.0342 6084  arc - ok
12:10:56.0443 6084  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:10:56.0493 6084  arcsas - ok
12:10:57.0358 6084  [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:10:57.0471 6084  aspnet_state - ok
12:10:57.0502 6084  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:10:57.0506 6084  AsyncMac - ok
12:10:57.0546 6084  [ A721FF570C2387E383BDDEA9632863C9 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:10:57.0549 6084  atapi - ok
12:10:57.0617 6084  [ BCD7A47EF587DC00DD61D12D9C2D1E44 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
12:10:57.0634 6084  AudioEndpointBuilder - ok
12:10:57.0694 6084  [ 599B3F685A263A114FFAF3BE29C49C75 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:10:57.0720 6084  Audiosrv - ok
12:10:57.0804 6084  [ 58D7FAF5C81ECEFFD2EDEDA9C2619D82 ] Avgboota        C:\Windows\system32\DRIVERS\avgboota.sys
12:10:58.0019 6084  Avgboota - ok
12:10:58.0485 6084  [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
12:10:58.0632 6084  AVGIDSAgent - ok
12:10:58.0702 6084  [ 139BD30C32BEE830D0CF39C5324D79DE ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
12:10:58.0782 6084  AVGIDSDriver - ok
12:10:58.0875 6084  [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
12:10:58.0892 6084  AVGIDSHA - ok
12:10:58.0934 6084  [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
12:10:58.0940 6084  Avgldx64 - ok
12:10:59.0080 6084  [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
12:10:59.0091 6084  Avgloga - ok
12:10:59.0129 6084  [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
12:10:59.0135 6084  Avgmfx64 - ok
12:10:59.0165 6084  [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
12:10:59.0181 6084  Avgrkx64 - ok
12:10:59.0264 6084  [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
12:10:59.0310 6084  avgwd - ok
12:10:59.0361 6084  [ 0DA88B82EB3C626A7E9ED93C840FF128 ] Avgwfpa         C:\Windows\system32\DRIVERS\avgwfpa.sys
12:10:59.0484 6084  Avgwfpa - ok
12:10:59.0537 6084  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:10:59.0605 6084  AxInstSV - ok
12:10:59.0676 6084  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:10:59.0741 6084  b06bdrv - ok
12:10:59.0797 6084  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
12:10:59.0842 6084  BasicDisplay - ok
12:10:59.0888 6084  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
12:10:59.0902 6084  BasicRender - ok
12:10:59.0971 6084  [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:10:59.0977 6084  BDESVC - ok
12:11:00.0005 6084  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:11:00.0032 6084  Beep - ok
12:11:00.0102 6084  [ 9E6A544F465C582AB42444A217CF04DC ] BFE             C:\Windows\System32\bfe.dll
12:11:00.0135 6084  BFE - ok
12:11:00.0185 6084  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\Windows\System32\qmgr.dll
12:11:00.0473 6084  BITS - ok
12:11:00.0562 6084  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:11:00.0573 6084  Bonjour Service - ok
12:11:00.0604 6084  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:11:00.0616 6084  bowser - ok
12:11:00.0674 6084  [ 038FA1B55531E7020DB705B42FCCE373 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
12:11:00.0681 6084  BrokerInfrastructure - ok
12:11:00.0749 6084  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser         C:\Windows\System32\browser.dll
12:11:00.0765 6084  Browser - ok
12:11:00.0807 6084  [ 6695200F455E251F0BCC9CE4D0978D59 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
12:11:01.0890 6084  BthAvrcpTg - ok
12:11:01.0933 6084  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
12:11:02.0169 6084  BthHFEnum - ok
12:11:02.0299 6084  [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
12:11:02.0375 6084  bthhfhid - ok
12:11:02.0456 6084  [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
12:11:02.0511 6084  BTHMODEM - ok
12:11:02.0619 6084  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv         C:\Windows\system32\bthserv.dll
12:11:02.0822 6084  bthserv - ok
12:11:02.0947 6084  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:11:02.0962 6084  cdfs - ok
12:11:02.0995 6084  [ 339BFF85D788268752DA8C9644B188EE ] cdrom           C:\Windows\System32\drivers\cdrom.sys
12:11:03.0011 6084  cdrom - ok
12:11:03.0101 6084  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:11:03.0141 6084  CertPropSvc - ok
12:11:03.0221 6084  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\Windows\System32\drivers\circlass.sys
12:11:03.0263 6084  circlass - ok
12:11:03.0316 6084  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
12:11:03.0333 6084  CLFS - ok
12:11:03.0418 6084  [ 075CCE75090786F124573A788C8656E6 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
12:11:03.0533 6084  CLVirtualDrive - ok
12:11:03.0596 6084  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
12:11:03.0639 6084  CmBatt - ok
12:11:03.0719 6084  [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG             C:\Windows\system32\Drivers\cng.sys
12:11:03.0769 6084  CNG - ok
12:11:03.0838 6084  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
12:11:03.0857 6084  CompositeBus - ok
12:11:03.0873 6084  COMSysApp - ok
12:11:03.0901 6084  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\Windows\system32\drivers\condrv.sys
12:11:04.0010 6084  condrv - ok
12:11:04.0074 6084  [ AFA426B0E7975CEB21F8B6711EFA8945 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:11:04.0080 6084  CryptSvc - ok
12:11:04.0121 6084  [ C4D01BD86D6B207275FC143EEA951D75 ] dam             C:\Windows\system32\drivers\dam.sys
12:11:04.0124 6084  dam - ok
12:11:04.0195 6084  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:11:04.0218 6084  DcomLaunch - ok
12:11:04.0264 6084  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc       C:\Windows\System32\defragsvc.dll
12:11:04.0275 6084  defragsvc - ok
12:11:04.0308 6084  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
12:11:04.0365 6084  DeviceAssociationService - ok
12:11:04.0418 6084  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
12:11:04.0512 6084  DeviceInstall - ok
12:11:04.0634 6084  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
12:11:04.0747 6084  Dfsc - ok
12:11:04.0879 6084  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:11:05.0162 6084  Dhcp - ok
12:11:05.0201 6084  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\Windows\system32\drivers\discache.sys
12:11:05.0237 6084  discache - ok
12:11:05.0306 6084  [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk            C:\Windows\system32\drivers\disk.sys
12:11:05.0310 6084  disk - ok
12:11:05.0460 6084  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
12:11:05.0520 6084  dmvsc - ok
12:11:05.0590 6084  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:11:05.0615 6084  Dnscache - ok
12:11:05.0703 6084  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc         C:\Windows\System32\dot3svc.dll
12:11:05.0770 6084  dot3svc - ok
12:11:05.0837 6084  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS             C:\Windows\system32\dps.dll
12:11:05.0892 6084  DPS - ok
12:11:05.0978 6084  [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:11:06.0158 6084  drmkaud - ok
12:11:06.0204 6084  [ F87F4AAAF6664906248D11D5E579A53B ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
12:11:06.0471 6084  DsmSvc - ok
12:11:06.0655 6084  [ 6D1B8A9A2C0BD4851D8AF1AB43E67AD9 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:11:06.0791 6084  DXGKrnl - ok
12:11:06.0869 6084  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost         C:\Windows\System32\eapsvc.dll
12:11:06.0980 6084  Eaphost - ok
