Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus/spyware Help Vista


  • Please log in to reply
11 replies to this topic

#1 tgoodch1

tgoodch1

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:25 PM

Posted 05 December 2013 - 07:52 AM

Hi,
I'm not real sure exactly what kind of help I should be asking for here, but I need some advice from people that know what to look for.  Basically, the computer sounds like there's about a million programs trying to run and everything is slow, or just freezes up.  I'm not getting any error notices or anything, but there's gotta be something going on here.  This thing literally sounds like it's about to blow up at any minute.
 
I have zero idea what I'm doing, and am 100% prepared to be called an idiot for posting without anymore details, if anyone can help me troubleshoot this.

Edit: Moved topic from Windows Vista to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 PM

Posted 05 December 2013 - 12:56 PM

Hello tg, if you are hearing loud clicking Id be concerned of imminent hard drive failure and suggest you first back up anything important.

Try theses from normal mode , if to slow use Safe with Networking.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 tgoodch1

tgoodch1
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:25 PM

Posted 05 December 2013 - 01:05 PM

Hi  boopme, thanks for the reply.

 

Here's the minitoolbox result:

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Hobgood (administrator) on 05-12-2013 at 12:01:40
Running from "C:\Users\Hobgood\Desktop"
Microsoft® Windows Vista™ Home Premium   (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
ProxyServer: http=127.0.0.1:49179;https=127.0.0.1:49179
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set interface luid=loopback_0 forwarding=disabled advertise=disabled mtu=1500 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_1 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_2 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_4 forwarding=disabled advertise=disabled mtu=1500 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_9 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_6 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=other_0 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ppp_2 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_8 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_10 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Hobgood-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
   Physical Address. . . . . . . . . : 00-18-8B-5C-72-34
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::502:5ed8:9e22:e8d6%9(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.10(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, December 05, 2013 9:59:31 AM
   Lease Expires . . . . . . . . . . : Friday, December 06, 2013 9:59:31 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 201332875
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Local Area Connection* 6:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:3869:3719:3f57:fff5(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::3869:3719:3f57:fff5%8(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter Local Area Connection* 7:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 9:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{03155B07-C1F9-47C7-8358-6B68F263F474}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.10%27(Preferred) 
   Default Gateway . . . . . . . . . : 
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter Local Area Connection* 10:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 14:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 15:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 18:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 20:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 23:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 24:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  google-public-dns-a.google.com
Address:  8.8.8.8:53
 
Name:    google.com
Addresses:  74.125.225.133, 74.125.225.137, 74.125.225.131, 74.125.225.129
 74.125.225.142, 74.125.225.136, 74.125.225.135, 74.125.225.132, 74.125.225.134
 74.125.225.130, 74.125.225.128
 
 
 
Pinging google.com [74.125.225.133] with 32 bytes of data:
 
 
 
Reply from 74.125.225.133: bytes=32 time=34ms TTL=54
 
Reply from 74.125.225.133: bytes=32 time=37ms TTL=54
 
 
 
Ping statistics for 74.125.225.133:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 34ms, Maximum = 37ms, Average = 35ms
 
Server:  google-public-dns-a.google.com
Address:  8.8.8.8:53
 
Name:    yahoo.com
Addresses:  98.139.183.24, 206.190.36.45, 98.138.253.109
 
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
 
 
 
Reply from 206.190.36.45: bytes=32 time=100ms TTL=48
 
Reply from 206.190.36.45: bytes=32 time=98ms TTL=48
 
 
 
Ping statistics for 206.190.36.45:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 98ms, Maximum = 100ms, Average = 99ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
  9 ...00 18 8b 5c 72 34 ...... Broadcom 440x 10/100 Integrated Controller
  1 ........................... Software Loopback Interface 1
  8 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 10 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 27 ...00 00 00 00 00 00 00 e0  isatap.{03155B07-C1F9-47C7-8358-6B68F263F474}
 11 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 12 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 13 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 15 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 16 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 18 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 20 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 23 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 24 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.10     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.10    276
     192.168.0.10  255.255.255.255         On-link      192.168.0.10    276
    192.168.0.255  255.255.255.255         On-link      192.168.0.10    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.10    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.10    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  8     18 ::/0                     On-link
  1    306 ::1/128                  On-link
  8     18 2001::/32                On-link
  8    266 2001:0:9d38:90d7:3869:3719:3f57:fff5/128
                                    On-link
  9    276 fe80::/64                On-link
  8    266 fe80::/64                On-link
 27    281 fe80::5efe:192.168.0.10/128
                                    On-link
  9    276 fe80::502:5ed8:9e22:e8d6/128
                                    On-link
  8    266 fe80::3869:3719:3f57:fff5/128
                                    On-link
  1    306 ff00::/8                 On-link
  8    266 ff00::/8                 On-link
  9    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/05/2013 00:02:03 PM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 00:00:03 PM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:58:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:56:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:54:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:52:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:50:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:48:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:46:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:44:03 AM) (Source: Windows Search Service) (User: )
Description: The gatherer files from the previous checkpoint cannot be restored, and this action cannot be completed. The gatherer will attempt to restore the files again. If the problem persists, restart the service, free system resources or verify that your hardware is working properly. 
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
 
System errors:
=============
Error: (12/05/2013 10:20:24 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.
 
Error: (12/05/2013 10:03:27 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.
 
Error: (12/05/2013 10:03:27 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.
 
Error: (12/05/2013 10:03:27 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.
 
Error: (12/05/2013 10:03:26 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.
 
Error: (12/05/2013 10:03:26 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.
 
Error: (12/05/2013 10:03:26 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.
 
Error: (12/05/2013 10:03:26 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.
 
Error: (12/05/2013 10:03:26 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.
 
Error: (12/05/2013 10:03:26 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.
 
