Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cannot Access Only One Website


  • Please log in to reply
22 replies to this topic

#1 KWK

KWK

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 21 August 2013 - 11:00 AM

I have a website with my ISP I have been having trouble connecting to for some time now. This seems to be the only website I am having trouble with. I call my ISP and they say there is nothing wrong and nothing they can do since they only provide the space. When I click my bookmark or the link from a google search, 99% of the time I get" page cannot be displayed". If I can see the home page, the links on the page do not work. I thought it might be my browser, but it happens with Slimbrowser, IE9/10 and Firefox. Simbrowser is my preferred browser.

 

I have tried solutions I found online for not being able to access some websites, but none have worked. This is on my desktop with a wired connection. I have done many virus and malware scans, but they do not solve this problem. I was using IE 9 because of problems with IE10, but recently updated to IE10 again because I was getting certificate varification warnings on 70% of websites even though they were all NOT out of date and my PC time was correct. Since updating to IE10 the certificate problem does not occur, but there are still other problems with IE10.

 

I cannot pinpoint when this problem started, but it might have been after my ISP replaced the modem with a Motorola Surf Board.

 

On the other hand, I can access my website normally from my laptop wirelessly on the same network. Later on though, I started getting  maleware warnings from Comodo about "Trojware JS.Agent.LF@302080121" and this pops up everytime I click on link on my website. I could not find much with a Google search on it. Someone also previously notified me they were getting a maleware warning as well and I had a friend check and there was no maleware warnings. I do not get any maleware warnings from my desktop using Symantic End Point.

The problem still occurs when the AV is disabled.

 

I do not know how maleware could be uploaded. I use a program called CuteSite Builder to create and update my website. It can no longer access the website to update.

 

 

Both PCs are up to date.

 

I hope someone can help.

 

ZZ


Edited by hamluis, 27 August 2013 - 11:59 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Chris Cosgrove

Chris Cosgrove

  • Moderator
  • 6,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:06:59 AM

Posted 21 August 2013 - 12:10 PM

This is just a thought, because I am not familiar with the software you use, but I operate a couple of web-sites for Clubs I am involved with.

 

Once I have generated the files I want to change, I use Ace FTP3 (free version) for the upload. In this I can see the files and folders currently on my host, and in the opposite panel the files and folders on my computer. I have the option of over-writing the host files or of deleting them and replacing them with my new ones. If there is a malware problem on your web-site, deleting your files before uploading the new ones might clear it.

 

On those occasions when you can get onto your site, have you checked any links to see if they do something they are not supposed to ?

 

Chris Cosgrove



#3 KWK

KWK
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 25 August 2013 - 10:15 PM

The CuteSite Builder is a program that like a word processor program can create the website. It also has publish capabilities. It's an all in one program, but does not show the files on the website. When it finishes publishing it askes if you want to visit the website. It is outdated, but was an affordable easy to use website building program.

 

When I can access the homepage on my desktop and click a link usually nothing happens. On the rare occasion a link works, none of the other links work after that and nothing happens when I click them. I don't see anything other behavior.

When I access the website on the laptop I can access all links but everytime a link is used or the page refreshed, the Comodo maleware warning pops up.

 

I installed Cutesite Builder on the laptop and tried to update the website in hope that might fix things, but there is errors and I think I need to contact the ISP to get it set up right.

 

 

PS. How do you set to be notified by emailed when there are new replies?. I set to follow the post.



#4 Chris Cosgrove

Chris Cosgrove

  • Moderator
  • 6,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:06:59 AM

Posted 26 August 2013 - 07:44 PM

Can you give us the URL for the web-site so I and others can have a look at it. I suspect the problem may be with your own computer since you say a laptop can access it, but it may not. But give us the URL.

 

As for your last question, to get e-mail notifications of replies to your post, just click the 'Follow this topic' button at the top of the page.

 

Chris Cosgrove



#5 KWK

KWK
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 27 August 2013 - 10:59 AM

I believe it is a problem with my PC too, but what? I've tried all the advice from google searches on the subject of "Cannot access some websites" and "Page cannot be displayed".

 

I had another friend check the website and he says there is no problems and no malware warnings.

 

 

Here is the website:

 Mod Edit:  Removed dangerous link with malware - Hamluis.


Edited by hamluis, 27 August 2013 - 11:50 AM.


#6 Anshad Edavana

Anshad Edavana

  • Members
  • 2,805 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:29 AM

Posted 27 August 2013 - 11:07 AM

Hi

 

I tried the link you posted and immediately got a " danger, malware ahead" message from Google. If you are the owner of that site, contact Google for a resolution. Otherwise stay away from it.


Edited by Anshad Edavana, 27 August 2013 - 11:09 AM.


#7 hamluis

hamluis

    Moderator


  • Moderator
  • 55,896 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:59 AM

Posted 27 August 2013 - 12:00 PM

Ditto, I removed link and moved topic to Am I Infected forum.

 

Louis



#8 KWK

KWK
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 27 August 2013 - 04:27 PM

The website only contains text and links. I don't know how it can be infected. Why don't I get any warnings on my desktop?

I am the only one that updates the website with Cutesite Builder and never had a problem all these years until lately.

 

What do I do now?



#9 Chris Cosgrove

Chris Cosgrove

  • Moderator
  • 6,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:06:59 AM

Posted 27 August 2013 - 04:59 PM

Luis has moved this subject to the 'Am I infected?' section. Wait to be contacted then follow the instructions you will be given. If you don't understand an instruction, post back and say so. You will be helped.

 

Chris Cosgrove



#10 KWK

KWK
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 30 August 2013 - 04:03 PM

No one has replied and it's been 3 days....



#11 KWK

KWK
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 02 September 2013 - 11:46 AM

Still not getting any help......



#12 FXWG

FXWG

  • Members
  • 41 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:South byGod Georgia
  • Local time:01:59 AM

Posted 02 September 2013 - 01:47 PM

Hi KWK,

 

There is a sticky pinned to the top of this forum page called "Please post in this topic if you have not recieve help after three days". Here is the link -

 

http://www.bleepingcomputer.com/forums/t/400074/please-post-in-this-topic-if-you-have-not-received-help-after-three-days/

 

Since you already have replies posted next to your topic the mods may think that someone is already helping you. Also there are a lot of people on here looking for help, myself included, and it takes some time to get to everyone. I'm sure if you post in there someone will take care of you soon. Good luck with your problem



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:59 AM

Posted 05 September 2013 - 10:14 PM

Sorry we lost you.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • >>>
  • Last run ESET.
    • Hold down Control and click on this link to open ESET OnlineScan in a new window.
    • Click the esetonlinebtn.png button.
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
    • Check "YES, I accept the Terms of Use."
    • Click the Start button.
    • Accept any security warnings from your browser.
    • Under scan settings, check "Scan Archives" and "Remove found threats"
    • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    • When the scan completes, click List Threats
    • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    • Click the Back button.
    • Click the Finish button.
    • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 KWK

KWK
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 07 September 2013 - 10:00 AM

Sorry for the delay in posting the results. ESetScan took all day yesterday.

 

Minitool Box results.

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Ken (administrator) on 05-09-2013 at 23:02:51
Running from "C:\Users\Ken\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

#       ::1             localhost

========================= IP Configuration: ================================

NVIDIA nForce Networking Controller = Local Area Connection (Connected)
NVIDIA nForce Networking Controller = Local Area Connection 2 (Hardware not present)
Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter = Wireless Network Connection (Hardware not present)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Ken
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : eastlink.ca

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : eastlink.ca
   Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
   Physical Address. . . . . . . . . : 00-1E-8C-50-DF-C3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::d131:b2df:744b:ea62%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 24.129.235.121(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.252.0
   Lease Obtained. . . . . . . . . . : Thursday, September 05, 2013 10:49:54 PM
   Lease Expires . . . . . . . . . . : Friday, September 06, 2013 10:49:54 PM
   Default Gateway . . . . . . . . . : 24.129.232.1
   DHCP Server . . . . . . . . . . . : 24.207.0.172
   DHCPv6 IAID . . . . . . . . . . . : 234888844
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-E9-5F-91-00-1E-8C-50-DF-C3
   DNS Servers . . . . . . . . . . . : 64.178.142.10
                                       24.207.0.167
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{2531A2BB-A827-4DE1-A9A4-EB14349993A2}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.eastlink.ca:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cns06.eastlink.ca
Address:  64.178.142.10

Name:    google.com
Addresses:  2607:f8b0:400a:801::1005
   24.207.11.216
   24.207.11.251
   24.207.11.230
   24.207.11.208
   24.207.11.219
   24.207.11.234
   24.207.11.241
   24.207.11.240
   24.207.11.249
   24.207.11.229
   24.207.11.227
   24.207.11.238
   24.207.11.223
   24.207.11.245
   24.207.11.218
   24.207.11.212

Pinging google.com [24.207.11.230] with 32 bytes of data:
Reply from 24.207.11.230: bytes=32 time=15ms TTL=62
Reply from 24.207.11.230: bytes=32 time=14ms TTL=62

Ping statistics for 24.207.11.230:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 14ms, Maximum = 15ms, Average = 14ms
Server:  cns06.eastlink.ca
Address:  64.178.142.10

Name:    yahoo.com
Addresses:  206.190.36.45
   98.139.183.24
   98.138.253.109

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=151ms TTL=51
Reply from 98.139.183.24: bytes=32 time=106ms TTL=52

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 106ms, Maximum = 151ms, Average = 128ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...00 1e 8c 50 df c3 ......NVIDIA nForce Networking Controller
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     24.129.232.1   24.129.235.121     10
     24.129.232.0    255.255.252.0         On-link    24.129.235.121    266
   24.129.235.121  255.255.255.255         On-link    24.129.235.121    266
   24.129.235.255  255.255.255.255         On-link    24.129.235.121    266
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link    24.129.235.121    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link    24.129.235.121    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    266 fe80::/64                On-link
 10    266 fe80::d131:b2df:744b:ea62/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/04/2013 01:23:44 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@www.newegg.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (09/03/2013 01:14:03 PM) (Source: Symantec AntiVirus) (User: )
Description: Symantec Endpoint Protection has failed to load the latest virus definitions.

Error: (09/03/2013 01:02:55 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@kontera.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (09/02/2013 01:15:48 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@kontera.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (09/01/2013 00:50:04 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@quantserve.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/29/2013 00:48:52 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@m.webtrends.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/28/2013 00:51:37 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@quantserve.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/27/2013 01:41:31 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@2o7.net/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/27/2013 08:31:36 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-3411051719-2696836766-2334767640-1011.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {811a7414-0bc1-4b47-96ec-a6c4fd270777}

Error: (08/26/2013 03:04:30 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

System errors:
=============
Error: (09/05/2013 10:52:06 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (09/05/2013 10:52:06 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (09/05/2013 10:50:05 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (09/05/2013 10:49:56 PM) (Source: Microsoft-Windows-TaskScheduler) (User: NT AUTHORITY)
Description: Task Scheduler service failed to load tasks at service startup. Additional Data: Error Value: 2147549183.