12:11:07.0387 6084  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:11:07.0634 6084  ebdrv - ok
12:11:07.0846 6084  [ F702AB6181513303AB0FC8D59E52708B ] EFS             C:\Windows\System32\lsass.exe
12:11:07.0855 6084  EFS - ok
12:11:07.0939 6084  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
12:11:07.0966 6084  EhStorClass - ok
12:11:08.0146 6084  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
12:11:08.0189 6084  EhStorTcgDrv - ok
12:11:08.0227 6084  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\Windows\System32\drivers\errdev.sys
12:11:08.0234 6084  ErrDev - ok
12:11:08.0332 6084  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem     C:\Windows\system32\es.dll
12:11:08.0353 6084  EventSystem - ok
12:11:08.0412 6084  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:11:08.0428 6084  exfat - ok
12:11:08.0465 6084  [ 60996602A7111FD2D086E803F33E4282 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:11:08.0470 6084  fastfat - ok
12:11:08.0515 6084  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax             C:\Windows\system32\fxssvc.exe
12:11:08.0556 6084  Fax - ok
12:11:08.0604 6084  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc             C:\Windows\System32\drivers\fdc.sys
12:11:08.0608 6084  fdc - ok
12:11:08.0664 6084  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost         C:\Windows\system32\fdPHost.dll
12:11:08.0703 6084  fdPHost - ok
12:11:08.0736 6084  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\Windows\system32\fdrespub.dll
12:11:08.0792 6084  FDResPub - ok
12:11:08.0899 6084  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc           C:\Windows\system32\fhsvc.dll
12:11:09.0069 6084  fhsvc - ok
12:11:09.0108 6084  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:11:09.0113 6084  FileInfo - ok
12:11:09.0130 6084  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:11:09.0134 6084  Filetrace - ok
12:11:09.0173 6084  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
12:11:09.0176 6084  flpydisk - ok
12:11:09.0203 6084  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:11:09.0212 6084  FltMgr - ok
12:11:09.0340 6084  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache       C:\Windows\system32\FntCache.dll
12:11:09.0468 6084  FontCache - ok
12:11:09.0618 6084  [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:11:09.0657 6084  FontCache3.0.0.0 - ok
12:11:09.0712 6084  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:11:09.0898 6084  FsDepends - ok
12:11:09.0936 6084  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:11:09.0991 6084  Fs_Rec - ok
12:11:10.0121 6084  [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:11:10.0184 6084  fvevol - ok
12:11:10.0264 6084  [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
12:11:10.0291 6084  FxPPM - ok
12:11:10.0347 6084  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:11:10.0364 6084  gagp30kx - ok
12:11:10.0802 6084  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
12:11:10.0989 6084  GamesAppService - ok
12:11:11.0101 6084  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
12:11:11.0163 6084  gencounter - ok
12:11:11.0266 6084  [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
12:11:11.0322 6084  GPIOClx0101 - ok
12:11:11.0624 6084  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:11:11.0698 6084  gpsvc - ok
12:11:11.0889 6084  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:11:11.0934 6084  gupdate - ok
12:11:11.0963 6084  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:11:11.0967 6084  gupdatem - ok
12:11:12.0064 6084  [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:11:12.0376 6084  HdAudAddService - ok
12:11:12.0471 6084  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
12:11:12.0618 6084  HDAudBus - ok
12:11:12.0700 6084  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
12:11:12.0969 6084  HidBatt - ok
12:11:13.0072 6084  [ 085F150D002B7F0153D3C06DDF33A143 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
12:11:15.0564 6084  HidBth - ok
12:11:15.0675 6084  [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
12:11:15.0754 6084  hidi2c - ok
12:11:16.0052 6084  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr           C:\Windows\System32\drivers\hidir.sys
12:11:16.0140 6084  HidIr - ok
12:11:16.0443 6084  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv         C:\Windows\system32\hidserv.dll
12:11:16.0798 6084  hidserv - ok
12:11:16.0903 6084  [ 9E11EE0F2E117B2D5A835B2B91752827 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
12:11:18.0443 6084  HidUsb - ok
12:11:19.0384 6084  [ 1712747C844CC12EED8BC92FB0E56E4C ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
12:11:19.0409 6084  HitmanProScheduler - ok
12:11:19.0495 6084  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:11:19.0576 6084  hkmsvc - ok
12:11:19.0682 6084  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:11:19.0793 6084  HomeGroupListener - ok
12:11:19.0862 6084  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:11:19.0945 6084  HomeGroupProvider - ok
12:11:20.0168 6084  [ 6515296E8F9D81BB6C4588C4878A9AC1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
12:11:20.0181 6084  HP Support Assistant Service - ok
12:11:20.0318 6084  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
12:11:20.0364 6084  hpqwmiex - ok
12:11:20.0443 6084  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:11:20.0466 6084  HpSAMD - ok
12:11:20.0540 6084  [ F50912B0A861ED396F6062E79C37A4A7 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
12:11:20.0564 6084  HPWMISVC - ok
12:11:20.0687 6084  [ F4A91D985EB9D1D2717D538F3424603C ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:11:20.0738 6084  HTTP - ok
12:11:20.0794 6084  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:11:20.0821 6084  hwpolicy - ok
12:11:20.0862 6084  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
12:11:20.0899 6084  hyperkbd - ok
12:11:20.0998 6084  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
12:11:21.0028 6084  HyperVideo - ok
12:11:21.0074 6084  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
12:11:21.0079 6084  i8042prt - ok
12:11:21.0161 6084  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:11:21.0188 6084  iaStorV - ok
12:11:21.0410 6084  [ ABEFA4BD23329FD9BD47496BF2E58774 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
12:11:24.0137 6084  IconMan_R - ok
12:11:24.0928 6084  [ 83915E05E168AB63B48302F7DC5D8E00 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
12:11:25.0377 6084  igfx - ok
12:11:25.0465 6084  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:11:25.0521 6084  iirsp - ok
12:11:25.0644 6084  [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:11:25.0776 6084  IKEEXT - ok
12:11:25.0820 6084  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:11:25.0853 6084  intelide - ok
12:11:25.0891 6084  [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm        C:\Windows\System32\drivers\intelppm.sys
12:11:25.0966 6084  intelppm - ok
12:11:26.0185 6084  [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
12:11:26.0200 6084  IntuitUpdateServiceV4 - ok
12:11:26.0236 6084  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:11:26.0251 6084  IpFilterDriver - ok
12:11:26.0317 6084  [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:11:26.0379 6084  iphlpsvc - ok
12:11:26.0417 6084  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
12:11:26.0432 6084  IPMIDRV - ok
12:11:26.0469 6084  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:11:26.0490 6084  IPNAT - ok
12:11:26.0573 6084  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:11:26.0811 6084  IRENUM - ok