 
Microsoft Office Sessions:
=========================
Error: (12/05/2013 00:02:03 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 00:00:03 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:58:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:56:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:54:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:52:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:50:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:48:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:46:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
Error: (12/05/2013 11:44:03 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.   (0x8004117f)
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-12-05 08:39:48.755
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:48.521
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:48.225
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:48.006
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:46.306
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:46.119
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:45.900
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:45.713
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:38.194
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-05 08:39:38.038
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe AIR (Version: 3.8.0.1430)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.152)
Adobe Flash Player 11 Plugin (Version: 11.9.900.152)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Adobe Shockwave Player 12.0 (Version: 12.0.4.144)
Affiliate ID Manager  - Version No.1 (Version: 1.95)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
AVG 2014 (Version: 14.0.3629)
AVG 2014 (Version: 14.0.4259)
AVG 2014 (Version: 2014.0.4259)
AVG PC TuneUp 2014 (en-US) (Version: 14.0.1001.204)
Bonjour (Version: 3.0.0.10)
Conexant D850 PCI V.92 Modem
DellSupport (Version: 6.0.3030)
Digital Line Detect (Version: 1.20)
DMUninstaller
Documentation & Support Launcher (Version: 1.00.0000)
Dropbox (Version: 2.4.2)
File Association Helper (Version: 1.1.6.53763)
FileZilla Client 3.7.3 (Version: 3.7.3)
Free Opener (Version: 1.4)
Games, Music, & Photos Launcher (Version: 1.00.0000)
GIMP 2.8.8 (Version: 2.8.8)
Google Chrome (Version: 31.0.1650.57)
Google Toolbar for Internet Explorer (Version: 4.0.0.002)
Google Updater (Version: 2.1.850.19570)
HitLeap Viewer 2.7 (Version: 2.7)
HyperVRE 1.9.6
iCloud (Version: 2.1.2.8)
iFunbox (v2.6.2375.747), iFunbox DevTeam (Version: v2.6.2375.747)
iTunes (Version: 11.1.2.31)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
Java™ 6 Update 3 (Version: 1.6.0.30)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 6 Update 5 (Version: 1.6.0.50)
Jewel Quest - Heritage (Version: 2.2.0.90)
Jewel Quest 3 (Version: 2.2.0.95)
K-Lite Codec Pack 7.0.0 (Standard) (Version: 7.0.0)
LastPass (uninstall only)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Maxthon Cloud Browser (Version: 4.1.3.2000)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Security Client (Version: 4.3.0216.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Web Platform Installer 4.6 (Version: 4.0.40719.0)
Microsoft Works (Version: 08.05.0818)
Modem Diagnostic Tool (Version: 1.0.17.8)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MySQL Connector Net 6.5.4 (Version: 6.5.4)
MySQL Server 5.1 (Version: 5.1.72)
NetWaiting (Version: 2.5.41)
NVIDIA Control Panel 307.83 (Version: 307.83)
NVIDIA Drivers (Version: 1.5)
NVIDIA Install Application (Version: 2.1002.109.706)
Octoshape add-in for Adobe Flash Player
Paragon Backup and Recovery™ 12 Compact (Version: 90.00.0003)
PDF Power Brand version 3.61 (Version: 3.61)
Pinger (Version: 1.4.0.0)
Quick Tab Change 2.0
QuickTime (Version: 7.74.80.86)
RealDownloader (Version: 1.3.3)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealUpgrade 1.0 (Version: 1.0.0)
RealUpgrade 1.1 (Version: 1.1.0)
Rhapsody Player Engine (Version: 1.0.604)
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Drag-to-Disc (Version: 9.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
SigmaTel Audio (Version: 5.10.5102.0)
Skype Click to Call (Version: 6.13.13771)
Skype™ 6.10 (Version: 6.10.104)
Sonic Activation Module (Version: 1.0)
Spotify (Version: 0.9.6.72.ge389c074)
Thread Manager 2.6.0.0 (Version: 2.6.0.0)
Traffic Browser 1.0.3.43.000 (Version: 1.0.3.43.000)
Translate Genius (Version: 1.0.9)
TurboTax 2009 wcoiper (Version: 009.000.0613)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Zip Extractor
User's Guides
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
WildTangent Games (Version: 1.0.1.5)
Winamp (remove only)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinZip 18.0 (Version: 18.0.10661)
WorldWinner Games (Version: 1.10.0.25)
Xvid Video Codec (Version: 1.3.2)
Yahoo! Mail Advisor
Yahoo! Messenger
Yahoo! Search Protection
Yahoo! Software Update
Yahoo! Toolbar
ZTE Handset USB Driver
ZTE Handset USB Driver (Version: 5.2066.1.9B04)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 89%
Total physical RAM: 957.88 MB
Available physical RAM: 104.23 MB
Total Pagefile: 2185.94 MB
Available Pagefile: 836.4 MB
Total Virtual: 2047.88 MB
Available Virtual: 1976.47 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:222.79 GB) (Free:138.98 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:5.91 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\HOBGOOD-PC
 
Admin                    Administrator            Guest                    
Hobgood                  Michael                  
 
 
**** End of log ****


#4 tgoodch1

tgoodch1
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:25 PM

Posted 05 December 2013 - 01:12 PM

I might add, that while checking this computer out, I notice that it will not install windows updates, and says it's never been updated. That may be a whole different set of problems though, I'm not sure.