Error: (09/05/2013 01:53:36 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer VIRTUALXP-19420
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{BAC2D832-B320-476E-B190-B722EC8A4836}.
The master browser is stopping or an election is being forced.

Error: (09/05/2013 01:17:42 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer VIRTUALXP-19420
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{BAC2D832-B320-476E-B190-B722EC8A4836}.
The master browser is stopping or an election is being forced.

Error: (09/05/2013 00:41:44 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer VIRTUALXP-19420
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{BAC2D832-B320-476E-B190-B722EC8A4836}.
The master browser is stopping or an election is being forced.

Error: (09/05/2013 00:17:45 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer VIRTUALXP-19420
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{BAC2D832-B320-476E-B190-B722EC8A4836}.
The master browser is stopping or an election is being forced.

Error: (09/05/2013 11:41:44 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer VIRTUALXP-19420
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{BAC2D832-B320-476E-B190-B722EC8A4836}.
The master browser is stopping or an election is being forced.

Error: (09/05/2013 11:05:41 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer VIRTUALXP-19420
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{BAC2D832-B320-476E-B190-B722EC8A4836}.
The master browser is stopping or an election is being forced.

Microsoft Office Sessions:
=========================
Error: (09/04/2013 01:23:44 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@www.newegg.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (09/03/2013 01:14:03 PM) (Source: Symantec AntiVirus)(User: )
Description: Symantec Endpoint Protection has failed to load the latest virus definitions.

Error: (09/03/2013 01:02:55 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@kontera.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (09/02/2013 01:15:48 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@kontera.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (09/01/2013 00:50:04 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@quantserve.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/29/2013 00:48:52 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@m.webtrends.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/28/2013 00:51:37 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@quantserve.com/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/27/2013 01:41:31 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Tracking Cookies in File: Cookie:ken@2o7.net/ by: Scheduled scan.  Action: Delete succeeded.  Action Description: The file was deleted successfully.

Error: (08/27/2013 08:31:36 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-3411051719-2696836766-2334767640-1011.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {811a7414-0bc1-4b47-96ec-a6c4fd270777}

Error: (08/26/2013 03:04:30 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*d:\program files (x86)\spybot - search & destroy\DelZip179.dlld:\program files (x86)\spybot - search & destroy\DelZip179.dll8

CodeIntegrity Errors:
===================================
  Date: 2013-02-28 09:43:27.465
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-28 09:26:57.140
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 22:09:15.367
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 21:15:08.797
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 20:54:58.756
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 18:45:09.733
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 18:41:40.508
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 18:37:15.336
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 18:25:42.708
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-27 17:22:14.486
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sysfer.dll because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

µTorrent (Version: 3.3.0.29625)
A2A Piper J3 Cub
A2A Piper J3 Cub Accusim
ACDSee
Ad-Aware Antivirus (Version: 10.4.49.4168)
Ad-Aware Browsing Protection (Version: 1.0.1.82)
Adobe AIR (Version: 3.1.0.4880)
Adobe Community Help (Version: 3.4.980)
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Adobe Photoshop CS5.1 (Version: 12.1)
Adobe Reader 9.5.5 (Version: 9.5.5)
Akamai NetSession Interface
Akamai NetSession Interface Service
Apple Software Update (Version: 2.1.3.127)
Applian FLV and Media Player 3.1.1.12 (Version: 3.1.1.12)
Audacity 1.3.12 (Unicode)
Autodesk Design Review 2012 (Version: 12.0.0.98)
Autodesk Design Review Browser Add-on v1.2  (Version: 1.2.0)
Belkin Setup and Router Monitor
Blender (Version: 2.68a)
CCleaner (Version: 4.05)
CPUID CPU-Z 1.59
Creative ALchemy (Version: 1.41)
Creative Audio Console (Version: 1.33)
Creative MediaSource (Version: 3.00)
Creative MediaSource 5 (Version: 5.26)
Creative Software AutoUpdate (Version: 1.40)
Creative WaveStudio 7 (Version: 7.12)
CuteSITE Builder (Version: 4.0)
D3DX10 (Version: 15.4.2368.0902)
Download and Sa (Version: )
Driver Sweeper 2.1.0
DWG TrueView 2012 (Version: 18.2.51.0)
eMachineShop
eReg (Version: 1.20.138.34)
Everything 1.2.1.371
EZdok Camera for Microsoft Flight Simulator X
Fairchild FC-2W2 Bryd "Stars and Stripes"
Firestorm-Release (remove only) (Version: 4.4.2.34167)
FlashPeak SlimBoat (Version: 1.1.32)
FlashPeak SlimBrowser (Version: 7.00.045)
Flight Replicas Super Cub - Complete for FSX
Foxit Reader (Version: 6.0.6.722)
Free Alarm Clock 2.5.0 (Version: 2.5)
Free YouTube Downloader 3.5.162
Freemake Video Converter version 4.0.4 (Version: 4.0.4)
FSGenesis Cordillera Canada 38.2m Terrain
FSGenesis Grand Canyon 10m Terrain
FSGenesis Hawaiian Islands 10m Terrain & Landclass
FSGenesis Yukon Territory 38.2m Terrain
GIMP 2.8.2 (Version: 2.8.2)
GLIntercept 1.1.0 (Version: 1.1.0)
Google Earth Plug-in (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.153)
HP PrecisionScan LTX
Image Resizer Powertoy Clone for Windows (64 bit) (Version: 2.1)
ImgBurn (Version: 2.5.7.0)
Intel® IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (Version: 5.3.4.087)
Internet Explorer (Enable DEP)
jass-magic-1.1.3 (remove only)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 26 (64-bit) (Version: 6.0.260)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Logitech Gaming Software 5.10 (Version: 5.10.127)
Logitech Webcam Software Driver Package (Version: 12.10.1110)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Flight Simulator 2004 A Century of Flight (Version: 9.0)
Microsoft Flight Simulator X (Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 1 (Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 2 (Version: 10.0.61472.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
Mozilla Firefox 20.0.1 (x86 en-US) (Version: 20.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MysticThumbs (Version: 1.9.8)
NVIDIA 3D Vision Controller Driver 314.22 (Version: 314.22)
NVIDIA 3D Vision Driver 314.22 (Version: 314.22)
NVIDIA Control Panel 314.22 (Version: 314.22)
NVIDIA DDS Utilities (Version: 1.0)
NVIDIA Graphics Driver 314.22 (Version: 314.22)
NVIDIA Install Application (Version: 2.1002.115.743)
NVIDIA PhysX (Version: 9.12.1031)
NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1422)
NVIDIA Update 1.12.12 (Version: 1.12.12)
NVIDIA Update Components (Version: 1.12.12)
OpenAL
PDF Settings CS5 (Version: 10.0)
Pdf995
PhoenixRC (Version: 3.0j)
RealFlight G5 (Version: 5.00.032)
REFLEX (Version: 5.03.0)
Revo Uninstaller 1.94 (Version: 1.94)
Rise of Flight
Sculptris Alpha 6 (Version: 0.6)
Singularity (remove only)
SketchUp 2013 (Version: 13.0.4812)
Skype™ 6.6 (Version: 6.6.106)
SLiteChat for Windows (Version: 1.6.3)
Spybot - Search & Destroy (Version: 1.6.2)
SpyHunter (Version: 4.13.6.4253)
swMSM (Version: 12.0.0.1)
Symantec Endpoint Protection (Version: 12.1.2015.2015)
TeamSpeak 3 Client (Version: 3.0.11.1)
TechPowerUp GPU-Z
the model 'Bergfalke II/55' for REFLEX XTR, package version 8
the model 'CHK Thermik-Star' for REFLEX XTR, package version 16
the model 'Goldberg Piper Cub' for REFLEX XTR, package version
the model 'MDM-1 Fox' for REFLEX XTR, package version 13
the model 'V-173' for REFLEX XTR, package version 5
Tile Print
Tile Print Version 3
TreeSize Professional V5.5.5 (Version: 5.5.5)
Undelete 360
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Waterfox (Version: 15.0)
Winamp (Version: 5.65 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows XP Mode (Version: 1.3.7600.16423)
WinRAR archiver
WinZip 14.5 (Version: 14.5.9095)
World of Tanks v.0.7.3

========================= Memory info: ===================================

Percentage of memory in use: 21%
Total physical RAM: 8190.49 MB
Available physical RAM: 6459.92 MB
Total Pagefile: 12282.68 MB
Available Pagefile: 10434.25 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.7 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:97.65 GB) (Free:19.52 GB) NTFS
2 Drive d: () (Fixed) (Total:292.97 GB) (Free:41.86 GB) NTFS
3 Drive e: () (Fixed) (Total:292.97 GB) (Free:207.8 GB) NTFS
4 Drive f: () (Fixed) (Total:247.91 GB) (Free:247.81 GB) NTFS
6 Drive h: () (Fixed) (Total:29.29 GB) (Free:6.74 GB) NTFS
7 Drive i: (STORAGE PARTITION) (Fixed) (Total:119.75 GB) (Free:34.27 GB) NTFS

========================= Users: ========================================

User accounts for \\KEN

Administrator            Guest                    Ken                     
UpdatusUser             

**** End of log ****



DTSSKiller Results

 