12:11:26.0847 6084  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:11:26.0864 6084  isapnp - ok
12:11:26.0990 6084  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
12:11:27.0006 6084  iScsiPrt - ok
12:11:27.0074 6084  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
12:11:27.0077 6084  kbdclass - ok
12:11:27.0112 6084  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
12:11:27.0146 6084  kbdhid - ok
12:11:27.0231 6084  [ FB6C185092E18011EF49989425C2AA87 ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
12:11:27.0260 6084  kdnic - ok
12:11:27.0304 6084  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\Windows\system32\lsass.exe
12:11:27.0309 6084  KeyIso - ok
12:11:27.0417 6084  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:11:27.0420 6084  KSecDD - ok
12:11:27.0480 6084  [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:11:27.0510 6084  KSecPkg - ok
12:11:27.0608 6084  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:11:27.0646 6084  ksthunk - ok
12:11:27.0727 6084  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:11:27.0821 6084  KtmRm - ok
12:11:28.0064 6084  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:11:28.0167 6084  LanmanServer - ok
12:11:28.0240 6084  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:11:28.0274 6084  LanmanWorkstation - ok
12:11:28.0342 6084  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:11:28.0408 6084  lltdio - ok
12:11:28.0496 6084  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:11:28.0527 6084  lltdsvc - ok
12:11:28.0555 6084  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:11:28.0587 6084  lmhosts - ok
12:11:28.0639 6084  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:11:28.0669 6084  LSI_SAS - ok
12:11:28.0762 6084  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:11:28.0818 6084  LSI_SAS2 - ok
12:11:28.0849 6084  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:11:28.0895 6084  LSI_SCSI - ok
12:11:28.0965 6084  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
12:11:29.0009 6084  LSI_SSS - ok
12:11:29.0079 6084  [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM             C:\Windows\System32\lsm.dll
12:11:29.0108 6084  LSM - ok
12:11:29.0144 6084  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:11:29.0161 6084  luafv - ok
12:11:29.0286 6084  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
12:11:29.0297 6084  MBAMProtector - ok
12:11:29.0431 6084  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:11:29.0472 6084  MBAMScheduler - ok
12:11:29.0567 6084  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
12:11:29.0623 6084  MBAMService - ok
12:11:29.0691 6084  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas         C:\Windows\system32\drivers\megasas.sys
12:11:29.0719 6084  megasas - ok
12:11:29.0770 6084  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
12:11:29.0783 6084  MegaSR - ok
12:11:29.0860 6084  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS           C:\Windows\system32\mmcss.dll
12:11:29.0877 6084  MMCSS - ok
12:11:29.0954 6084  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem           C:\Windows\system32\drivers\modem.sys
12:11:29.0972 6084  Modem - ok
12:11:30.0023 6084  [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor         C:\Windows\System32\drivers\monitor.sys
12:11:30.0107 6084  monitor - ok
12:11:30.0177 6084  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\Windows\System32\drivers\mouclass.sys
12:11:30.0180 6084  mouclass - ok
12:11:30.0259 6084  [ C0ADEBED913295803B579ED288936CBB ] mouhid          C:\Windows\System32\drivers\mouhid.sys
12:11:30.0404 6084  mouhid - ok
12:11:30.0468 6084  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:11:30.0484 6084  mountmgr - ok
12:11:30.0538 6084  [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:11:30.0589 6084  mpsdrv - ok
12:11:30.0670 6084  [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:11:30.0699 6084  MpsSvc - ok
12:11:30.0777 6084  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:11:30.0798 6084  MRxDAV - ok
12:11:30.0893 6084  [ 93179D48066918323628CB016D8C94DC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:11:30.0911 6084  mrxsmb - ok
12:11:30.0962 6084  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:11:30.0983 6084  mrxsmb10 - ok
12:11:31.0043 6084  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:11:31.0051 6084  mrxsmb20 - ok
12:11:31.0097 6084  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
12:11:31.0104 6084  MsBridge - ok
12:11:31.0152 6084  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC           C:\Windows\System32\msdtc.exe
12:11:31.0178 6084  MSDTC - ok
12:11:31.0236 6084  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:11:31.0241 6084  Msfs - ok
12:11:31.0304 6084  [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
12:11:31.0355 6084  msgpiowin32 - ok
12:11:31.0396 6084  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:11:31.0407 6084  mshidkmdf - ok
12:11:31.0429 6084  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
12:11:31.0446 6084  mshidumdf - ok
12:11:31.0477 6084  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:11:31.0486 6084  msisadrv - ok
12:11:31.0527 6084  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:11:31.0542 6084  MSiSCSI - ok
12:11:31.0567 6084  msiserver - ok
12:11:31.0646 6084  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:11:31.0666 6084  MSKSSRV - ok
12:11:31.0693 6084  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
12:11:31.0711 6084  MsLldp - ok
12:11:31.0743 6084  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:11:31.0756 6084  MSPCLOCK - ok
12:11:31.0791 6084  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:11:31.0806 6084  MSPQM - ok
12:11:31.0837 6084  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:11:31.0865 6084  MsRPC - ok
12:11:31.0915 6084  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
12:11:31.0925 6084  mssmbios - ok
12:11:31.0960 6084  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:11:31.0972 6084  MSTEE - ok
12:11:32.0000 6084  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
12:11:32.0013 6084  MTConfig - ok
12:11:32.0050 6084  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup             C:\Windows\system32\Drivers\mup.sys
12:11:32.0054 6084  Mup - ok
12:11:32.0075 6084  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
12:11:32.0088 6084  mvumis - ok
12:11:32.0143 6084  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\Windows\system32\qagentRT.dll
12:11:32.0159 6084  napagent - ok
12:11:32.0217 6084  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:11:32.0236 6084  NativeWifiP - ok
12:11:32.0292 6084  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\Windows\System32\ncasvc.dll
12:11:32.0315 6084  NcaSvc - ok
12:11:32.0334 6084  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
12:11:32.0397 6084  NcdAutoSetup - ok
12:11:32.0601 6084  [ A10E176F3B2BF83EDE7B5C4658C93B66 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:11:32.0646 6084  NDIS - ok
12:11:32.0672 6084  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:11:32.0677 6084  NdisCap - ok
12:11:32.0702 6084  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
12:11:32.0714 6084  NdisImPlatform - ok
12:11:32.0754 6084  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:11:32.0777 6084  NdisTapi - ok
12:11:32.0845 6084  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:11:32.0850 6084  Ndisuio - ok
12:11:32.0874 6084  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:11:32.0880 6084  NdisWan - ok