#5 tgoodch1

tgoodch1
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:25 PM

Posted 05 December 2013 - 01:18 PM

TDSSKiller

 

12:15:10.0970 0x0a24  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:15:16.0027 0x0a24  ============================================================
12:15:16.0027 0x0a24  Current date / time: 2013/12/05 12:15:16.0027
12:15:16.0027 0x0a24  SystemInfo:
12:15:16.0027 0x0a24  
12:15:16.0028 0x0a24  OS Version: 6.0.6000 ServicePack: 0.0
12:15:16.0028 0x0a24  Product type: Workstation
12:15:16.0028 0x0a24  ComputerName: HOBGOOD-PC
12:15:16.0028 0x0a24  UserName: Hobgood
12:15:16.0028 0x0a24  Windows directory: C:\Windows
12:15:16.0028 0x0a24  System windows directory: C:\Windows
12:15:16.0028 0x0a24  Processor architecture: Intel x86
12:15:16.0029 0x0a24  Number of processors: 2
12:15:16.0029 0x0a24  Page size: 0x1000
12:15:16.0029 0x0a24  Boot type: Normal boot
12:15:16.0029 0x0a24  ============================================================
12:15:16.0704 0x0a24  KLMD registered as C:\Windows\system32\drivers\94437637.sys
12:15:16.0864 0x0a24  System UUID: {355B51EC-C478-CF16-276D-8A1DC934C248}
12:15:17.0824 0x0a24  Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:15:17.0870 0x0a24  ============================================================
12:15:17.0870 0x0a24  \Device\Harddisk0\DR0:
12:15:17.0870 0x0a24  MBR partitions:
12:15:17.0870 0x0a24  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1400000
12:15:17.0870 0x0a24  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1414000, BlocksNum 0x1BD94800
12:15:17.0870 0x0a24  ============================================================
12:15:17.0927 0x0a24  C: <-> \Device\Harddisk0\DR0\Partition2
12:15:17.0965 0x0a24  D: <-> \Device\Harddisk0\DR0\Partition1
12:15:17.0988 0x0a24  ============================================================
12:15:17.0988 0x0a24  Initialize success
12:15:17.0988 0x0a24  ============================================================
12:15:35.0030 0x0640  ============================================================
12:15:35.0030 0x0640  Scan started
12:15:35.0030 0x0640  Mode: Manual; 
12:15:35.0030 0x0640  ============================================================
12:15:35.0031 0x0640  KSN ping started
12:15:38.0317 0x0640  KSN ping finished: true
12:15:40.0052 0x0640  ================ Scan system memory ========================
12:15:40.0052 0x0640  System memory - ok
12:15:40.0053 0x0640  ================ Scan services =============================
12:15:40.0416 0x0640  [ 84FC6DF81212D16BE5C4F441682FECCC, 73F3BE94A98225A9F276C1A6C8BCA05571FF3BB012E7FF877F6C4AB11F62CBA0 ] ACPI            C:\Windows\system32\drivers\acpi.sys
12:15:40.0433 0x0640  ACPI - ok
12:15:40.0591 0x0640  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:15:40.0597 0x0640  AdobeARMservice - ok
12:15:40.0698 0x0640  [ 438F31336B3DC248ABC632F1C8F34A24, 94C1218E7EC2EC6D4870A6FDC118097D7D3A359DA073DCD3A9770F399F830991 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:15:40.0733 0x0640  AdobeFlashPlayerUpdateSvc - ok
12:15:40.0835 0x0640  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:15:40.0877 0x0640  adp94xx - ok
12:15:40.0945 0x0640  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:15:40.0987 0x0640  adpahci - ok
12:15:41.0035 0x0640  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
12:15:41.0044 0x0640  adpu160m - ok
12:15:41.0089 0x0640  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:15:41.0106 0x0640  adpu320 - ok
12:15:41.0174 0x0640  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:15:41.0177 0x0640  AeLookupSvc - ok
12:15:41.0239 0x0640  [ 5D24CAF8EFD924A875698FF28384DB8B, FA3DE58D8F4180E9B9FE1DED4B1BE09245F401899E614DBD6A3867CEF6E34977 ] AFD             C:\Windows\system32\drivers\afd.sys
12:15:41.0274 0x0640  AFD - ok
12:15:41.0354 0x0640  [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4, 2E89838BD068314F4BE59753486E5D666FE2A3DD0A616E00EED4E0F83DB87401 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:15:41.0359 0x0640  agp440 - ok
12:15:41.0399 0x0640  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
12:15:41.0405 0x0640  aic78xx - ok
12:15:41.0450 0x0640  [ E69FB0E3112C40FDC0EF7D21A52DC951, 6FB299330EDEF77DC91FC279D90D8ADEA138EC98342116121F5879B50070963D ] ALG             C:\Windows\System32\alg.exe
12:15:41.0474 0x0640  ALG - ok
12:15:41.0516 0x0640  [ 3A99CB23A2D326FD532618705D6E3048, AF0FBE8C89F1B231B7BD00155E1555DBCB37B6B7B58E94DA254EC7A40A473236 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:15:41.0524 0x0640  aliide - ok
12:15:41.0584 0x0640  [ 848F27E5B27C1C253F6CEFDC1A5D8F21, 0FE955D82CE68A1FC5DCA33626179005B90803821005A370EB36352817433089 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:15:41.0589 0x0640  amdagp - ok