23:04:21.0466 0x076c  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
23:04:22.0015 0x076c  ============================================================
23:04:22.0015 0x076c  Current date / time: 2013/09/05 23:04:22.0015
23:04:22.0015 0x076c  SystemInfo:
23:04:22.0015 0x076c 
23:04:22.0015 0x076c  OS Version: 6.1.7601 ServicePack: 1.0
23:04:22.0015 0x076c  Product type: Workstation
23:04:22.0016 0x076c  ComputerName: KEN
23:04:22.0016 0x076c  UserName: Ken
23:04:22.0016 0x076c  Windows directory: C:\Windows
23:04:22.0016 0x076c  System windows directory: C:\Windows
23:04:22.0016 0x076c  Running under WOW64
23:04:22.0016 0x076c  Processor architecture: Intel x64
23:04:22.0016 0x076c  Number of processors: 2
23:04:22.0016 0x076c  Page size: 0x1000
23:04:22.0016 0x076c  Boot type: Normal boot
23:04:22.0016 0x076c  ============================================================
23:04:23.0397 0x076c  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
23:04:23.0404 0x076c  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:04:23.0409 0x076c  ============================================================
23:04:23.0409 0x076c  \Device\Harddisk0\DR0:
23:04:23.0410 0x076c  MBR partitions:
23:04:23.0410 0x076c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A962B1
23:04:23.0410 0x076c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3A962F0, BlocksNum 0xEF82420
23:04:23.0410 0x076c  \Device\Harddisk1\DR1:
23:04:23.0410 0x076c  MBR partitions:
23:04:23.0410 0x076c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
23:04:23.0410 0x076c  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC34F2CC, BlocksNum 0x249F1725
23:04:23.0410 0x076c  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x30D409F1, BlocksNum 0x249F1725
23:04:23.0410 0x076c  \Device\Harddisk1\DR1\Partition4: MBR, Type 0x7, StartLBA 0x55732116, BlocksNum 0x1EFD38AB
23:04:23.0410 0x076c  ============================================================
23:04:23.0417 0x076c  C: <-> \Device\Harddisk1\DR1\Partition1
23:04:23.0447 0x076c  D: <-> \Device\Harddisk1\DR1\Partition2
23:04:23.0474 0x076c  E: <-> \Device\Harddisk1\DR1\Partition3
23:04:23.0498 0x076c  F: <-> \Device\Harddisk1\DR1\Partition4
23:04:23.0499 0x076c  H: <-> \Device\Harddisk0\DR0\Partition1
23:04:23.0522 0x076c  I: <-> \Device\Harddisk0\DR0\Partition2
23:04:23.0522 0x076c  ============================================================
23:04:23.0522 0x076c  Initialize success
23:04:23.0522 0x076c  ============================================================
23:04:26.0555 0x13dc  ============================================================
23:04:26.0555 0x13dc  Scan started
23:04:26.0555 0x13dc  Mode: Manual;
23:04:26.0555 0x13dc  ============================================================
23:04:27.0281 0x13dc  ================ Scan system memory ========================
23:04:27.0281 0x13dc  System memory - ok
23:04:27.0281 0x13dc  ================ Scan services =============================
23:04:27.0411 0x13dc  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:04:27.0414 0x13dc  1394ohci - ok
23:04:27.0428 0x13dc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:04:27.0432 0x13dc  ACPI - ok
23:04:27.0446 0x13dc  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:04:27.0447 0x13dc  AcpiPmi - ok
23:04:27.0534 0x13dc  [ A09A61CFDE15E5A67701EA812CE3F43F ] Ad-Aware Service D:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
23:04:27.0560 0x13dc  Ad-Aware Service - ok
23:04:27.0669 0x13dc  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:04:27.0682 0x13dc  AdobeFlashPlayerUpdateSvc - ok
23:04:27.0706 0x13dc  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
23:04:27.0711 0x13dc  adp94xx - ok
23:04:27.0730 0x13dc  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
23:04:27.0734 0x13dc  adpahci - ok
23:04:27.0746 0x13dc  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
23:04:27.0748 0x13dc  adpu320 - ok
23:04:27.0766 0x13dc  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:04:27.0767 0x13dc  AeLookupSvc - ok
23:04:27.0821 0x13dc  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
23:04:27.0825 0x13dc  AFD - ok
23:04:27.0916 0x13dc  [ 7E077309910CE334C3B2B7B8665A55C4 ] AffinegyService C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
23:04:27.0922 0x13dc  AffinegyService - ok
23:04:27.0952 0x13dc  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
23:04:27.0954 0x13dc  agp440 - ok
23:04:28.0100 0x13dc  [ BBE9054FDADC8D49D29C5DA4FB84A803 ] Akamai          c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll
23:04:28.0101 0x13dc  Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll. md5: BBE9054FDADC8D49D29C5DA4FB84A803
23:04:28.0109 0x13dc  Akamai ( HiddenFile.Multi.Generic ) - warning
23:04:28.0109 0x13dc  Akamai - detected HiddenFile.Multi.Generic (1)
23:04:28.0123 0x13dc  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
23:04:28.0131 0x13dc  ALG - ok
23:04:28.0141 0x13dc  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:04:28.0142 0x13dc  aliide - ok
23:04:28.0154 0x13dc  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
23:04:28.0155 0x13dc  amdide - ok
23:04:28.0170 0x13dc  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
23:04:28.0171 0x13dc  AmdK8 - ok
23:04:28.0196 0x13dc  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
23:04:28.0198 0x13dc  AmdPPM - ok
23:04:28.0237 0x13dc  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:04:28.0239 0x13dc  amdsata - ok
23:04:28.0250 0x13dc  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
23:04:28.0253 0x13dc  amdsbs - ok
23:04:28.0266 0x13dc  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:04:28.0267 0x13dc  amdxata - ok
23:04:28.0290 0x13dc  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
23:04:28.0292 0x13dc  AppID - ok
23:04:28.0303 0x13dc  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:04:28.0305 0x13dc  AppIDSvc - ok
23:04:28.0342 0x13dc  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
23:04:28.0344 0x13dc  Appinfo - ok
23:04:28.0387 0x13dc  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
23:04:28.0391 0x13dc  AppMgmt - ok
23:04:28.0439 0x13dc  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
23:04:28.0471 0x13dc  arc - ok
23:04:28.0538 0x13dc  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
23:04:28.0571 0x13dc  arcsas - ok
23:04:28.0646 0x13dc  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:04:28.0648 0x13dc  aspnet_state - ok
23:04:28.0657 0x13dc  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:04:28.0658 0x13dc  AsyncMac - ok
23:04:28.0672 0x13dc  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
23:04:28.0672 0x13dc  atapi - ok
23:04:28.0705 0x13dc  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:04:28.0711 0x13dc  AudioEndpointBuilder - ok
23:04:28.0720 0x13dc  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:04:28.0724 0x13dc  AudioSrv - ok
23:04:28.0752 0x13dc  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:04:28.0755 0x13dc  AxInstSV - ok
23:04:28.0771 0x13dc  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
23:04:28.0776 0x13dc  b06bdrv - ok
23:04:28.0792 0x13dc  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:04:28.0796 0x13dc  b57nd60a - ok
23:04:28.0815 0x13dc  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:04:28.0817 0x13dc  BDESVC - ok
23:04:28.0848 0x13dc  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:04:28.0848 0x13dc  Beep - ok
23:04:28.0883 0x13dc  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
23:04:28.0889 0x13dc  BFE - ok
23:04:29.0026 0x13dc  [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64        C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\BASHDefs\20130822.011\BHDrvx64.sys
23:04:29.0033 0x13dc  BHDrvx64 - ok
23:04:29.0059 0x13dc  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
23:04:29.0068 0x13dc  BITS - ok
23:04:29.0090 0x13dc  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:04:29.0091 0x13dc  blbdrive - ok
23:04:29.0126 0x13dc  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:04:29.0128 0x13dc  bowser - ok
23:04:29.0138 0x13dc  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:04:29.0139 0x13dc  BrFiltLo - ok
23:04:29.0146 0x13dc  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:04:29.0147 0x13dc  BrFiltUp - ok
23:04:29.0182 0x13dc  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
23:04:29.0183 0x13dc  BridgeMP - ok
23:04:29.0231 0x13dc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
23:04:29.0232 0x13dc  Browser - ok
23:04:29.0250 0x13dc  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:04:29.0254 0x13dc  Brserid - ok
23:04:29.0266 0x13dc  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:04:29.0267 0x13dc  BrSerWdm - ok
23:04:29.0271 0x13dc  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:04:29.0272 0x13dc  BrUsbMdm - ok
23:04:29.0277 0x13dc  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:04:29.0278 0x13dc  BrUsbSer - ok
23:04:29.0294 0x13dc  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
23:04:29.0296 0x13dc  BTHMODEM - ok
23:04:29.0315 0x13dc  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
23:04:29.0321 0x13dc  bthserv - ok
23:04:29.0375 0x13dc  [ 248C952C82DF1E23775432774CBB20F1 ] ccSettings_{3771A34D-2132-48EA-A486-D62ECDF9D553} C:\Windows\system32\Drivers\SEP\0C0107DF\07DF.105\x64\ccSetx64.sys
23:04:29.0376 0x13dc  ccSettings_{3771A34D-2132-48EA-A486-D62ECDF9D553} - ok
23:04:29.0394 0x13dc  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:04:29.0397 0x13dc  cdfs - ok
23:04:29.0427 0x13dc  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:04:29.0429 0x13dc  cdrom - ok
23:04:29.0459 0x13dc  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
23:04:29.0461 0x13dc  CertPropSvc - ok
23:04:29.0470 0x13dc  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
23:04:29.0471 0x13dc  circlass - ok
23:04:29.0485 0x13dc  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
23:04:29.0489 0x13dc  CLFS - ok
23:04:29.0535 0x13dc  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:04:29.0586 0x13dc  clr_optimization_v2.0.50727_32 - ok
23:04:29.0624 0x13dc  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:04:29.0640 0x13dc  clr_optimization_v2.0.50727_64 - ok
23:04:29.0694 0x13dc  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:04:29.0709 0x13dc  clr_optimization_v4.0.30319_32 - ok
23:04:29.0721 0x13dc  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:04:29.0723 0x13dc  clr_optimization_v4.0.30319_64 - ok
23:04:29.0736 0x13dc  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
23:04:29.0737 0x13dc  CmBatt - ok
23:04:29.0746 0x13dc  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:04:29.0747 0x13dc  cmdide - ok
23:04:29.0812 0x13dc  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
23:04:29.0816 0x13dc  CNG - ok
23:04:29.0863 0x13dc  [ F38ACFF40E9EDC2B3476EDD724CEA4A0 ] COMMONFX        C:\Windows\system32\drivers\COMMONFX.SYS
23:04:29.0864 0x13dc  COMMONFX - ok
23:04:29.0888 0x13dc  [ F38ACFF40E9EDC2B3476EDD724CEA4A0 ] COMMONFX.SYS    C:\Windows\System32\drivers\COMMONFX.SYS
23:04:29.0889 0x13dc  COMMONFX.SYS - ok
23:04:29.0898 0x13dc  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
23:04:29.0899 0x13dc  Compbatt - ok
23:04:29.0907 0x13dc  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:04:29.0908 0x13dc  CompositeBus - ok
23:04:29.0913 0x13dc  COMSysApp - ok
23:04:29.0962 0x13dc  [ C08063F052308B6F5882482615387F30 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
23:04:29.0963 0x13dc  cpuz135 - ok
23:04:29.0977 0x13dc  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
23:04:29.0978 0x13dc  crcdisk - ok
23:04:30.0026 0x13dc  [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
23:04:30.0036 0x13dc  Creative ALchemy AL6 Licensing Service - ok
23:04:30.0068 0x13dc  [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
23:04:30.0077 0x13dc  Creative Audio Engine Licensing Service - ok
23:04:30.0149 0x13dc  [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\Windows\SysWOW64\CTsvcCDA.EXE
23:04:30.0150 0x13dc  Creative Service for CDROM Access - ok
23:04:30.0178 0x13dc  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:04:30.0179 0x13dc  CryptSvc - ok