12:11:32.0899 6084  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY   C:\Windows\system32\DRIVERS\ndiswan.sys
12:11:32.0903 6084  NDISWANLEGACY - ok
12:11:32.0950 6084  [ 3730942D7DB2F8BB5F84542B7FF6F650 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:11:32.0957 6084  NDProxy - ok
12:11:32.0995 6084  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
12:11:33.0010 6084  Ndu - ok
12:11:33.0039 6084  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:11:33.0042 6084  NetBIOS - ok
12:11:33.0061 6084  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:11:33.0083 6084  NetBT - ok
12:11:33.0104 6084  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\Windows\system32\lsass.exe
12:11:33.0109 6084  Netlogon - ok
12:11:33.0138 6084  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\Windows\System32\netman.dll
12:11:33.0171 6084  Netman - ok
12:11:33.0230 6084  [ 79FA9393C67EBBF92A56923592CF7A7C ] netprofm        C:\Windows\System32\netprofmsvc.dll
12:11:33.0246 6084  netprofm - ok
12:11:33.0435 6084  [ 080417AC9E51B2B29656EC26B62E87F1 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
12:11:33.0512 6084  netr28x - ok
12:11:33.0609 6084  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:11:33.0645 6084  NetTcpPortSharing - ok
12:11:33.0684 6084  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:11:33.0690 6084  nfrd960 - ok
12:11:33.0756 6084  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:11:33.0775 6084  NlaSvc - ok
12:11:33.0820 6084  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:11:33.0827 6084  Npfs - ok
12:11:33.0846 6084  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
12:11:33.0856 6084  npsvctrig - ok
12:11:33.0890 6084  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi             C:\Windows\system32\nsisvc.dll
12:11:33.0897 6084  nsi - ok
12:11:33.0920 6084  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:11:33.0928 6084  nsiproxy - ok
12:11:34.0072 6084  [ 76929F4A69E425911A63B407E26C2589 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:11:34.0133 6084  Ntfs - ok
12:11:34.0360 6084  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\Windows\system32\drivers\Null.sys
12:11:34.0371 6084  Null - ok
12:11:34.0421 6084  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:11:34.0474 6084  nvraid - ok
12:11:34.0547 6084  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:11:34.0567 6084  nvstor - ok
12:11:34.0636 6084  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:11:34.0659 6084  nv_agp - ok
12:11:34.0760 6084  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:11:34.0831 6084  p2pimsvc - ok
12:11:34.0886 6084  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:11:34.0906 6084  p2psvc - ok
12:11:34.0958 6084  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport         C:\Windows\System32\drivers\parport.sys
12:11:34.0974 6084  Parport - ok
12:11:35.0032 6084  [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:11:35.0036 6084  partmgr - ok
12:11:35.0095 6084  [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:11:35.0117 6084  PcaSvc - ok
12:11:35.0160 6084  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci             C:\Windows\system32\drivers\pci.sys
12:11:35.0164 6084  pci - ok
12:11:35.0189 6084  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:11:35.0202 6084  pciide - ok
12:11:35.0262 6084  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:11:35.0273 6084  pcmcia - ok
12:11:35.0307 6084  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:11:35.0330 6084  pcw - ok
12:11:35.0393 6084  [ 0698DEDEAD6A00AD0D468C687D830FBF ] pdc             C:\Windows\system32\drivers\pdc.sys
12:11:35.0403 6084  pdc - ok
12:11:35.0476 6084  [ 61FE70659CD43E07F94DA4DC31DEC493 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:11:35.0508 6084  PEAUTH - ok
12:11:35.0761 6084  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:11:35.0797 6084  PerfHost - ok
12:11:35.0967 6084  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla             C:\Windows\system32\pla.dll
12:11:36.0065 6084  pla - ok
12:11:36.0312 6084  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:11:36.0325 6084  PlugPlay - ok
12:11:36.0403 6084  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:11:36.0556 6084  PNRPAutoReg - ok
12:11:36.0616 6084  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:11:36.0631 6084  PNRPsvc - ok
12:11:36.0732 6084  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:11:36.0902 6084  PolicyAgent - ok
12:11:37.0006 6084  [ F1E067F56373F11EA4B785CAE823740A ] Power           C:\Windows\system32\umpo.dll
12:11:37.0027 6084  Power - ok
12:11:37.0251 6084  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:11:37.0293 6084  PptpMiniport - ok
12:11:38.0277 6084  [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
12:11:39.0101 6084  PrintNotify - ok
12:11:39.0272 6084  [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor       C:\Windows\System32\drivers\processr.sys
12:11:39.0316 6084  Processor - ok
12:11:39.0547 6084  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc         C:\Windows\system32\profsvc.dll
12:11:39.0563 6084  ProfSvc - ok
12:11:39.0631 6084  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:11:39.0636 6084  Psched - ok
12:11:39.0745 6084  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE           C:\Windows\system32\qwave.dll
12:11:39.0929 6084  QWAVE - ok
12:11:39.0986 6084  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:11:40.0001 6084  QWAVEdrv - ok
12:11:40.0053 6084  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:11:40.0066 6084  RasAcd - ok
12:11:40.0260 6084  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:11:40.0293 6084  RasAgileVpn - ok
12:11:40.0350 6084  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto         C:\Windows\System32\rasauto.dll
12:11:40.0397 6084  RasAuto - ok
12:11:40.0583 6084  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:11:40.0590 6084  Rasl2tp - ok
12:11:40.0690 6084  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\Windows\System32\rasmans.dll
12:11:40.0710 6084  RasMan - ok
12:11:40.0761 6084  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:11:40.0776 6084  RasPppoe - ok
12:11:40.0801 6084  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:11:40.0828 6084  RasSstp - ok
12:11:40.0896 6084  [ CA03D642ACE58E1BA54E4B383F91CD69 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:11:40.0911 6084  rdbss - ok
12:11:40.0978 6084  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
12:11:40.0994 6084  rdpbus - ok
12:11:41.0155 6084  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:11:41.0229 6084  RDPDR - ok
12:11:41.0318 6084  [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:11:41.0322 6084  RdpVideoMiniport - ok
12:11:41.0398 6084  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:11:41.0421 6084  RDPWD - ok
12:11:41.0469 6084  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:11:41.0483 6084  rdyboost - ok
12:11:41.0564 6084  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:11:41.0598 6084  RemoteAccess - ok
12:11:41.0661 6084  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:11:41.0682 6084  RemoteRegistry - ok
12:11:41.0723 6084  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:11:41.0755 6084  RpcEptMapper - ok
12:11:41.0802 6084  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\Windows\system32\locator.exe
12:11:41.0818 6084  RpcLocator - ok
12:11:42.0014 6084  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs           C:\Windows\system32\rpcss.dll
12:11:42.0035 6084  RpcSs - ok