12:15:41.0617 0x0640  [ 4333C133DBD71C7D7FE4FB1B83F9EE3E, 3E08961741FACF0D35D1B49EE6E2A0AFF7DB3D8CCDBF823554EC83786AB925FE ] amdide          C:\Windows\system32\drivers\amdide.sys
12:15:41.0620 0x0640  amdide - ok
12:15:41.0678 0x0640  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
12:15:41.0683 0x0640  AmdK7 - ok
12:15:41.0721 0x0640  [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
12:15:41.0736 0x0640  AmdK8 - ok
12:15:41.0764 0x0640  [ CFA455816879F06F1C4E5BBF9E8AEF7D, E10781DEE5A9CDD2D79E1696577B24095258DC261E0D303177B5D7E719F58B20 ] Appinfo         C:\Windows\System32\appinfo.dll
12:15:41.0768 0x0640  Appinfo - ok
12:15:41.0856 0x0640  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:15:41.0863 0x0640  Apple Mobile Device - ok
12:15:41.0917 0x0640  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
12:15:41.0924 0x0640  arc - ok
12:15:41.0993 0x0640  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:15:42.0000 0x0640  arcsas - ok
12:15:42.0121 0x0640  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:15:42.0204 0x0640  aspnet_state - ok
12:15:42.0288 0x0640  [ 4691B3FE3717F9D9C64A5282C8543D4D, A7E627C832DA9F1C4F3864F3B75D53E7860752C5E34848B82779A2039751B4B1 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
12:15:42.0296 0x0640  aswKbd - ok
12:15:42.0338 0x0640  [ E86CF7CE67D5DE898F27EF884DC357D8, 24C86D0A6340B618E97C91066A8E639EA672112A571C4B36B0BC1EB717DDA782 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:15:42.0341 0x0640  AsyncMac - ok
12:15:42.0378 0x0640  [ A779CA2C76DA4FCB595E692C05E8E4EB, 4FFE51944090D8EED0350B8B00E5F2993215EE0ACEABEC4564175A70C34154E9 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:15:42.0382 0x0640  atapi - ok
12:15:42.0464 0x0640  [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:15:42.0499 0x0640  AudioEndpointBuilder - ok
12:15:42.0521 0x0640  [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:15:42.0531 0x0640  Audiosrv - ok
12:15:42.0602 0x0640  [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
12:15:42.0608 0x0640  Avgdiskx - ok
12:15:42.0658 0x0640  [ 7F9B01CE297EF4D54C5C4D736D22CF96, 7B13DE8346FE8218CA1D3ECFBD610B0292606318BA863D2C0941B6D3F55FB788 ] Avgfwfd         C:\Windows\system32\DRIVERS\avgfwd6x.sys
12:15:42.0661 0x0640  Avgfwfd - ok
12:15:42.0918 0x0640  [ 1E68487EF81995767905DE628866215B, 2E2D0EAFFD10387871E7B5D7D401A3A2D9B3C998817E6D61D59494700DA72349 ] avgfws          C:\Program Files\AVG\AVG2014\avgfws.exe
12:15:43.0000 0x0640  avgfws - ok
12:15:43.0219 0x0640  [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
12:15:43.0384 0x0640  AVGIDSAgent - ok
12:15:43.0448 0x0640  [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:15:43.0465 0x0640  AVGIDSDriver - ok
12:15:43.0529 0x0640  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
12:15:43.0536 0x0640  AVGIDSHX - ok
12:15:43.0565 0x0640  [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:15:43.0567 0x0640  AVGIDSShim - ok
12:15:43.0629 0x0640  [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
12:15:43.0655 0x0640  Avgldx86 - ok
12:15:43.0706 0x0640  [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
12:15:43.0723 0x0640  Avglogx - ok
12:15:43.0755 0x0640  [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
12:15:43.0760 0x0640  Avgmfx86 - ok
12:15:43.0808 0x0640  [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
12:15:43.0810 0x0640  Avgrkx86 - ok
12:15:43.0853 0x0640  [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
12:15:43.0871 0x0640  Avgtdix - ok
12:15:43.0910 0x0640  [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
12:15:43.0935 0x0640  avgwd - ok
12:15:44.0028 0x0640  [ 08015D34F6FDD0B355805BAD978497C3, AAD5F919215B8630DCCADF2AC8DC82BAA543C52B1682B476093E014532B20EBD ] bcm4sbxp        C:\Windows\system32\DRIVERS\bcm4sbxp.sys
12:15:44.0031 0x0640  bcm4sbxp - ok
12:15:44.0096 0x0640  [ AC3DD1708B22761EBD7CBE14DCC3B5D7, 395769C8DAA505E261033B9EA0319A7ED56A6289BAE11FDDA49002E25D9D8698 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:15:44.0099 0x0640  Beep - ok
12:15:44.0175 0x0640  [ 98EBDFFB824A7C265337D68DD480E45C, 81E495C7104FE9C1F996B2672ED22BE9E294D5C54B67FFCC6D2DD979DC94363C ] BFE             C:\Windows\System32\bfe.dll
12:15:44.0209 0x0640  BFE - ok
12:15:44.0337 0x0640  [ A47053A9D3D156B70ECF18DBAD8DAEFD, 5C31E8675E75DFFC522E6124BB13BE7F55AC15AF9D2B7EC37EB0CD2D6C6FE5E2 ] BioNTDrv        C:\Program Files\Paragon Software\Backup and Recovery 12 Compact\program\BioNTDrv.SYS
12:15:44.0342 0x0640  BioNTDrv - ok
12:15:44.0452 0x0640  [ DA551697E34D2B9943C8B1C8EAFFE89A, 5C0D13F7AE1D58E625932B00AD53F792B58900C93A1D5F97BD1D9605FCEAD51A ] BITS            C:\Windows\System32\qmgr.dll