23:04:30.0218 0x13dc  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
23:04:30.0223 0x13dc  CSC - ok
23:04:30.0260 0x13dc  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
23:04:30.0266 0x13dc  CscService - ok
23:04:30.0295 0x13dc  [ 095C566746217CD1482EDE40A70D87D2 ] ctac32k         C:\Windows\system32\drivers\ctac32k.sys
23:04:30.0298 0x13dc  ctac32k - ok
23:04:30.0326 0x13dc  [ 157E2196FCCD002A2EDF3B06DF7B0C9A ] ctaud2k         C:\Windows\system32\drivers\ctaud2k.sys
23:04:30.0330 0x13dc  ctaud2k - ok
23:04:30.0348 0x13dc  [ 17979EE857E930CBFDF24A12E89D77A1 ] CTAUDFX         C:\Windows\system32\drivers\CTAUDFX.SYS
23:04:30.0355 0x13dc  CTAUDFX - ok
23:04:30.0366 0x13dc  [ 17979EE857E930CBFDF24A12E89D77A1 ] CTAUDFX.SYS     C:\Windows\System32\drivers\CTAUDFX.SYS
23:04:30.0370 0x13dc  CTAUDFX.SYS - ok
23:04:30.0459 0x13dc  [ 5CE3D0E1D1B3832EE052CFC442EEE0FA ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
23:04:30.0477 0x13dc  CTAudSvcService - ok
23:04:30.0492 0x13dc  [ FE3EAE37536C02D087E5C5D339663779 ] CTERFXFX        C:\Windows\system32\drivers\CTERFXFX.SYS
23:04:30.0494 0x13dc  CTERFXFX - ok
23:04:30.0500 0x13dc  [ FE3EAE37536C02D087E5C5D339663779 ] CTERFXFX.SYS    C:\Windows\System32\drivers\CTERFXFX.SYS
23:04:30.0501 0x13dc  CTERFXFX.SYS - ok
23:04:30.0514 0x13dc  [ 4E4FDAB4A7CF5AF56E3FA1FE35E8AD3C ] ctprxy2k        C:\Windows\system32\drivers\ctprxy2k.sys
23:04:30.0514 0x13dc  ctprxy2k - ok
23:04:30.0540 0x13dc  [ 4A7DE2E30B2B9253933A157401EC76D5 ] CTSBLFX         C:\Windows\system32\drivers\CTSBLFX.SYS
23:04:30.0547 0x13dc  CTSBLFX - ok
23:04:30.0567 0x13dc  [ 4A7DE2E30B2B9253933A157401EC76D5 ] CTSBLFX.SYS     C:\Windows\System32\drivers\CTSBLFX.SYS
23:04:30.0571 0x13dc  CTSBLFX.SYS - ok
23:04:30.0584 0x13dc  [ 065ADE032A044D518AB1407D3586B7D5 ] ctsfm2k         C:\Windows\system32\drivers\ctsfm2k.sys
23:04:30.0586 0x13dc  ctsfm2k - ok
23:04:30.0629 0x13dc  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:04:30.0635 0x13dc  DcomLaunch - ok
23:04:30.0654 0x13dc  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
23:04:30.0657 0x13dc  defragsvc - ok
23:04:30.0720 0x13dc  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:04:30.0721 0x13dc  DfsC - ok
23:04:30.0738 0x13dc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:04:30.0741 0x13dc  Dhcp - ok
23:04:30.0754 0x13dc  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
23:04:30.0755 0x13dc  discache - ok
23:04:30.0771 0x13dc  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
23:04:30.0773 0x13dc  Disk - ok
23:04:30.0809 0x13dc  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:04:30.0811 0x13dc  Dnscache - ok
23:04:30.0839 0x13dc  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:04:30.0851 0x13dc  dot3svc - ok
23:04:30.0862 0x13dc  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
23:04:30.0863 0x13dc  DPS - ok
23:04:30.0884 0x13dc  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:04:30.0885 0x13dc  drmkaud - ok
23:04:30.0934 0x13dc  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:04:30.0939 0x13dc  DXGKrnl - ok
23:04:30.0962 0x13dc  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
23:04:30.0964 0x13dc  EapHost - ok
23:04:31.0024 0x13dc  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
23:04:31.0076 0x13dc  ebdrv - ok
23:04:31.0133 0x13dc  [ A2DA3D8E0B336E13F7A155B5789B58CF ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
23:04:31.0135 0x13dc  eeCtrl - ok
23:04:31.0160 0x13dc  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
23:04:31.0162 0x13dc  EFS - ok
23:04:31.0195 0x13dc  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:04:31.0209 0x13dc  ehRecvr - ok
23:04:31.0235 0x13dc  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
23:04:31.0237 0x13dc  ehSched - ok
23:04:31.0251 0x13dc  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
23:04:31.0256 0x13dc  elxstor - ok
23:04:31.0280 0x13dc  [ F380FF5D6D80CECC6DBBC15569757613 ] emupia          C:\Windows\system32\drivers\emupia2k.sys
23:04:31.0281 0x13dc  emupia - ok
23:04:31.0302 0x13dc  [ 23C3061D2F7F8BCB6140A098447035B4 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
23:04:31.0303 0x13dc  EraserUtilRebootDrv - ok
23:04:31.0333 0x13dc  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:04:31.0334 0x13dc  ErrDev - ok
23:04:31.0401 0x13dc  [ DF96C3CD6AE15F6D0A6BCB70F9C1E88D ] esgiguard       C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys
23:04:31.0402 0x13dc  esgiguard - ok
23:04:31.0417 0x13dc  EsgScanner - ok
23:04:31.0442 0x13dc  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
23:04:31.0445 0x13dc  EventSystem - ok
23:04:31.0464 0x13dc  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
23:04:31.0482 0x13dc  exfat - ok
23:04:31.0505 0x13dc  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:04:31.0520 0x13dc  fastfat - ok
23:04:31.0560 0x13dc  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
23:04:31.0567 0x13dc  Fax - ok
23:04:31.0588 0x13dc  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
23:04:31.0589 0x13dc  fdc - ok
23:04:31.0602 0x13dc  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
23:04:31.0603 0x13dc  fdPHost - ok
23:04:31.0615 0x13dc  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:04:31.0616 0x13dc  FDResPub - ok
23:04:31.0639 0x13dc  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:04:31.0640 0x13dc  FileInfo - ok
23:04:31.0653 0x13dc  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:04:31.0654 0x13dc  Filetrace - ok
23:04:31.0662 0x13dc  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
23:04:31.0663 0x13dc  flpydisk - ok
23:04:31.0701 0x13dc  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:04:31.0704 0x13dc  FltMgr - ok
23:04:31.0753 0x13dc  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
23:04:31.0764 0x13dc  FontCache - ok
23:04:31.0807 0x13dc  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:04:31.0809 0x13dc  FontCache3.0.0.0 - ok
23:04:31.0819 0x13dc  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:04:31.0821 0x13dc  FsDepends - ok
23:04:31.0856 0x13dc  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:04:31.0857 0x13dc  Fs_Rec - ok
23:04:31.0887 0x13dc  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:04:31.0889 0x13dc  fvevol - ok
23:04:31.0899 0x13dc  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
23:04:31.0901 0x13dc  gagp30kx - ok
23:04:31.0934 0x13dc  [ 14908F4F9005C29DE8F5587E271390EE ] gfibto          C:\Windows\system32\drivers\gfibto.sys
23:04:31.0935 0x13dc  gfibto - ok
23:04:31.0965 0x13dc  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
23:04:31.0971 0x13dc  gpsvc - ok
23:04:32.0027 0x13dc  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:04:32.0028 0x13dc  gupdate - ok
23:04:32.0033 0x13dc  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:04:32.0034 0x13dc  gupdatem - ok
23:04:32.0073 0x13dc  [ 82B68F585110AE8500A6D23623AE1F74 ] ha10kx2k        C:\Windows\system32\drivers\ha10kx2k.sys
23:04:32.0080 0x13dc  ha10kx2k - ok
23:04:32.0102 0x13dc  [ 83F647F9ACE9192556F758E528024F68 ] hap16v2k        C:\Windows\system32\drivers\hap16v2k.sys
23:04:32.0104 0x13dc  hap16v2k - ok
23:04:32.0123 0x13dc  [ E815D29361DE89D24C8DBE3E5A7006C9 ] hap17v2k        C:\Windows\system32\drivers\hap17v2k.sys
23:04:32.0127 0x13dc  hap17v2k - ok
23:04:32.0143 0x13dc  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:04:32.0144 0x13dc  hcw85cir - ok
23:04:32.0197 0x13dc  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:04:32.0201 0x13dc  HdAudAddService - ok
23:04:32.0213 0x13dc  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:04:32.0214 0x13dc  HDAudBus - ok
23:04:32.0225 0x13dc  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
23:04:32.0227 0x13dc  HidBatt - ok
23:04:32.0242 0x13dc  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
23:04:32.0244 0x13dc  HidBth - ok
23:04:32.0261 0x13dc  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
23:04:32.0263 0x13dc  HidIr - ok
23:04:32.0285 0x13dc  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
23:04:32.0286 0x13dc  hidserv - ok
23:04:32.0291 0x13dc  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
23:04:32.0292 0x13dc  HidUsb - ok
23:04:32.0319 0x13dc  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:04:32.0321 0x13dc  hkmsvc - ok
23:04:32.0345 0x13dc  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:04:32.0348 0x13dc  HomeGroupListener - ok
23:04:32.0378 0x13dc  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:04:32.0381 0x13dc  HomeGroupProvider - ok
23:04:32.0390 0x13dc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:04:32.0392 0x13dc  HpSAMD - ok
23:04:32.0438 0x13dc  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:04:32.0446 0x13dc  HTTP - ok
23:04:32.0458 0x13dc  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:04:32.0459 0x13dc  hwpolicy - ok
23:04:32.0477 0x13dc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
23:04:32.0479 0x13dc  i8042prt - ok
23:04:32.0491 0x13dc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:04:32.0495 0x13dc  iaStorV - ok
23:04:32.0536 0x13dc  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:04:32.0552 0x13dc  IDriverT - ok
23:04:32.0587 0x13dc  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:04:32.0606 0x13dc  idsvc - ok
23:04:32.0767 0x13dc  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\IPSDefs\20130904.011\IDSvia64.sys
23:04:32.0770 0x13dc  IDSVia64 - ok
23:04:32.0786 0x13dc  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
23:04:32.0788 0x13dc  iirsp - ok
23:04:32.0810 0x13dc  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
23:04:32.0818 0x13dc  IKEEXT - ok
23:04:32.0836 0x13dc  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
23:04:32.0837 0x13dc  intelide - ok
23:04:32.0847 0x13dc  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:04:32.0849 0x13dc  intelppm - ok
23:04:32.0867 0x13dc  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:04:32.0885 0x13dc  IPBusEnum - ok
23:04:32.0924 0x13dc  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:04:32.0925 0x13dc  IpFilterDriver - ok
23:04:32.0968 0x13dc  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:04:32.0973 0x13dc  iphlpsvc - ok
23:04:32.0986 0x13dc  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:04:32.0988 0x13dc  IPMIDRV - ok
23:04:33.0004 0x13dc  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:04:33.0006 0x13dc  IPNAT - ok
23:04:33.0016 0x13dc  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:04:33.0018 0x13dc  IRENUM - ok
23:04:33.0031 0x13dc  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:04:33.0033 0x13dc  isapnp - ok
23:04:33.0046 0x13dc  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:04:33.0050 0x13dc  iScsiPrt - ok
23:04:33.0065 0x13dc  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
23:04:33.0066 0x13dc  kbdclass - ok
23:04:33.0081 0x13dc  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
23:04:33.0082 0x13dc  kbdhid - ok
23:04:33.0092 0x13dc  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
23:04:33.0093 0x13dc  KeyIso - ok
23:04:33.0133 0x13dc  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:04:33.0134 0x13dc  KSecDD - ok
23:04:33.0177 0x13dc  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:04:33.0179 0x13dc  KSecPkg - ok
23:04:33.0189 0x13dc  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:04:33.0190 0x13dc  ksthunk - ok
23:04:33.0221 0x13dc  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:04:33.0226 0x13dc  KtmRm - ok
23:04:33.0256 0x13dc  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
23:04:33.0259 0x13dc  LanmanServer - ok
23:04:33.0306 0x13dc  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:04:33.0308 0x13dc  LanmanWorkstation - ok
23:04:33.0355 0x13dc  [ A03B765FF67E58BA75333C7C8C0D7706 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
23:04:33.0356 0x13dc  LEqdUsb - ok
23:04:33.0377 0x13dc  [ 389588725D419476F365370BED4FFE5A ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
23:04:33.0378 0x13dc  LHidEqd - ok
23:04:33.0431 0x13dc  [ 1470EF17E02E82E4F43346DF9E9F11E1 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