12:11:42.0080 6084  [ 7BFDFD1D2244B444D7BBC55087426518 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
12:11:42.0114 6084  RSPCIESTOR - ok
12:11:42.0166 6084  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:11:42.0186 6084  rspndr - ok
12:11:42.0260 6084  [ 7D9DA8EC6784A9EE213C676709D46BE6 ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
12:11:42.0306 6084  RTL8168 - ok
12:11:42.0363 6084  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
12:11:42.0380 6084  s3cap - ok
12:11:42.0440 6084  [ F702AB6181513303AB0FC8D59E52708B ] SamSs           C:\Windows\system32\lsass.exe
12:11:42.0447 6084  SamSs - ok
12:11:42.0510 6084  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:11:42.0516 6084  sbp2port - ok
12:11:42.0558 6084  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:11:42.0585 6084  SCardSvr - ok
12:11:42.0611 6084  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:11:42.0630 6084  scfilter - ok
12:11:42.0857 6084  [ ED40ED9A65F3E79A8C43DD50C5FDADBF ] Schedule        C:\Windows\system32\schedsvc.dll
12:11:42.0905 6084  Schedule - ok
12:11:42.0974 6084  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:11:42.0980 6084  SCPolicySvc - ok
12:11:43.0033 6084  [ 98636FB2973B8876A7F0BECD076CF109 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
12:11:43.0046 6084  sdbus - ok
12:11:43.0103 6084  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:11:43.0165 6084  SDRSVC - ok
12:11:43.0355 6084  [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
12:11:43.0369 6084  sdstor - ok
12:11:43.0412 6084  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:11:43.0420 6084  secdrv - ok
12:11:43.0481 6084  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\Windows\system32\seclogon.dll
12:11:43.0514 6084  seclogon - ok
12:11:43.0535 6084  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\Windows\System32\sens.dll
12:11:43.0548 6084  SENS - ok
12:11:43.0568 6084  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:11:43.0666 6084  SensrSvc - ok
12:11:43.0719 6084  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx           C:\Windows\system32\drivers\SerCx.sys
12:11:43.0763 6084  SerCx - ok
12:11:43.0803 6084  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum         C:\Windows\System32\drivers\serenum.sys
12:11:43.0827 6084  Serenum - ok
12:11:43.0850 6084  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\Windows\System32\drivers\serial.sys
12:11:43.0864 6084  Serial - ok
12:11:43.0896 6084  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\Windows\System32\drivers\sermouse.sys
12:11:43.0900 6084  sermouse - ok
12:11:43.0968 6084  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\Windows\system32\sessenv.dll
12:11:43.0982 6084  SessionEnv - ok
12:11:44.0014 6084  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
12:11:44.0020 6084  sfloppy - ok
12:11:44.0071 6084  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:11:44.0093 6084  SharedAccess - ok
12:11:44.0211 6084  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:11:44.0236 6084  ShellHWDetection - ok
12:11:44.0290 6084  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:11:44.0296 6084  SiSRaid2 - ok
12:11:44.0329 6084  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:11:44.0347 6084  SiSRaid4 - ok
12:11:44.0406 6084  [ DEF12DFFABC141DE93A01487FC5C5215 ] SmbDrv          C:\Windows\System32\drivers\Smb_driver_AMDASF.sys
12:11:44.0465 6084  SmbDrv - ok
12:11:44.0510 6084  [ B7332D40EE0B52CE18D321DF8AB01008 ] SmbDrvI         C:\Windows\System32\drivers\Smb_driver_Intel.sys
12:11:44.0513 6084  SmbDrvI - ok
12:11:44.0573 6084  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:11:44.0606 6084  SNMPTRAP - ok
12:11:44.0660 6084  [ FD3AF5575B99871BADB94E7699DBCE08 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
12:11:44.0673 6084  spaceport - ok
12:11:44.0709 6084  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
12:11:44.0729 6084  SpbCx - ok
12:11:44.0805 6084  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler         C:\Windows\System32\spoolsv.exe
12:11:44.0907 6084  Spooler - ok
12:11:45.0147 6084  [ EC84D961501054F87A6878EC5D53388F ] sppsvc          C:\Windows\system32\sppsvc.exe
12:11:45.0321 6084  sppsvc - ok
12:11:45.0366 6084  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:11:45.0379 6084  srv - ok
12:11:45.0454 6084  [ 56218A571ECF8D55E0CDFF8DF2546CF1 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:11:45.0484 6084  srv2 - ok
12:11:45.0564 6084  [ 14FC338B80CFF7E04215133B568D15C4 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:11:45.0586 6084  srvnet - ok
12:11:45.0689 6084  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\Windows\System32\drivers\ssadbus.sys
12:11:45.0704 6084  ssadbus - ok
12:11:45.0782 6084  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
12:11:45.0792 6084  ssadmdfl - ok
12:11:45.0828 6084  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
12:11:45.0851 6084  ssadmdm - ok
12:11:45.0936 6084  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:11:45.0958 6084  SSDPSRV - ok
12:11:45.0984 6084  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:11:45.0995 6084  SstpSvc - ok
12:11:46.0118 6084  [ F452B51D895D894BF5487057E11D44CF ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
12:11:46.0129 6084  STacSV - ok
12:11:46.0163 6084  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:11:46.0168 6084  stexstor - ok
12:11:46.0228 6084  [ B05AEC4014FFDC1793B5CCB6D9BD28D1 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
12:11:46.0265 6084  STHDA - ok
12:11:46.0311 6084  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\Windows\System32\wiaservc.dll
12:11:46.0459 6084  stisvc - ok
12:11:46.0544 6084  [ B240874B2CA0CD02E8CD11E140B14C57 ] storahci        C:\Windows\system32\drivers\storahci.sys
12:11:46.0559 6084  storahci - ok
12:11:46.0589 6084  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
12:11:46.0594 6084  storflt - ok
12:11:46.0643 6084  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc         C:\Windows\system32\storsvc.dll
12:11:46.0663 6084  StorSvc - ok
12:11:46.0710 6084  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:11:46.0713 6084  storvsc - ok
12:11:46.0767 6084  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc           C:\Windows\system32\svsvc.dll
12:11:46.0805 6084  svsvc - ok
12:11:46.0847 6084  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\Windows\System32\drivers\swenum.sys
12:11:46.0851 6084  swenum - ok
12:11:46.0894 6084  [ 502F9488540051F3E6C39889ECFA76BB ] swprv           C:\Windows\System32\swprv.dll
12:11:46.0949 6084  swprv - ok
12:11:47.0001 6084  [ 3F45C3FE208CA5E68832B65C597A35A6 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
12:11:47.0029 6084  SynTP - ok
12:11:47.0162 6084  [ A06CB9269D29EE3D0F3F5630ABB660B8 ] SysMain         C:\Windows\system32\sysmain.dll
12:11:47.0238 6084  SysMain - ok
12:11:47.0293 6084  [ 6FB88606C4A71E1BFAF97D63A676C673 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
12:11:47.0320 6084  SystemEventsBroker - ok
12:11:47.0415 6084  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
12:11:47.0433 6084  TabletInputService - ok
12:11:47.0477 6084  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:11:47.0534 6084  TapiSrv - ok
12:11:47.0666 6084  [ 0D05E0147C1329C53AAF97882DEDD96A ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:11:47.0744 6084  Tcpip - ok
12:11:47.0869 6084  [ 0D05E0147C1329C53AAF97882DEDD96A ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:11:47.0898 6084  TCPIP6 - ok
12:11:47.0941 6084  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:11:47.0955 6084  tcpipreg - ok