12:15:44.0511 0x0640  BITS - ok
12:15:44.0528 0x0640  blbdrive - ok
12:15:44.0588 0x0640  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:15:44.0614 0x0640  Bonjour Service - ok
12:15:44.0660 0x0640  [ 913CD06FBE9105CE6077E90FD4418561, EC0ECE5A0DBCD8DC1B202517902D90FF0FC0F3875557828BFA079DDE92EF6F5D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:15:44.0663 0x0640  bowser - ok
12:15:44.0711 0x0640  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
12:15:44.0713 0x0640  BrFiltLo - ok
12:15:44.0736 0x0640  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
12:15:44.0738 0x0640  BrFiltUp - ok
12:15:44.0766 0x0640  [ BEB6470532B7461D7BB426E3FACB424F, 16439FD066EBBFF3F469FD5EC3A2FCAEC47DE9737A7DE93DA344EC4E2180D2F0 ] Browser         C:\Windows\System32\browser.dll
12:15:44.0770 0x0640  Browser - ok
12:15:44.0805 0x0640  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
12:15:44.0809 0x0640  Brserid - ok
12:15:44.0845 0x0640  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
12:15:44.0848 0x0640  BrSerWdm - ok
12:15:44.0883 0x0640  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
12:15:44.0900 0x0640  BrUsbMdm - ok
12:15:44.0924 0x0640  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
12:15:44.0926 0x0640  BrUsbSer - ok
12:15:44.0966 0x0640  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:15:44.0969 0x0640  BTHMODEM - ok
12:15:45.0036 0x0640  [ 6C3A437FC873C6F6A4FC620B6888CB86, B316A1ABCDF74597C555B86A05DDED3B3F49F9D3B26D06AB312426C0A08B1AF6 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:15:45.0040 0x0640  cdfs - ok
12:15:45.0059 0x0640  [ 8D1866E61AF096AE8B582454F5E4D303, 4506E77C727E1B4CAD24CAFB4654CFE82872621D25BB30B730F746AA80A14B84 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:15:45.0064 0x0640  cdrom - ok
12:15:45.0128 0x0640  [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:15:45.0146 0x0640  CertPropSvc - ok
12:15:45.0187 0x0640  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:15:45.0209 0x0640  circlass - ok
12:15:45.0319 0x0640  [ 1B84FD0937D3B99AF9BA38DDFF3DAF54, 2ECF54240673F4518ECD7C9FE5CAA171CE64B5F293FA8C6C66A8AA65A35A9080 ] CLFS            C:\Windows\system32\CLFS.sys
12:15:45.0345 0x0640  CLFS - ok
12:15:45.0445 0x0640  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:15:45.0450 0x0640  clr_optimization_v2.0.50727_32 - ok
12:15:45.0501 0x0640  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:15:45.0627 0x0640  clr_optimization_v4.0.30319_32 - ok
12:15:45.0656 0x0640  [ DFB94A6FC3A26972B0461AB5F1D8272B, E55F8A8661EFBD8AAC202C02E9CA970BB0297786C6FF5E4D4E3CC67706E82FAE ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:15:45.0658 0x0640  cmdide - ok
12:15:45.0714 0x0640  [ 82B8C91D327CFECF76CB58716F7D4997, 6F06A4BC44B170BB28BF464E9BB5216D39D11CB8D442570B575A741B032EAEE6 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
12:15:45.0716 0x0640  Compbatt - ok
12:15:45.0728 0x0640  COMSysApp - ok
12:15:45.0752 0x0640  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:15:45.0755 0x0640  crcdisk - ok
12:15:45.0784 0x0640  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
12:15:45.0786 0x0640  Crusoe - ok
12:15:45.0864 0x0640  [ 1C26FB097170A2A91066D1E3A24366E3, 277B8EBBAFA038C355B52CF32F390E057BCA5992EC0C5778F60C53CB0AA10777 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:15:45.0870 0x0640  CryptSvc - ok
12:15:46.0018 0x0640  [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:15:46.0078 0x0640  DcomLaunch - ok
12:15:46.0115 0x0640  [ A7179DE59AE269AB70345527894CCD7C, 6AA67F34C7349B8B7EFA6E6C143DDA08F80D8D027E2E1AC41490E351C22BFA5B ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:15:46.0122 0x0640  DfsC - ok
12:15:46.0281 0x0640  [ E0D584AA76C7D845BA9F3A788260528F, 5C3C3C95DF1BA8A32EC848B695793D44E7DF8BEA0BC3B91D54751CC20317EC22 ] DFSR            C:\Windows\system32\DFSR.exe
12:15:46.0381 0x0640  DFSR - ok
12:15:46.0443 0x0640  [ DC45739BC22D528D2B3E50D3F6761750, A19AF7E001CF2BE0A2164435F6FDE5D9ABBBB697F1D0FE90DD7DF72AE564996F ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
12:15:46.0460 0x0640  Dhcp - ok
12:15:46.0489 0x0640  [ 841AF4C4D41D3E3B2F244E976B0F7963, 304920DB44B88881FE4FDC892CC8D529E16FE5E6AEA548BDFD4507DF0A1BF8C1 ] disk            C:\Windows\system32\drivers\disk.sys
12:15:46.0493 0x0640  disk - ok
12:15:46.0558 0x0640  [ 0659E6E0A95564F958D9DF7313F7701E, CDE805D797853D37149678A5A9BE9B5C8F637F5629AAAE9545509E5686F87C20 ] DLABMFSM        C:\Windows\system32\DLA\DLABMFSM.SYS
12:15:46.0561 0x0640  DLABMFSM - ok
12:15:46.0571 0x0640  [ 8691C78908F0BD66170669DB268369F2, 7CEDECA3C6A4BBC3195589D7B6A7B9C9F2D8CD4D0513B055C55B867FB14EB58F ] DLABOIOM        C:\Windows\system32\DLA\DLABOIOM.SYS