23:04:33.0433 0x13dc  LHidFilt - ok
23:04:33.0442 0x13dc  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:04:33.0443 0x13dc  lltdio - ok
23:04:33.0469 0x13dc  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:04:33.0472 0x13dc  lltdsvc - ok
23:04:33.0488 0x13dc  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:04:33.0489 0x13dc  lmhosts - ok
23:04:33.0501 0x13dc  [ 12814AE119E959437BEA3110F81BD188 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
23:04:33.0503 0x13dc  LMouFilt - ok
23:04:33.0521 0x13dc  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
23:04:33.0523 0x13dc  LSI_FC - ok
23:04:33.0535 0x13dc  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
23:04:33.0537 0x13dc  LSI_SAS - ok
23:04:33.0548 0x13dc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:04:33.0550 0x13dc  LSI_SAS2 - ok
23:04:33.0562 0x13dc  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:04:33.0564 0x13dc  LSI_SCSI - ok
23:04:33.0576 0x13dc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
23:04:33.0579 0x13dc  luafv - ok
23:04:33.0736 0x13dc  [ B2085E335F2B57077B0CBADB6F1245CD ] lvpopf64        C:\Windows\system32\DRIVERS\lvpopf64.sys
23:04:33.0740 0x13dc  lvpopf64 - ok
23:04:33.0744 0x13dc  LVPr2M64 - ok
23:04:33.0779 0x13dc  [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
23:04:33.0783 0x13dc  LVRS64 - ok
23:04:33.0866 0x13dc  [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
23:04:33.0935 0x13dc  LVUVC64 - ok
23:04:33.0976 0x13dc  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:04:33.0990 0x13dc  Mcx2Svc - ok
23:04:34.0001 0x13dc  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
23:04:34.0002 0x13dc  megasas - ok
23:04:34.0021 0x13dc  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
23:04:34.0025 0x13dc  MegaSR - ok
23:04:34.0042 0x13dc  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
23:04:34.0043 0x13dc  MMCSS - ok
23:04:34.0051 0x13dc  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
23:04:34.0053 0x13dc  Modem - ok
23:04:34.0073 0x13dc  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:04:34.0074 0x13dc  monitor - ok
23:04:34.0089 0x13dc  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:04:34.0090 0x13dc  mouclass - ok
23:04:34.0102 0x13dc  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:04:34.0104 0x13dc  mouhid - ok
23:04:34.0135 0x13dc  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:04:34.0136 0x13dc  mountmgr - ok
23:04:34.0180 0x13dc  [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:04:34.0182 0x13dc  MozillaMaintenance - ok
23:04:34.0211 0x13dc  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:04:34.0214 0x13dc  mpio - ok
23:04:34.0240 0x13dc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:04:34.0242 0x13dc  mpsdrv - ok
23:04:34.0282 0x13dc  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:04:34.0290 0x13dc  MpsSvc - ok
23:04:34.0307 0x13dc  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:04:34.0309 0x13dc  MRxDAV - ok
23:04:34.0351 0x13dc  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:04:34.0353 0x13dc  mrxsmb - ok
23:04:34.0375 0x13dc  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:04:34.0378 0x13dc  mrxsmb10 - ok
23:04:34.0412 0x13dc  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:04:34.0414 0x13dc  mrxsmb20 - ok
23:04:34.0424 0x13dc  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:04:34.0426 0x13dc  msahci - ok
23:04:34.0443 0x13dc  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:04:34.0447 0x13dc  msdsm - ok
23:04:34.0459 0x13dc  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
23:04:34.0467 0x13dc  MSDTC - ok
23:04:34.0492 0x13dc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:04:34.0493 0x13dc  Msfs - ok
23:04:34.0505 0x13dc  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:04:34.0506 0x13dc  mshidkmdf - ok
23:04:34.0515 0x13dc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:04:34.0516 0x13dc  msisadrv - ok
23:04:34.0532 0x13dc  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:04:34.0546 0x13dc  MSiSCSI - ok
23:04:34.0550 0x13dc  msiserver - ok
23:04:34.0570 0x13dc  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:04:34.0571 0x13dc  MSKSSRV - ok
23:04:34.0582 0x13dc  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:04:34.0583 0x13dc  MSPCLOCK - ok
23:04:34.0597 0x13dc  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:04:34.0598 0x13dc  MSPQM - ok
23:04:34.0616 0x13dc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:04:34.0620 0x13dc  MsRPC - ok
23:04:34.0636 0x13dc  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:04:34.0637 0x13dc  mssmbios - ok
23:04:34.0645 0x13dc  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:04:34.0646 0x13dc  MSTEE - ok
23:04:34.0661 0x13dc  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
23:04:34.0663 0x13dc  MTConfig - ok
23:04:34.0687 0x13dc  [ 03B7145C889603537E9FFEABB1AD1089 ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
23:04:34.0688 0x13dc  MTsensor - ok
23:04:34.0698 0x13dc  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
23:04:34.0699 0x13dc  Mup - ok
23:04:34.0713 0x13dc  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
23:04:34.0719 0x13dc  napagent - ok
23:04:34.0739 0x13dc  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:04:34.0742 0x13dc  NativeWifiP - ok
23:04:34.0833 0x13dc  [ 702E07EC32F96ACDB873E9A5465D4401 ] NAVENG          C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\VirusDefs\20130905.002\ENG64.SYS
23:04:34.0834 0x13dc  NAVENG - ok
23:04:34.0871 0x13dc  [ 302EA314A1AF0D7CEF0A3D0195F79561 ] NAVEX15         C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Data\Definitions\VirusDefs\20130905.002\EX64.SYS
23:04:34.0881 0x13dc  NAVEX15 - ok
23:04:34.0923 0x13dc  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:04:34.0932 0x13dc  NDIS - ok
23:04:34.0945 0x13dc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:04:34.0947 0x13dc  NdisCap - ok
23:04:34.0963 0x13dc  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:04:34.0964 0x13dc  NdisTapi - ok
23:04:34.0998 0x13dc  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:04:34.0999 0x13dc  Ndisuio - ok
23:04:35.0013 0x13dc  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:04:35.0015 0x13dc  NdisWan - ok
23:04:35.0027 0x13dc  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:04:35.0029 0x13dc  NDProxy - ok
23:04:35.0033 0x13dc  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:04:35.0034 0x13dc  NetBIOS - ok
23:04:35.0055 0x13dc  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:04:35.0058 0x13dc  NetBT - ok
23:04:35.0073 0x13dc  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
23:04:35.0074 0x13dc  Netlogon - ok
23:04:35.0103 0x13dc  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
23:04:35.0107 0x13dc  Netman - ok
23:04:35.0168 0x13dc  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:04:35.0170 0x13dc  NetMsmqActivator - ok
23:04:35.0174 0x13dc  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:04:35.0175 0x13dc  NetPipeActivator - ok
23:04:35.0196 0x13dc  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
23:04:35.0201 0x13dc  netprofm - ok
23:04:35.0206 0x13dc  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:04:35.0207 0x13dc  NetTcpActivator - ok
23:04:35.0212 0x13dc  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:04:35.0213 0x13dc  NetTcpPortSharing - ok
23:04:35.0234 0x13dc  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
23:04:35.0236 0x13dc  nfrd960 - ok
23:04:35.0262 0x13dc  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:04:35.0265 0x13dc  NlaSvc - ok
23:04:35.0277 0x13dc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:04:35.0279 0x13dc  Npfs - ok
23:04:35.0292 0x13dc  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
23:04:35.0294 0x13dc  nsi - ok
23:04:35.0306 0x13dc  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:04:35.0307 0x13dc  nsiproxy - ok
23:04:35.0363 0x13dc  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:04:35.0389 0x13dc  Ntfs - ok
23:04:35.0402 0x13dc  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
23:04:35.0403 0x13dc  Null - ok
23:04:35.0430 0x13dc  [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
23:04:35.0434 0x13dc  NVENETFD - ok
23:04:35.0616 0x13dc  [ 4EE399576F76D38C04745DB739BBC8C7 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:04:35.0667 0x13dc  nvlddmkm - ok
23:04:35.0710 0x13dc  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:04:35.0712 0x13dc  nvraid - ok
23:04:35.0747 0x13dc  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:04:35.0748 0x13dc  nvstor - ok
23:04:35.0780 0x13dc  [ 7335C3D78A7746D76D37F6722CC4A466 ] nvsvc           C:\Windows\system32\nvvsvc.exe
23:04:35.0789 0x13dc  nvsvc - ok
23:04:35.0851 0x13dc  [ B7C53DA1C73FF39F4A6248643EFD979A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
23:04:35.0885 0x13dc  nvUpdatusService - ok
23:04:35.0922 0x13dc  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:04:35.0924 0x13dc  nv_agp - ok
23:04:35.0957 0x13dc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:04:35.0958 0x13dc  ohci1394 - ok
23:04:35.0994 0x13dc  [ 85EA378116E2C4385993BA5124536FFC ] ossrv           C:\Windows\system32\drivers\ctoss2k.sys
23:04:35.0995 0x13dc  ossrv - ok
23:04:36.0016 0x13dc  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:04:36.0020 0x13dc  p2pimsvc - ok
23:04:36.0036 0x13dc  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
23:04:36.0041 0x13dc  p2psvc - ok
23:04:36.0062 0x13dc  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
23:04:36.0064 0x13dc  Parport - ok
23:04:36.0096 0x13dc  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:04:36.0097 0x13dc  partmgr - ok
23:04:36.0108 0x13dc  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:04:36.0111 0x13dc  PcaSvc - ok
23:04:36.0125 0x13dc  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
23:04:36.0127 0x13dc  pci - ok
23:04:36.0134 0x13dc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
23:04:36.0135 0x13dc  pciide - ok
23:04:36.0153 0x13dc  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
23:04:36.0156 0x13dc  pcmcia - ok
23:04:36.0166 0x13dc  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:04:36.0167 0x13dc  pcw - ok
23:04:36.0194 0x13dc  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:04:36.0201 0x13dc  PEAUTH - ok
23:04:36.0227 0x13dc  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
23:04:36.0253 0x13dc  PeerDistSvc - ok
23:04:36.0311 0x13dc  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:04:36.0313 0x13dc  PerfHost - ok
23:04:36.0365 0x13dc  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
23:04:36.0408 0x13dc  pla - ok
23:04:36.0435 0x13dc  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:04:36.0440 0x13dc  PlugPlay - ok
23:04:36.0457 0x13dc  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:04:36.0459 0x13dc  PNRPAutoReg - ok
23:04:36.0474 0x13dc  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:04:36.0477 0x13dc  PNRPsvc - ok
23:04:36.0499 0x13dc  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:04:36.0503 0x13dc  PolicyAgent - ok
23:04:36.0524 0x13dc  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
23:04:36.0527 0x13dc  Power - ok
23:04:36.0558 0x13dc  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:04:36.0560 0x13dc  PptpMiniport - ok
23:04:36.0577 0x13dc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
23:04:36.0579 0x13dc  Processor - ok
23:04:36.0617 0x13dc  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:04:36.0620 0x13dc  ProfSvc - ok
23:04:36.0624 0x13dc  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:04:36.0625 0x13dc  ProtectedStorage - ok
23:04:36.0667 0x13dc  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:04:36.0669 0x13dc  Psched - ok
23:04:36.0700 0x13dc  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
23:04:36.0726 0x13dc  ql2300 - ok
23:04:36.0746 0x13dc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
23:04:36.0748 0x13dc  ql40xx - ok
23:04:36.0761 0x13dc  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
23:04:36.0775 0x13dc  QWAVE - ok
23:04:36.0786 0x13dc  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:04:36.0787 0x13dc  QWAVEdrv - ok