12:11:47.0979 6084  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:11:47.0983 6084  tdx - ok
12:11:48.0015 6084  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
12:11:48.0018 6084  terminpt - ok
12:11:48.0083 6084  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService     C:\Windows\System32\termsrv.dll
12:11:48.0118 6084  TermService - ok
12:11:48.0140 6084  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\Windows\system32\themeservice.dll
12:11:48.0149 6084  Themes - ok
12:11:48.0207 6084  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER     C:\Windows\system32\mmcss.dll
12:11:48.0213 6084  THREADORDER - ok
12:11:48.0288 6084  [ 4515B9E4140F04FB3907692DF89FCA87 ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
12:11:48.0303 6084  TimeBroker - ok
12:11:48.0359 6084  [ 6F0BFF80EE2A5BC841286A51F893CBAD ] TPM             C:\Windows\system32\drivers\tpm.sys
12:11:48.0365 6084  TPM - ok
12:11:48.0393 6084  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\Windows\System32\trkwks.dll
12:11:48.0410 6084  TrkWks - ok
12:11:48.0514 6084  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:11:48.0526 6084  TrustedInstaller - ok
12:11:48.0618 6084  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:11:48.0667 6084  TsUsbFlt - ok
12:11:48.0697 6084  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
12:11:48.0705 6084  TsUsbGD - ok
12:11:48.0746 6084  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:11:48.0752 6084  tunnel - ok
12:11:48.0773 6084  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:11:48.0777 6084  uagp35 - ok
12:11:48.0804 6084  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
12:11:48.0820 6084  UASPStor - ok
12:11:48.0896 6084  [ 4834158B8D06A153FADAB6B85320FBBE ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
12:11:48.0933 6084  UCX01000 - ok
12:11:48.0995 6084  [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:11:49.0007 6084  udfs - ok
12:11:49.0078 6084  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:11:49.0102 6084  UI0Detect - ok
12:11:49.0129 6084  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:11:49.0133 6084  uliagpkx - ok
12:11:49.0179 6084  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus           C:\Windows\System32\drivers\umbus.sys
12:11:49.0187 6084  umbus - ok
12:11:49.0218 6084  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\Windows\System32\drivers\umpass.sys
12:11:49.0222 6084  UmPass - ok
12:11:49.0266 6084  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\Windows\System32\umrdp.dll
12:11:49.0288 6084  UmRdpService - ok
12:11:49.0311 6084  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\Windows\System32\upnphost.dll
12:11:49.0329 6084  upnphost - ok
12:11:49.0403 6084  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
12:11:49.0419 6084  usbccgp - ok
12:11:49.0442 6084  [ B395B62B62F28106218FA6FB17F4C797 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
12:11:49.0449 6084  usbcir - ok
12:11:49.0507 6084  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
12:11:49.0520 6084  usbehci - ok
12:11:49.0596 6084  [ 4875DC63E548812C75D4FDEF84970C89 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
12:11:49.0649 6084  usbfilter - ok
12:11:49.0734 6084  [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub          C:\Windows\System32\drivers\usbhub.sys
12:11:49.0749 6084  usbhub - ok
12:11:49.0805 6084  [ EA040D4C6C94F315A85F3D0EAA884B37 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
12:11:49.0837 6084  USBHUB3 - ok
12:11:49.0890 6084  [ 325F6179009B5A7F6118951A5BA422AB ] usbohci         C:\Windows\System32\drivers\usbohci.sys
12:11:49.0906 6084  usbohci - ok
12:11:49.0968 6084  [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint        C:\Windows\System32\drivers\usbprint.sys
12:11:49.0996 6084  usbprint - ok
12:11:50.0039 6084  [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
12:11:50.0059 6084  USBSTOR - ok
12:11:50.0103 6084  [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
12:11:50.0168 6084  usbuhci - ok
12:11:50.0336 6084  [ 09799E701B4327097E9F63D3FE221083 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
12:11:50.0345 6084  usbvideo - ok
12:11:50.0414 6084  [ 1ADCF0A490C2845637B334626669CD6F ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
12:11:50.0434 6084  USBXHCI - ok
12:11:50.0474 6084  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\Windows\system32\lsass.exe
12:11:50.0479 6084  VaultSvc - ok
12:11:50.0547 6084  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:11:50.0561 6084  vdrvroot - ok
12:11:50.0644 6084  [ 1B4488988E5E7512E6C5CD1255E9E973 ] vds             C:\Windows\System32\vds.exe
12:11:50.0747 6084  vds - ok
12:11:50.0782 6084  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
12:11:50.0797 6084  VerifierExt - ok
12:11:50.0886 6084  [ 500BE6B2E49883720D0AE8BB859ED7A3 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
12:11:50.0915 6084  vhdmp - ok
12:11:50.0978 6084  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\Windows\system32\drivers\viaide.sys
12:11:51.0000 6084  viaide - ok
12:11:51.0051 6084  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:11:51.0064 6084  vmbus - ok
12:11:51.0148 6084  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
12:11:51.0161 6084  VMBusHID - ok
12:11:51.0211 6084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
12:11:51.0228 6084  vmicheartbeat - ok
12:11:51.0250 6084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
12:11:51.0262 6084  vmickvpexchange - ok
12:11:51.0283 6084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv         C:\Windows\System32\ICSvc.dll
12:11:51.0292 6084  vmicrdv - ok
12:11:51.0309 6084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
12:11:51.0320 6084  vmicshutdown - ok
12:11:51.0337 6084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\Windows\System32\ICSvc.dll
12:11:51.0345 6084  vmictimesync - ok
12:11:51.0362 6084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\Windows\System32\ICSvc.dll
12:11:51.0371 6084  vmicvss - ok
12:11:51.0418 6084  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:11:51.0421 6084  volmgr - ok
12:11:51.0442 6084  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:11:51.0458 6084  volmgrx - ok
12:11:51.0490 6084  [ 78A5BBA3819FFFC62FFEC3E2220D102D ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:11:51.0500 6084  volsnap - ok
12:11:51.0523 6084  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\Windows\System32\drivers\vpci.sys
12:11:51.0548 6084  vpci - ok
12:11:51.0606 6084  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:11:51.0612 6084  vsmraid - ok
12:11:51.0714 6084  [ D0C69E44BC1E1D4AD290FD84104623D8 ] VSS             C:\Windows\system32\vssvc.exe
12:11:51.0843 6084  VSS - ok
12:11:51.0876 6084  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
12:11:51.0893 6084  VSTXRAID - ok
12:11:52.0163 6084  [ 654D358F8DC18167F31A01166B4CA9D6 ] vToolbarUpdater15.3.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe
12:11:52.0208 6084  vToolbarUpdater15.3.0 - ok
12:11:52.0247 6084  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:11:52.0279 6084  vwifibus - ok
12:11:52.0317 6084  [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:11:52.0321 6084  vwififlt - ok
12:11:52.0356 6084  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
12:11:52.0380 6084  vwifimp - ok
12:11:52.0424 6084  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\Windows\system32\w32time.dll
12:11:52.0451 6084  W32Time - ok
12:11:52.0481 6084  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
12:11:52.0491 6084  WacomPen - ok