12:15:46.0574 0x0640  DLABOIOM - ok
12:15:46.0602 0x0640  [ 5230CDB7E715F3A3B4A882E254CDD35D, 0D6A88DE30A75FAD5FF535468DF56A33E4695C619BFDD7E142AC4516A7878E52 ] DLACDBHM        C:\Windows\system32\Drivers\DLACDBHM.SYS
12:15:46.0604 0x0640  DLACDBHM - ok
12:15:46.0621 0x0640  [ 5615744A1056933B90E6AC54FEB86F35, 4A7A34E01F829C1E3430166CCBB604490D0A61E39ED9F5B663DFD46DA6C7CE4B ] DLADResM        C:\Windows\system32\DLA\DLADResM.SYS
12:15:46.0623 0x0640  DLADResM - ok
12:15:46.0642 0x0640  [ 1AECA2AFA5005CE4A550CF8EB55A8C88, E42DCC29F2D5FE811BC4200D676EC60D8FDB9F86C9204B14754B496E8D8E6E28 ] DLAIFS_M        C:\Windows\system32\DLA\DLAIFS_M.SYS
12:15:46.0647 0x0640  DLAIFS_M - ok
12:15:46.0659 0x0640  [ 840E7F6ABB885C72B9FFDDB022EF5B6D, 4F2CF773652E93E9DA5A57BAF505190B608D96923E00B7A589294E2D1EEEC115 ] DLAOPIOM        C:\Windows\system32\DLA\DLAOPIOM.SYS
12:15:46.0661 0x0640  DLAOPIOM - ok
12:15:46.0676 0x0640  [ 0294D18731AC05DA80132CE88F8A876B, 913CFA7D0868E1C95F116B2C583803E9138BAA5A52524F0D26026B1661C20392 ] DLAPoolM        C:\Windows\system32\DLA\DLAPoolM.SYS
12:15:46.0678 0x0640  DLAPoolM - ok
12:15:46.0687 0x0640  [ 91886FED52A3F9966207BCE46CFD794F, 808425C5ECA163626ED23EC0BB203C77870932C23AD9FEEB39FE907314BB3997 ] DLARTL_M        C:\Windows\system32\Drivers\DLARTL_M.SYS
12:15:46.0690 0x0640  DLARTL_M - ok
12:15:46.0707 0x0640  [ CCA4E121D599D7D1706A30F603731E59, 2776BB5384A210184F0BEC0A3CBC1076BEBEAE00D74D4D6B7CED5711291BBB9E ] DLAUDFAM        C:\Windows\system32\DLA\DLAUDFAM.SYS
12:15:46.0712 0x0640  DLAUDFAM - ok
12:15:46.0731 0x0640  [ 7DAB85C33135DF24419951DA4E7D38E5, 87FC6BD347C7DC68130FDE862389DD0B9321FB51D5ED62B39985EA4437486EDA ] DLAUDF_M        C:\Windows\system32\DLA\DLAUDF_M.SYS
12:15:46.0736 0x0640  DLAUDF_M - ok
12:15:46.0769 0x0640  [ EECBA1DD142BF8693C476BE8F32FE253, 93241BD6F4E2D6F27BD5ED2F38C26AED7A666161F64C28A44E6608C7D1DF0D40 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:15:46.0774 0x0640  Dnscache - ok
12:15:46.0833 0x0640  [ 1F795D214820E496BF1124434A6DB546, FC10DEF5A4A81540B347C54D7BE5C7D11F8E407AD28FD91E7CBAC15864FCC389 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:15:46.0850 0x0640  dot3svc - ok
12:15:46.0887 0x0640  [ 032C90AD677BF7B7A8013D6087C7A921, 99CC6F49FCE59550E48CF86BEE91F15E9D108AA5FBCF903AC997E404ABF6AF46 ] DPS             C:\Windows\system32\dps.dll
12:15:46.0893 0x0640  DPS - ok
12:15:46.0948 0x0640  [ EE472CD2C01F6F8E8AA1FA06FFEF61B6, 03C6E0033C05120431FA2A02E206C458C4E1F18E511B1AA7F1867226617AB660 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:15:46.0950 0x0640  drmkaud - ok
12:15:46.0967 0x0640  [ C00440385CF9F3D142917C63F989E244, 5DD3684D3C6DE4E9C82778C4097E9017E1DB0617DDD1D04831263B1E390B2D08 ] DRVMCDB         C:\Windows\system32\Drivers\DRVMCDB.SYS
12:15:46.0972 0x0640  DRVMCDB - ok
12:15:46.0984 0x0640  [ FFC371525AA55D1BAE18715EBCB8797C, 4894F67772CEB0143B5DAFE10B42D90727E36A58B02F6221E83CE4CFD26E32B6 ] DRVNDDM         C:\Windows\system32\Drivers\DRVNDDM.SYS
12:15:46.0987 0x0640  DRVNDDM - ok
12:15:47.0024 0x0640  [ 01D5B95D0A12A916BBDC258629113258, 240E635CE48629729CF43F298C89DB959EB507436FE9B8D3EA5BC79E8CB99264 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
12:15:47.0028 0x0640  DSBrokerService - ok
12:15:47.0063 0x0640  [ 413F2D5F9D802688242C23B38F767ECB, 6D5B6B8FC6E8E45555C444D3E881D3E44DE4C6F2602ADBB4D0E8E9F834089827 ] DSproct         C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
12:15:47.0065 0x0640  DSproct - ok
12:15:47.0074 0x0640  [ 64FA28C15DD71A80BEF3527E1EF07DF6, 0E165303E7D6D2391E150910EBF5ABD83D171ABB463FE5FACB1081FA6D9A47B8 ] dsunidrv        C:\Program Files\DellSupport\Drivers\dsunidrv.sys
12:15:47.0077 0x0640  dsunidrv - ok
12:15:47.0167 0x0640  [ 334988883DE69ADB27E2CF9F9715BBDB, ECDF29DECF577784BEE37A175BDEE8793F314E3BF35109A7D44017DC9B0E868B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:15:47.0215 0x0640  DXGKrnl - ok
12:15:47.0274 0x0640  [ 7505290504C8E2D172FA378CC0497BCC, 8DD69E1B27EC13E62529C87B6B796675681E6329C825E64EEC9134B15C08161C ] e1express       C:\Windows\system32\DRIVERS\e1e6032.sys
12:15:47.0291 0x0640  e1express - ok
12:15:47.0357 0x0640  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
12:15:47.0363 0x0640  E1G60 - ok
12:15:47.0390 0x0640  [ 90A0A875642E18618010645311B4E89E, 499C6A29E3FEF3A1AC08DDDD00623AB93ACBB1511A0BFF004C4D4795B402412C ] EapHost         C:\Windows\System32\eapsvc.dll
12:15:47.0393 0x0640  EapHost - ok
12:15:47.0464 0x0640  [ 0EFC7531B936EE57FDB4E837664C509F, 47F6D5380DA44514C1C13BFAF8227FBF356B14C46C45EC66C9E1431C4CFC85E3 ] Ecache          C:\Windows\system32\drivers\ecache.sys
12:15:47.0470 0x0640  Ecache - ok