23:04:36.0798 0x13dc  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:04:36.0799 0x13dc  RasAcd - ok
23:04:36.0813 0x13dc  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:04:36.0814 0x13dc  RasAgileVpn - ok
23:04:36.0827 0x13dc  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
23:04:36.0838 0x13dc  RasAuto - ok
23:04:36.0850 0x13dc  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:04:36.0851 0x13dc  Rasl2tp - ok
23:04:36.0869 0x13dc  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
23:04:36.0873 0x13dc  RasMan - ok
23:04:36.0888 0x13dc  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:04:36.0889 0x13dc  RasPppoe - ok
23:04:36.0903 0x13dc  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:04:36.0905 0x13dc  RasSstp - ok
23:04:36.0943 0x13dc  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:04:36.0946 0x13dc  rdbss - ok
23:04:36.0958 0x13dc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
23:04:36.0959 0x13dc  rdpbus - ok
23:04:36.0972 0x13dc  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:04:36.0973 0x13dc  RDPCDD - ok
23:04:37.0013 0x13dc  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
23:04:37.0016 0x13dc  RDPDR - ok
23:04:37.0025 0x13dc  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:04:37.0026 0x13dc  RDPENCDD - ok
23:04:37.0035 0x13dc  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:04:37.0036 0x13dc  RDPREFMP - ok
23:04:37.0096 0x13dc  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:04:37.0097 0x13dc  RdpVideoMiniport - ok
23:04:37.0128 0x13dc  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:04:37.0143 0x13dc  RDPWD - ok
23:04:37.0161 0x13dc  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:04:37.0163 0x13dc  rdyboost - ok
23:04:37.0188 0x13dc  [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi            C:\Windows\system32\drivers\regi.sys
23:04:37.0189 0x13dc  regi - ok
23:04:37.0216 0x13dc  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:04:37.0219 0x13dc  RemoteAccess - ok
23:04:37.0236 0x13dc  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:04:37.0238 0x13dc  RemoteRegistry - ok
23:04:37.0248 0x13dc  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:04:37.0249 0x13dc  RpcEptMapper - ok
23:04:37.0268 0x13dc  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
23:04:37.0270 0x13dc  RpcLocator - ok
23:04:37.0314 0x13dc  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\System32\rpcss.dll
23:04:37.0318 0x13dc  RpcSs - ok
23:04:37.0329 0x13dc  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:04:37.0331 0x13dc  rspndr - ok
23:04:37.0356 0x13dc  [ 333224D4D25F9BCCA488E08345083E1C ] RTL8187         C:\Windows\system32\DRIVERS\rtl8187.sys
23:04:37.0360 0x13dc  RTL8187 - ok
23:04:37.0386 0x13dc  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
23:04:37.0388 0x13dc  s3cap - ok
23:04:37.0396 0x13dc  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
23:04:37.0397 0x13dc  SamSs - ok
23:04:37.0469 0x13dc  [ 99FC1599F89A80216E41175B8CA44D89 ] SBAMSvc         D:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
23:04:37.0544 0x13dc  SBAMSvc - ok
23:04:37.0568 0x13dc  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:04:37.0571 0x13dc  sbp2port - ok
23:04:37.0587 0x13dc  SBRE - ok
23:04:37.0651 0x13dc  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  D:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
23:04:37.0669 0x13dc  SBSDWSCService - ok
23:04:37.0686 0x13dc  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:04:37.0696 0x13dc  SCardSvr - ok
23:04:37.0727 0x13dc  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:04:37.0728 0x13dc  scfilter - ok
23:04:37.0754 0x13dc  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
23:04:37.0763 0x13dc  Schedule - ok
23:04:37.0792 0x13dc  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:04:37.0793 0x13dc  SCPolicySvc - ok
23:04:37.0807 0x13dc  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:04:37.0816 0x13dc  SDRSVC - ok
23:04:37.0828 0x13dc  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:04:37.0830 0x13dc  secdrv - ok
23:04:37.0859 0x13dc  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
23:04:37.0860 0x13dc  seclogon - ok
23:04:37.0883 0x13dc  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
23:04:37.0885 0x13dc  SENS - ok
23:04:37.0899 0x13dc  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:04:37.0902 0x13dc  SensrSvc - ok
23:04:37.0969 0x13dc  [ 59BAE636BD55295307296093FADEC771 ] SepMasterService C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\ccSvcHst.exe
23:04:37.0971 0x13dc  SepMasterService - ok
23:04:37.0986 0x13dc  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
23:04:37.0987 0x13dc  Serenum - ok
23:04:37.0995 0x13dc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
23:04:37.0999 0x13dc  Serial - ok
23:04:38.0024 0x13dc  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
23:04:38.0025 0x13dc  sermouse - ok
23:04:38.0059 0x13dc  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
23:04:38.0062 0x13dc  SessionEnv - ok
23:04:38.0071 0x13dc  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:04:38.0072 0x13dc  sffdisk - ok
23:04:38.0082 0x13dc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:04:38.0083 0x13dc  sffp_mmc - ok
23:04:38.0095 0x13dc  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:04:38.0096 0x13dc  sffp_sd - ok
23:04:38.0109 0x13dc  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
23:04:38.0110 0x13dc  sfloppy - ok
23:04:38.0144 0x13dc  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:04:38.0149 0x13dc  SharedAccess - ok
23:04:38.0179 0x13dc  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:04:38.0184 0x13dc  ShellHWDetection - ok
23:04:38.0209 0x13dc  [ 0F498DEE92FD73DD999BAE4D506367F5 ] SI3132          C:\Windows\system32\DRIVERS\SI3132.sys
23:04:38.0211 0x13dc  SI3132 - ok
23:04:38.0219 0x13dc  [ 127CE10E01F53F2EDACA7FE42E5631EA ] SiFilter        C:\Windows\system32\DRIVERS\SiWinAcc.sys
23:04:38.0220 0x13dc  SiFilter - ok
23:04:38.0233 0x13dc  [ B742C37002B8EBEF6E230DF9B4B28546 ] SiRemFil        C:\Windows\system32\DRIVERS\SiRemFil.sys
23:04:38.0234 0x13dc  SiRemFil - ok
23:04:38.0238 0x13dc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:04:38.0239 0x13dc  SiSRaid2 - ok
23:04:38.0252 0x13dc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
23:04:38.0254 0x13dc  SiSRaid4 - ok
23:04:38.0300 0x13dc  [ CA058CB8320CF9E3F978D729E55C82CF ] SkypeUpdate     D:\Program Files (x86)\Skype\Updater\Updater.exe
23:04:38.0301 0x13dc  SkypeUpdate - ok
23:04:38.0320 0x13dc  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:04:38.0322 0x13dc  Smb - ok
23:04:38.0395 0x13dc  [ 014EC99CC1C892B5B6BA65776592E7B4 ] SmcService      C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\Smc.exe
23:04:38.0428 0x13dc  SmcService - ok
23:04:38.0454 0x13dc  [ 88078B50B806B8E8A4A08E547C0D6492 ] SNAC            C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\snac64.exe
23:04:38.0459 0x13dc  SNAC - ok
23:04:38.0471 0x13dc  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:04:38.0473 0x13dc  SNMPTRAP - ok
23:04:38.0483 0x13dc  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:04:38.0483 0x13dc  spldr - ok
23:04:38.0519 0x13dc  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
23:04:38.0524 0x13dc  Spooler - ok
23:04:38.0602 0x13dc  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
23:04:38.0661 0x13dc  sppsvc - ok
23:04:38.0700 0x13dc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:04:38.0703 0x13dc  sppuinotify - ok
23:04:38.0773 0x13dc  [ 85CD5B92052C3D285CC91244C593A1AC ] SpyHunter 4 Service C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
23:04:38.0780 0x13dc  SpyHunter 4 Service - ok
23:04:38.0845 0x13dc  [ BFF91C4FF4A2FEDDB0B285EAD0AC1B7B ] SRTSP           C:\Windows\system32\Drivers\SEP\0C0107DF\07DF.105\x64\SRTSP64.SYS
23:04:38.0849 0x13dc  SRTSP - ok
23:04:38.0854 0x13dc  [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX          C:\Windows\system32\Drivers\SEP\0C0107DF\07DF.105\x64\SRTSPX64.SYS
23:04:38.0855 0x13dc  SRTSPX - ok
23:04:38.0878 0x13dc  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:04:38.0883 0x13dc  srv - ok
23:04:38.0925 0x13dc  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:04:38.0930 0x13dc  srv2 - ok
23:04:38.0952 0x13dc  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:04:38.0954 0x13dc  srvnet - ok
23:04:38.0967 0x13dc  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:04:38.0970 0x13dc  SSDPSRV - ok
23:04:38.0980 0x13dc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:04:38.0983 0x13dc  SstpSvc - ok
23:04:39.0039 0x13dc  [ 81F177C1954453AF407604160BD149CB ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
23:04:39.0042 0x13dc  Stereo Service - ok
23:04:39.0060 0x13dc  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
23:04:39.0062 0x13dc  stexstor - ok
23:04:39.0092 0x13dc  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
23:04:39.0098 0x13dc  stisvc - ok
23:04:39.0137 0x13dc  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
23:04:39.0138 0x13dc  storflt - ok
23:04:39.0160 0x13dc  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
23:04:39.0162 0x13dc  storvsc - ok
23:04:39.0183 0x13dc  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:04:39.0184 0x13dc  swenum - ok
23:04:39.0252 0x13dc  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
23:04:39.0274 0x13dc  SwitchBoard - ok
23:04:39.0291 0x13dc  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
23:04:39.0297 0x13dc  swprv - ok
23:04:39.0337 0x13dc  [ 40E32C65A672CFD24C48A2FE78D239C7 ] SyDvCtrl        C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\SyDvCtrl64.sys
23:04:39.0339 0x13dc  SyDvCtrl - ok
23:04:39.0354 0x13dc  [ 688BBE78970E639BC1D66AE733394DCF ] SymDS           C:\Windows\system32\Drivers\SEP\0C0107DF\07DF.105\x64\SYMDS64.SYS
23:04:39.0359 0x13dc  SymDS - ok
23:04:39.0408 0x13dc  [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA          C:\Windows\system32\Drivers\SEP\0C0107DF\07DF.105\x64\SYMEFA64.SYS
23:04:39.0426 0x13dc  SymEFA - ok
23:04:39.0472 0x13dc  [ F19E5E37ED8134B9E5F6287F2D3A75D7 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
23:04:39.0473 0x13dc  SymEvent - ok
23:04:39.0508 0x13dc  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\Drivers\SEP\0C0107DF\07DF.105\x64\Ironx64.SYS
23:04:39.0510 0x13dc  SymIRON - ok
23:04:39.0553 0x13dc  [ 1605EBD8CB86AFC4430116065995279A ] SYMNETS         C:\Windows\system32\Drivers\SEP\0C0107DF\07DF.105\x64\SYMNETS.SYS
23:04:39.0555 0x13dc  SYMNETS - ok
23:04:39.0569 0x13dc  Synth3dVsc - ok
23:04:39.0617 0x13dc  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
23:04:39.0644 0x13dc  SysMain - ok
23:04:39.0688 0x13dc  [ 34ABD119A14E85322EAA69DBE159F5FA ] SysPlant        C:\Windows\system32\Drivers\SysPlant.sys
23:04:39.0689 0x13dc  SysPlant - ok
23:04:39.0716 0x13dc  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:04:39.0727 0x13dc  TabletInputService - ok
23:04:39.0741 0x13dc  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:04:39.0754 0x13dc  TapiSrv - ok
23:04:39.0773 0x13dc  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
23:04:39.0775 0x13dc  TBS - ok
23:04:39.0820 0x13dc  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:04:39.0846 0x13dc  Tcpip - ok
23:04:39.0878 0x13dc  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:04:39.0887 0x13dc  TCPIP6 - ok
23:04:39.0931 0x13dc  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:04:39.0932 0x13dc  tcpipreg - ok
23:04:39.0954 0x13dc  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:04:39.0955 0x13dc  TDPIPE - ok
23:04:39.0988 0x13dc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:04:39.0989 0x13dc  TDTCP - ok
23:04:40.0023 0x13dc  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:04:40.0025 0x13dc  tdx - ok
23:04:40.0062 0x13dc  [ 3978C680024C11071363933FC4CD4D54 ] Teefer2         C:\Windows\system32\DRIVERS\Teefer.sys
23:04:40.0063 0x13dc  Teefer2 - ok
23:04:40.0091 0x13dc  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:04:40.0092 0x13dc  TermDD - ok
23:04:40.0122 0x13dc  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