12:11:52.0544 6084  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:11:52.0550 6084  Wanarp - ok
12:11:52.0563 6084  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:11:52.0566 6084  Wanarpv6 - ok
12:11:52.0656 6084  [ 901CC968412F8155B08D7ABE0171166A ] WAS             C:\Windows\system32\inetsrv\iisw3adm.dll
12:11:52.0674 6084  WAS - ok
12:11:52.0796 6084  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\Windows\system32\wbengine.exe
12:11:52.0896 6084  wbengine - ok
12:11:52.0924 6084  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:11:52.0941 6084  WbioSrvc - ok
12:11:52.0987 6084  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
12:11:53.0002 6084  Wcmsvc - ok
12:11:53.0066 6084  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:11:53.0138 6084  wcncsvc - ok
12:11:53.0208 6084  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:11:53.0275 6084  WcsPlugInService - ok
12:11:53.0337 6084  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\Windows\system32\drivers\wd.sys
12:11:53.0341 6084  Wd - ok
12:11:53.0394 6084  [ 6F4B5DDDC3B86091E94BC47347A78AF7 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
12:11:53.0406 6084  WdBoot - ok
12:11:53.0483 6084  [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:11:53.0658 6084  Wdf01000 - ok
12:11:53.0716 6084  [ 99D404A9A0AFC4734E014EBEBAC13F8F ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
12:11:53.0727 6084  WdFilter - ok
12:11:53.0770 6084  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:11:53.0781 6084  WdiServiceHost - ok
12:11:53.0804 6084  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:11:53.0813 6084  WdiSystemHost - ok
12:11:53.0858 6084  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient       C:\Windows\System32\webclnt.dll
12:11:53.0876 6084  WebClient - ok
12:11:53.0910 6084  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:11:53.0938 6084  Wecsvc - ok
12:11:53.0968 6084  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:11:53.0982 6084  wercplsupport - ok
12:11:54.0051 6084  [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:11:54.0079 6084  WerSvc - ok
12:11:54.0140 6084  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
12:11:54.0150 6084  WFPLWFS - ok
12:11:54.0211 6084  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\Windows\System32\wiarpc.dll
12:11:54.0226 6084  WiaRpc - ok
12:11:54.0250 6084  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:11:54.0261 6084  WIMMount - ok
12:11:54.0315 6084  WinDefend - ok
12:11:54.0404 6084  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
12:11:54.0447 6084  WinHttpAutoProxySvc - ok
12:11:54.0559 6084  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:11:54.0574 6084  Winmgmt - ok
12:11:54.0739 6084  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\Windows\system32\WsmSvc.dll
12:11:54.0846 6084  WinRM - ok
12:11:54.0920 6084  [ BB20956C424531003F7FA6CD36F11D5D ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
12:11:54.0969 6084  WinUSB - ok
12:11:55.0028 6084  [ DAF801153E8F33E13AB278332250D78A ] WirelessButtonDriver C:\Windows\System32\drivers\WirelessButtonDriver64.sys
12:11:55.0038 6084  WirelessButtonDriver - ok
12:11:55.0140 6084  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\Windows\System32\wlansvc.dll
12:11:55.0201 6084  WlanSvc - ok
12:11:55.0293 6084  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\Windows\system32\wlidsvc.dll
12:11:55.0364 6084  wlidsvc - ok
12:11:55.0411 6084  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
12:11:55.0427 6084  WmiAcpi - ok
12:11:55.0521 6084  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:11:55.0539 6084  wmiApSrv - ok
12:11:55.0592 6084  WMPNetworkSvc - ok
12:11:55.0732 6084  [ 83B6CA03C846FCD47F9883D77D1EB27B ] WMZuneComm      C:\Program Files\Zune\WMZuneComm.exe
12:11:55.0758 6084  WMZuneComm - ok
12:11:55.0823 6084  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
12:11:55.0854 6084  wpcfltr - ok
12:11:55.0915 6084  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:11:55.0950 6084  WPCSvc - ok
12:11:56.0040 6084  [ 3013658A4D327854BEEC4A08D9655194 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:11:56.0062 6084  WPDBusEnum - ok
12:11:56.0088 6084  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
12:11:56.0105 6084  WpdUpFltr - ok
12:11:56.0162 6084  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:11:56.0192 6084  ws2ifsl - ok
12:11:56.0244 6084  [ 012CFE7F0F95266F554EE3B91EE2128A ] wscsvc          C:\Windows\System32\wscsvc.dll
12:11:56.0266 6084  wscsvc - ok
12:11:56.0279 6084  WSearch - ok
12:11:56.0406 6084  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService       C:\Windows\System32\WSService.dll
12:11:56.0480 6084  WSService - ok
12:11:56.0645 6084  [ BE302BABE45EC05995F8DC66E37BBB3D ] wuauserv        C:\Windows\system32\wuaueng.dll
12:11:56.0729 6084  wuauserv - ok
12:11:56.0774 6084  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:11:56.0783 6084  WudfPf - ok
12:11:56.0816 6084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
12:11:56.0823 6084  WUDFRd - ok
12:11:56.0841 6084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys
12:11:56.0846 6084  WUDFSensorLP - ok
12:11:56.0881 6084  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:11:56.0894 6084  wudfsvc - ok
12:11:56.0913 6084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
12:11:56.0918 6084  WUDFWpdFs - ok
12:11:56.0933 6084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
12:11:56.0937 6084  WUDFWpdMtp - ok
12:11:57.0016 6084  [ FBB9B00D7A5756B0AA8E10BF7619E604 ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:11:57.0168 6084  WwanSvc - ok
12:11:57.0586 6084  [ 67B787C34FB2888D01B130AE007042D8 ] ZuneNetworkSvc  C:\Program Files\Zune\ZuneNss.exe
12:11:57.0823 6084  ZuneNetworkSvc - ok
12:11:57.0912 6084  [ 4D89FC1C20CF655739EFAC5DA81A67BC ] ZuneWlanCfgSvc  C:\Program Files\Zune\ZuneWlanCfgSvc.exe
12:11:57.0930 6084  ZuneWlanCfgSvc - ok
12:11:57.0986 6084  ================ Scan global ===============================
12:11:58.0045 6084  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
12:11:58.0115 6084  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
12:11:58.0179 6084  [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
12:11:58.0279 6084  [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
12:11:58.0309 6084  [Global] - ok
12:11:58.0311 6084  ================ Scan MBR ==================================
12:11:58.0330 6084  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:11:58.0451 6084  \Device\Harddisk0\DR0 - ok
12:11:58.0453 6084  ================ Scan VBR ==================================
12:11:58.0572 6084  [ A31216A39E9BAEE05BE451F724D5753A ] \Device\Harddisk0\DR0\Partition1
12:11:58.0590 6084  \Device\Harddisk0\DR0\Partition1 - ok
12:11:58.0625 6084  [ 26BD4D92C74FD0826D4B0E6C60FA1C90 ] \Device\Harddisk0\DR0\Partition2
12:11:58.0643 6084  \Device\Harddisk0\DR0\Partition2 - ok
12:11:58.0672 6084  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
12:11:58.0688 6084  \Device\Harddisk0\DR0\Partition3 - ok
12:11:58.0728 6084  [ 7DCC96F6E18CFFB3C3C58843DE24156A ] \Device\Harddisk0\DR0\Partition4
12:11:58.0753 6084  \Device\Harddisk0\DR0\Partition4 - ok
12:11:58.0786 6084  [ 377CF9EB0CFA13722712BE92BE6970EA ] \Device\Harddisk0\DR0\Partition5
12:11:58.0810 6084  \Device\Harddisk0\DR0\Partition5 - ok
12:11:58.0812 6084  ============================================================
12:11:58.0812 6084  Scan finished
12:11:58.0812 6084  ============================================================
12:11:58.0855 5184  Detected object count: 0
12:11:58.0855 5184  Actual detected object count: 0
 