12:15:47.0560 0x0640  [ 792F72E8B63DF55CE98445D464874986, 4943113181D35157A1649097DD909E37072490D3ADA03FFCA2AC104DD1EED6A3 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:15:47.0577 0x0640  ehRecvr - ok
12:15:47.0627 0x0640  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
12:15:47.0633 0x0640  ehSched - ok
12:15:47.0645 0x0640  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
12:15:47.0647 0x0640  ehstart - ok
12:15:47.0691 0x0640  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:15:47.0708 0x0640  elxstor - ok
12:15:47.0757 0x0640  [ 3226FDA08988526E819E364E8CCE4CEE, EFFEC5C44A7AC0B82C77E354C818BD700B4DBE69B345A81F2652BFA87D6FBE4F ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
12:15:47.0790 0x0640  EMDMgmt - ok
12:15:47.0877 0x0640  [ 7B4971C3D43525175A4EA0D143E0412E, D61D19F1A7CDDF1130F48255EE77B95183125E01A05DDE0F96FDE8DF697277A0 ] EventSystem     C:\Windows\system32\es.dll
12:15:47.0894 0x0640  EventSystem - ok
12:15:47.0907 0x0640  [ 84A317CB0B3954D3768CDCD018DBF670, 96AEFEE67D467A83BC10B72A097C8B296F7FEDFA8F4CB69C6D385713952C2AF2 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:15:47.0914 0x0640  fastfat - ok
12:15:47.0980 0x0640  [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:15:47.0983 0x0640  fdc - ok
12:15:48.0033 0x0640  [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1, 84555C567D4E728A7250D530518BF228E596E1CDE248D587C61634CC13EAC0BC ] fdPHost         C:\Windows\system32\fdPHost.dll
12:15:48.0035 0x0640  fdPHost - ok
12:15:48.0081 0x0640  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:15:48.0083 0x0640  FDResPub - ok
12:15:48.0122 0x0640  [ 65773D6115C037FFD7EF8280AE85EB9D, 71C7DDB71C9AA859B7DDCE01430E4913E58C928B22A46662A913209F5EC68120 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:15:48.0126 0x0640  FileInfo - ok
12:15:48.0158 0x0640  [ C226DD0DE060745F3E042F58DCF78402, 9C67A5AC809B462EF97519DD2B0AC966915F9AF9F4DE82BEEB71B7321AAB892C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:15:48.0160 0x0640  Filetrace - ok
12:15:48.0362 0x0640  [ 7E76EED28B8B8696B7F7ED5F757AA304, 4D42711B63F90FF9AF3D6C8E4EDB3FF08CAB6FE5131D9A43F4D10D1CA51F7378 ] FileZilla Server C:\Program Files\FileZilla Server\FileZilla Server.exe
12:15:48.0413 0x0640  FileZilla Server - ok
12:15:48.0442 0x0640  [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:15:48.0447 0x0640  flpydisk - ok
12:15:48.0488 0x0640  [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3, C1007CB38F97AEE4B7A5A4E83A224F53EE59AFDA61A091960F6E1EB70E33E5C8 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:15:48.0505 0x0640  FltMgr - ok
12:15:48.0579 0x0640  [ C9BE08664611DDAF98E2331E9288B00B, C645DDAB5FD588486553DF2DD5750AF5A967FEE988F4EB29E05362E3362DF4A2 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:15:48.0583 0x0640  FontCache3.0.0.0 - ok
12:15:48.0608 0x0640  [ 66A078591208BAA210C7634B11EB392C, 5C101E10CF8E576352CAC1D059D5938251185D1CCB824645AC1471D9C90EC183 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:15:48.0610 0x0640  Fs_Rec - ok
12:15:48.0642 0x0640  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:15:48.0645 0x0640  gagp30kx - ok
12:15:48.0733 0x0640  [ 1FDA0DF739234C4023851A282DD28704, 993187336366C53B125A989DD264506B000AA65789C1B6907DF85CFC64E894C7 ] GameConsoleService C:\Program Files\Dell Games\Dell Game Console\GameConsoleService.exe
12:15:48.0750 0x0640  GameConsoleService - ok
12:15:48.0810 0x0640  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\Drivers\GEARAspiWDM.sys
12:15:48.0812 0x0640  GEARAspiWDM - ok
12:15:48.0867 0x0640  [ BCF6589C42D8F6A20F33EF133FFE0524, E3F82E90BCB58489E2D77F16163B888A0D9BC5D357AA929076027965E97DB5CA ] gpsvc           C:\Windows\System32\gpsvc.dll
12:15:48.0901 0x0640  gpsvc - ok
12:15:49.0043 0x0640  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
12:15:49.0048 0x0640  gupdate - ok
12:15:49.0091 0x0640  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
12:15:49.0099 0x0640  gupdatem - ok
12:15:49.0194 0x0640  [ 481AC8EFA93C95AB1FD7A18F23C1CB1A, 148396CF3A999402695E0FEFA1AFAA8262E36A4CD81C8B7AA276FA1E21B07A4B ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
12:15:49.0203 0x0640  gusvc - ok
12:15:49.0234 0x0640  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:15:49.0276 0x0640  HdAudAddService - ok
12:15:49.0326 0x0640  [ 0DB613A7E427B5663563677796FD5258, 82D50E0571196A8645B4F67274990BD7AA406F913534505D296AD3BAA0BBF1E8 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:15:49.0329 0x0640  HDAudBus - ok
12:15:49.0383 0x0640  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:15:49.0385 0x0640  HidBth - ok
12:15:49.0407 0x0640  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:15:49.0410 0x0640  HidIr - ok