23:04:40.0130 0x13dc  TermService - ok
23:04:40.0143 0x13dc  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
23:04:40.0145 0x13dc  Themes - ok
23:04:40.0161 0x13dc  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
23:04:40.0162 0x13dc  THREADORDER - ok
23:04:40.0178 0x13dc  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
23:04:40.0180 0x13dc  TrkWks - ok
23:04:40.0231 0x13dc  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:04:40.0234 0x13dc  TrustedInstaller - ok
23:04:40.0268 0x13dc  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:04:40.0269 0x13dc  tssecsrv - ok
23:04:40.0304 0x13dc  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:04:40.0305 0x13dc  TsUsbFlt - ok
23:04:40.0309 0x13dc  tsusbhub - ok
23:04:40.0352 0x13dc  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:04:40.0354 0x13dc  tunnel - ok
23:04:40.0377 0x13dc  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
23:04:40.0379 0x13dc  uagp35 - ok
23:04:40.0400 0x13dc  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:04:40.0404 0x13dc  udfs - ok
23:04:40.0418 0x13dc  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:04:40.0429 0x13dc  UI0Detect - ok
23:04:40.0439 0x13dc  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:04:40.0441 0x13dc  uliagpkx - ok
23:04:40.0483 0x13dc  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
23:04:40.0484 0x13dc  umbus - ok
23:04:40.0500 0x13dc  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
23:04:40.0502 0x13dc  UmPass - ok
23:04:40.0519 0x13dc  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
23:04:40.0522 0x13dc  UmRdpService - ok
23:04:40.0589 0x13dc  [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
23:04:40.0606 0x13dc  UMVPFSrv - ok
23:04:40.0640 0x13dc  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
23:04:40.0644 0x13dc  upnphost - ok
23:04:40.0677 0x13dc  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
23:04:40.0679 0x13dc  usbaudio - ok
23:04:40.0728 0x13dc  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:04:40.0730 0x13dc  usbccgp - ok
23:04:40.0760 0x13dc  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:04:40.0762 0x13dc  usbcir - ok
23:04:40.0787 0x13dc  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
23:04:40.0788 0x13dc  usbehci - ok
23:04:40.0827 0x13dc  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:04:40.0831 0x13dc  usbhub - ok
23:04:40.0860 0x13dc  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
23:04:40.0861 0x13dc  usbohci - ok
23:04:40.0878 0x13dc  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
23:04:40.0879 0x13dc  usbprint - ok
23:04:40.0911 0x13dc  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:04:40.0913 0x13dc  USBSTOR - ok
23:04:40.0940 0x13dc  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
23:04:40.0941 0x13dc  usbuhci - ok
23:04:40.0964 0x13dc  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
23:04:40.0966 0x13dc  UxSms - ok
23:04:40.0975 0x13dc  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
23:04:40.0976 0x13dc  VaultSvc - ok
23:04:41.0011 0x13dc  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:04:41.0011 0x13dc  vdrvroot - ok
23:04:41.0051 0x13dc  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
23:04:41.0058 0x13dc  vds - ok
23:04:41.0063 0x13dc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:04:41.0064 0x13dc  vga - ok
23:04:41.0072 0x13dc  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:04:41.0073 0x13dc  VgaSave - ok
23:04:41.0077 0x13dc  VGPU - ok
23:04:41.0109 0x13dc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:04:41.0112 0x13dc  vhdmp - ok
23:04:41.0122 0x13dc  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:04:41.0124 0x13dc  viaide - ok
23:04:41.0142 0x13dc  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
23:04:41.0144 0x13dc  vmbus - ok
23:04:41.0167 0x13dc  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
23:04:41.0168 0x13dc  VMBusHID - ok
23:04:41.0179 0x13dc  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:04:41.0181 0x13dc  volmgr - ok
23:04:41.0225 0x13dc  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:04:41.0229 0x13dc  volmgrx - ok
23:04:41.0240 0x13dc  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:04:41.0243 0x13dc  volsnap - ok
23:04:41.0263 0x13dc  [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
23:04:41.0265 0x13dc  vpcbus - ok
23:04:41.0290 0x13dc  [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
23:04:41.0291 0x13dc  vpcnfltr - ok
23:04:41.0307 0x13dc  [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
23:04:41.0308 0x13dc  vpcusb - ok
23:04:41.0350 0x13dc  [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
23:04:41.0352 0x13dc  vpcvmm - ok
23:04:41.0371 0x13dc  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
23:04:41.0373 0x13dc  vsmraid - ok
23:04:41.0403 0x13dc  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
23:04:41.0429 0x13dc  VSS - ok
23:04:41.0443 0x13dc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
23:04:41.0445 0x13dc  vwifibus - ok
23:04:41.0464 0x13dc  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:04:41.0466 0x13dc  vwififlt - ok
23:04:41.0493 0x13dc  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
23:04:41.0499 0x13dc  W32Time - ok
23:04:41.0513 0x13dc  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
23:04:41.0515 0x13dc  WacomPen - ok
23:04:41.0525 0x13dc  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:04:41.0527 0x13dc  WANARP - ok
23:04:41.0531 0x13dc  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:04:41.0532 0x13dc  Wanarpv6 - ok
23:04:41.0613 0x13dc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
23:04:41.0638 0x13dc  WatAdminSvc - ok
23:04:41.0678 0x13dc  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
23:04:41.0720 0x13dc  wbengine - ok
23:04:41.0741 0x13dc  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:04:41.0756 0x13dc  WbioSrvc - ok
23:04:41.0770 0x13dc  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:04:41.0775 0x13dc  wcncsvc - ok
23:04:41.0798 0x13dc  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:04:41.0811 0x13dc  WcsPlugInService - ok
23:04:41.0815 0x13dc  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
23:04:41.0816 0x13dc  Wd - ok
23:04:41.0859 0x13dc  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:04:41.0867 0x13dc  Wdf01000 - ok
23:04:41.0877 0x13dc  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:04:41.0879 0x13dc  WdiServiceHost - ok
23:04:41.0883 0x13dc  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:04:41.0885 0x13dc  WdiSystemHost - ok
23:04:41.0917 0x13dc  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
23:04:41.0922 0x13dc  WebClient - ok
23:04:41.0955 0x13dc  [ D5BA7D43FA2EF656BF7E98A188391E40 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:04:41.0968 0x13dc  Wecsvc - ok
23:04:41.0993 0x13dc  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:04:41.0995 0x13dc  wercplsupport - ok
23:04:42.0017 0x13dc  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:04:42.0020 0x13dc  WerSvc - ok
23:04:42.0033 0x13dc  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:04:42.0034 0x13dc  WfpLwf - ok
23:04:42.0038 0x13dc  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:04:42.0039 0x13dc  WIMMount - ok
23:04:42.0071 0x13dc  WinDefend - ok
23:04:42.0087 0x13dc  WinHttpAutoProxySvc - ok
23:04:42.0136 0x13dc  [ 136760C1E9697BAF4ECDEAE5590A0806 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:04:42.0137 0x13dc  Winmgmt - ok
23:04:42.0204 0x13dc  [ 3BB6B401A780BF434C8F58137DE10BF7 ] WinRM           C:\Windows\system32\WsmSvc.dll
23:04:42.0288 0x13dc  WinRM - ok
23:04:42.0328 0x13dc  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:04:42.0330 0x13dc  WinUsb - ok
23:04:42.0359 0x13dc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:04:42.0368 0x13dc  Wlansvc - ok
23:04:42.0457 0x13dc  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:04:42.0487 0x13dc  wlidsvc - ok
23:04:42.0528 0x13dc  [ 680A7846370000D20D7E74917D5B7936 ] WmBEnum         C:\Windows\system32\drivers\WmBEnum.sys
23:04:42.0529 0x13dc  WmBEnum - ok
23:04:42.0557 0x13dc  [ 14C35BA8189C6F65D839163AA285E954 ] WmFilter        C:\Windows\system32\drivers\WmFilter.sys
23:04:42.0558 0x13dc  WmFilter - ok
23:04:42.0587 0x13dc  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:04:42.0589 0x13dc  WmiAcpi - ok
23:04:42.0610 0x13dc  [ 4DF841632B62A7CF19A79A05046A8AB1 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:04:42.0625 0x13dc  wmiApSrv - ok
23:04:42.0629 0x13dc  WMPNetworkSvc - ok
23:04:42.0648 0x13dc  [ 8488DD91A3EE54A8E29F02AD7BB8201E ] WmVirHid        C:\Windows\system32\drivers\WmVirHid.sys
23:04:42.0649 0x13dc  WmVirHid - ok
23:04:42.0660 0x13dc  [ 14802B3A30AA849C97CB968CCC813BF3 ] WmXlCore        C:\Windows\system32\drivers\WmXlCore.sys
23:04:42.0660 0x13dc  WmXlCore - ok
23:04:42.0683 0x13dc  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:04:42.0694 0x13dc  WPCSvc - ok
23:04:42.0718 0x13dc  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:04:42.0720 0x13dc  WPDBusEnum - ok
23:04:42.0737 0x13dc  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:04:42.0738 0x13dc  ws2ifsl - ok
23:04:42.0758 0x13dc  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
23:04:42.0761 0x13dc  wscsvc - ok
23:04:42.0765 0x13dc  WSearch - ok
23:04:42.0839 0x13dc  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:04:42.0873 0x13dc  wuauserv - ok
23:04:42.0910 0x13dc  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:04:42.0913 0x13dc  WudfPf - ok
23:04:42.0932 0x13dc  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:04:42.0934 0x13dc  WUDFRd - ok
23:04:42.0974 0x13dc  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:04:42.0977 0x13dc  wudfsvc - ok
23:04:43.0014 0x13dc  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:04:43.0026 0x13dc  WwanSvc - ok
23:04:43.0035 0x13dc  ================ Scan global ===============================
23:04:43.0069 0x13dc  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:04:43.0103 0x13dc  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:04:43.0110 0x13dc  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:04:43.0123 0x13dc  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:04:43.0141 0x13dc  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:04:43.0146 0x13dc  [Global] - ok
23:04:43.0146 0x13dc  ================ Scan MBR ==================================
23:04:43.0164 0x13dc  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
23:04:43.0346 0x13dc  \Device\Harddisk0\DR0 - ok
23:04:43.0376 0x13dc  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
23:04:43.0822 0x13dc  \Device\Harddisk1\DR1 - ok
23:04:43.0822 0x13dc  ================ Scan VBR ==================================
23:04:43.0825 0x13dc  [ 5D384F77760321254750FC2C4C8A6DCC ] \Device\Harddisk0\DR0\Partition1
23:04:43.0826 0x13dc  \Device\Harddisk0\DR0\Partition1 - ok
23:04:43.0844 0x13dc  [ 99415F5760BA0DE1B8704563849E14E3 ] \Device\Harddisk0\DR0\Partition2
23:04:43.0845 0x13dc  \Device\Harddisk0\DR0\Partition2 - ok
23:04:43.0848 0x13dc  [ 6095C396970CC8E98BD9F7BA1225AF6B ] \Device\Harddisk1\DR1\Partition1
23:04:43.0849 0x13dc  \Device\Harddisk1\DR1\Partition1 - ok
23:04:43.0864 0x13dc  [ B2AF9A15CDA29767EB8832FA0993B59F ] \Device\Harddisk1\DR1\Partition2
23:04:43.0865 0x13dc  \Device\Harddisk1\DR1\Partition2 - ok
23:04:43.0882 0x13dc  [ FC3835258A5941DC12E200FDB8CD0666 ] \Device\Harddisk1\DR1\Partition3
23:04:43.0884 0x13dc  \Device\Harddisk1\DR1\Partition3 - ok
23:04:43.0899 0x13dc  [ F50714AB3F1B6266CE73C3F74A91E4A9 ] \Device\Harddisk1\DR1\Partition4
23:04:43.0900 0x13dc  \Device\Harddisk1\DR1\Partition4 - ok
23:04:43.0901 0x13dc  ============================================================
23:04:43.0901 0x13dc  Scan finished
23:04:43.0901 0x13dc  ============================================================
23:04:43.0912 0x136c  Detected object count: 1
23:04:43.0912 0x136c  Actual detected object count: 1
23:06:09.0046 0x136c  Akamai ( HiddenFile.Multi.Generic ) - skipped by user
23:06:09.0046 0x136c  Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
 