 

 

AdwCleaner Results
 
# AdwCleaner v2.306 - Logfile created 07/27/2013 at 12:21:49
# Updated 19/07/2013 by Xplode
# Operating system : Windows 8  (64 bits)
# User : Crystal - FLAMEOFSUZAKU
# Boot Mode : Normal
# Running from : C:\Users\Crystal\Downloads\adwcleaner.exe
# Option [Search]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Folder Found : C:\Program Files (x86)\Common Files\AVG Secure Search
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16537
 
[OK] Registry is clean.
 
-\\ Google Chrome v28.0.1500.72
 
File : C:\Users\Crystal\AppData\Local\Google\Chrome\User Data\Default
 
\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [12917 octets] - [24/07/2013 18:30:17]
AdwCleaner[R2].txt - [12978 octets] - [24/07/2013 18:31:39]
AdwCleaner[R3].txt - [835 octets] - [27/07/2013 12:21:49]
AdwCleaner[S1].txt - [12950 octets] - [24/07/2013 18:32:09]
 
########## EOF - C:\AdwCleaner[R3].txt - [955 octets] ##########
 
 
 
 

ESET Scan log

 

C:\Users\Crystal\AppData\Local\Temp\hsbing_717_active.exe multiple threats cleaned by deleting - quarantined
C:\Users\Crystal\AppData\Local\Temp\Shortcut_sweetpacks_6262013.exe probably a variant of Win32/SweetIM.C application cleaned by deleting - quarantined
C:\Users\Crystal\AppData\Local\Temp\WSSetup.exe Win32/SweetIM.E application cleaned by deleting - quarantined


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:32 AM

Posted 28 July 2013 - 01:17 PM

Ok, good ...run these 2 now and see how it is.

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Empty your temp folders using TFC (Temporary File Cleaner)

  • >>>>>>>>>>>>>>>>>>>>>>
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

Edited by boopme, 28 July 2013 - 01:18 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 flameof_Suzaku

flameof_Suzaku
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 29 July 2013 - 08:21 PM

Completed TFC and rebooted as requested
 

 

 

 

JRT Results

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu
Version: 5.2.8 (07.29.2013:2)
OS: Windows 8 x64
Ran by Crystal on Mon 07/29/2013 at 19:42:47.32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 07/29/2013 at 19:54:41.58
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Edited by flameof_Suzaku, 29 July 2013 - 08:38 PM.


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:32 AM

Posted 29 July 2013 - 10:02 PM

Looks good to go.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 flameof_Suzaku

flameof_Suzaku
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 30 July 2013 - 09:30 PM

I am still getting the extra ads on certain sites.  Mainly amazon and facebook. There are several other sites but those are the two that are effected the most.  I have an adblocker that i downloaded from Chrome that catches atleast 3 when i go to the page and about 16 after 5 minutes on facebook.

 

I noticed on other computers that are not effected with viruses these ads come up but are not causing a problem.

 

Otherwise this has seemed to take care of the bulk of my problems.  Thanks for all the help.  My computer runs much better.



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:32 AM

Posted 30 July 2013 - 09:52 PM

Lets repost and get a deeper look as maybe I cannot see something.
Do steps 6,7 and 8.. Title it still get pop ups.

Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users