AdwCleaner results

 

# AdwCleaner v3.002 - Report created 05/09/2013 at 23:12:44
# Updated 01/09/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Ken - KEN
# Running from : C:\Users\Ken\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Found C:\Program Files (x86)\adawaretb
Folder Found C:\ProgramData\Download and Sa
Folder Found C:\ProgramData\Download and Sa
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download and Sa
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download and Sa
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download and Sa
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download and Sa
Folder Found C:\ProgramData\Premium
Folder Found C:\Users\Ken\AppData\LocalLow\adawaretb
Folder Found C:\Users\Ken\AppData\LocalLow\Download and Sa
Folder Found C:\Users\Ken\AppData\LocalLow\Download and Sa
Folder Found C:\Users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\j2un338c.default\adawaretb

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8793F33A-7E9E-7597-9DE6-D8CD8DD51A9D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8793F33A-7E9E-7597-9DE6-D8CD8DD51A9D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\Software\adawaretb
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8793F33A-7E9E-7597-9DE6-D8CD8DD51A9D}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\knlhnlfikjlfbgpmdolbinfheholcgca
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_cpu-z_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_cpu-z_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{20E7BC40-33F6-4A81-9D52-B58349326206}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{20E7BC40-33F6-4A81-9D52-B58349326206}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

-\\ Mozilla Firefox v20.0.1 (en-US)

[ File : C:\Users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\j2un338c.default\prefs.js ]

*************************

AdwCleaner[R0].txt - [2737 octets] - [05/09/2013 23:12:44]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2797 octets] ##########



ESetScan results

 

C:\Users\All Users\Download and Sa\5091973d28bbe.ocx Win32/Adware.MultiPlug.D application 
C:\Users\All Users\Download and Sa\5091973d28bf7.html Win32/Adware.MultiPlug.H application 
C:\Users\All Users\Download and Sa\knlhnlfikjlfbgpmdolbinfheholcgca.crx Win32/Adware.MultiPlug.H application 
D:\Downloaded Programs\SpyHunter\Spyhunter 4.13\Patch\spyhunter.4.3.32-patch.exe a variant of Win32/HackTool.Patcher.T application 
C:\ProgramData\Download and Sa\5091973d28bbe.ocx Win32/Adware.MultiPlug.D application cleaned by deleting - quarantined
C:\ProgramData\Download and Sa\5091973d28bf7.html Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\ProgramData\Download and Sa\knlhnlfikjlfbgpmdolbinfheholcgca.crx Win32/Adware.MultiPlug.H application deleted - quarantined
C:\Users\Ken\AppData\Local\Temp\FreemakeVideoConverter_4.0.4.0.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Ken\AppData\Local\Temp\is1244477948\22354290_Setup.EXE Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Ken\AppData\Local\Temp\is1244477948\DeltaTB.exe Win32/Toolbar.Babylon.E application cleaned by deleting - quarantined
C:\Users\Ken\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\47d19d14-683f6847 Java/Exploit.Agent.NMA trojan cleaned by deleting - quarantined
C:\Users\Ken\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\f71fc16-29e4c0d1 a variant of Java/Exploit.CVE-2012-1723.KC trojan cleaned by deleting - quarantined
C:\Users\Ken\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\4bb5784-67eba258 multiple threats cleaned by deleting - quarantined
C:\Users\Ken\Desktop\cpu-z_1.59-setup-en.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
D:\Downloaded Programs\Ad Aware\Adaware_Installer 10.4.49.4168.exe Win32/OpenCandy application deleted - quarantined
D:\Downloaded Programs\Foxit PDF Reader\FoxitReader542.0901_enu_Setup.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
D:\Downloaded Programs\ImgBurn\SetupImgBurn_2.5.7.0.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
D:\Downloaded Programs\SpyHunter\Spyhunter 4.13.zip a variant of Win32/HackTool.Patcher.T application deleted - quarantined
D:\Downloaded Programs\Video converter\FreemakeVideoConverterSetup.exe Win32/OpenCandy application cleaned by deleting - quarantined
D:\Downloaded Programs\Winamp\winamp565_full_emusic-7plus_all.exe Win32/OpenCandy application cleaned by deleting - quarantined
D:\Downloaded Programs\Youtube Downloader\FreeYouTubeDownloaderInstallerIC.exe a variant of Win32/InstallCore.CF application cleaned by deleting - quarantined
I:\MY FILES AND DOCUMENTS\Program Downloads\Winamp\winamp5581_full_emusic-7plus_en-us.exe Win32/OpenCandy application cleaned by deleting - quarantined
 



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:59 AM

Posted 07 September 2013 - 09:11 PM

Ok, remove what ADWCleaner found.

Double click on AdwCleaner.exe to run the tool again.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users