12:15:49.0440 0x0640  [ 8FA640195279ACE21BEA91396A0054FC, 20541E5FA29B3FBD8824F3DF93C7D63AFEE56948F82FFDE20E9E87F5C0A3A789 ] hidserv         C:\Windows\System32\hidserv.dll
12:15:49.0443 0x0640  hidserv - ok
12:15:49.0470 0x0640  [ 3C64042B95E583B366BA4E5D2450235E, B431F9692D66188AFEE372F312581178B14F49D763F8D1100D264623A239002A ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:15:49.0473 0x0640  HidUsb - ok
12:15:49.0526 0x0640  [ CE77439BAF613019D6B7658292D1E4A6, EF0BCD841FB884F409102DED41EEB4B9E093B3B2FF9C2D932CE581767D892007 ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
12:15:49.0530 0x0640  hitmanpro37 - ok
12:15:49.0575 0x0640  [ D40AA05E29BF6ED29B139F044B461E9B, 052C07B7E0B082EA8E9E35A69855436A9E1BAA1B7C1A4AB5830C246158D863C5 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:15:49.0583 0x0640  hkmsvc - ok
12:15:49.0665 0x0640  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
12:15:49.0669 0x0640  HpCISSs - ok
12:15:49.0767 0x0640  [ 53229DCF431D76434816CD29251168A0, F27EF06B23F14C1D041275E8C1F9238151D81CFDBB6D58B2657BA3303CDEB7E1 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
12:15:49.0812 0x0640  HSF_DPV - ok
12:15:49.0858 0x0640  [ ED98350ECD4A5A9C9F1E641C09872BB2, 6515D4DBCDC7CAAD84CAC4034F69EA389DA192FDD20D870C87822AA4EE19FF2C ] HSXHWBS2        C:\Windows\system32\DRIVERS\HSXHWBS2.sys
12:15:49.0876 0x0640  HSXHWBS2 - ok
12:15:49.0946 0x0640  [ EA24FE637D974A8A31BC650F478E3533, 2B754B4AFD89325A1E7B0EC9FCE110B87F5F2A9DCE72855AC812C3286887E4D9 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:15:50.0005 0x0640  HTTP - ok
12:15:50.0048 0x0640  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
12:15:50.0050 0x0640  i2omp - ok
12:15:50.0147 0x0640  [ 1C9EE072BAA3ABB460B91D7EE9152660, 516436E905AA00C2826CC910EFA8C13005C11B66D1E415584189616BF91C4AA5 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:15:50.0152 0x0640  i8042prt - ok
12:15:50.0186 0x0640  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
12:15:50.0203 0x0640  iaStorV - ok
12:15:50.0327 0x0640  [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
12:15:50.0332 0x0640  IDriverT - ok
12:15:50.0582 0x0640  [ 7B630ACAED64FEF0C3E1CF255CB56686, 9DCC6953BC6EF77C3916F8AA226CEC0662513A23AB60E9F714D53746E82FB372 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:15:50.0649 0x0640  idsvc - ok
12:15:50.0685 0x0640  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:15:50.0688 0x0640  iirsp - ok
12:15:50.0757 0x0640  [ 35662FE4D8622F667AA5A5568F7F1B40, 1BE7B8D5E5E4E4D9E8ECC697AACF3C6EDB390051A2C18B7DCF63B337343B76D6 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:15:50.0834 0x0640  IKEEXT - ok
12:15:50.0967 0x0640  [ 24EA4E2F76E216CE70353736E3556585, 6906CAE337E4E149FD2056F787B39CA7CF0EAAEF14846B2A9C8741DAFD040468 ] IMFservice      C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
12:15:51.0017 0x0640  IMFservice - ok
12:15:51.0077 0x0640  [ 1C60617D54BC9F035671A44B75D9F7CC, 8E8E3B8FC0BD88042BA9641E5E7A4D045A41DD8378A41910A58203C044251D11 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:15:51.0081 0x0640  intelide - ok
12:15:51.0142 0x0640  [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:15:51.0147 0x0640  intelppm - ok
12:15:51.0185 0x0640  [ 88CF5281ED9880D74DC9011CF8B5262D, 8DC118BE00235A6FD490D2FD9E8FDB90E7FA25DC8A91C78839AA8A1DC42F8C37 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:15:51.0189 0x0640  IPBusEnum - ok
12:15:51.0238 0x0640  [ 880C6F86CC3F551B8FEA2C11141268C0, 0BB04C193BF8FCC6F5B78C6A027CD09F9BE25523974C8000936394C73059243D ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:15:51.0240 0x0640  IpFilterDriver - ok
12:15:51.0291 0x0640  [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6, 96AD0EBDB112082FE4310B35B4DE448182C332E7F11ADD019E926768D10B7E66 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:15:51.0308 0x0640  iphlpsvc - ok
12:15:51.0315 0x0640  IpInIp - ok
12:15:51.0350 0x0640  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
12:15:51.0354 0x0640  IPMIDRV - ok
12:15:51.0377 0x0640  [ 10077C35845101548037DF04FD1A420B, D45110C3D38739787E1A7E6DC70E1543BD9BA069507F684BD0791FADA18DE7D1 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
12:15:51.0382 0x0640  IPNAT - ok
12:15:51.0472 0x0640  [ B21735A057ED5C2811B45DFCE067F4CD, 69D99AB0E5DA580012B6FA634A2DE34A9080411A96C93B6B9A3DC31D4B30BAE3 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:15:51.0507 0x0640  iPod Service - ok
12:15:51.0536 0x0640  [ A82F328F4792304184642D6D397BB1E3, 02ED64261ACEFAC38D1F2BE6160F92379D23EBB90CF97DB58237EA8F0510F571 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:15:51.0538 0x0640  IRENUM - ok
12:15:51.0556 0x0640  [ 2F8ECE2699E7E2070545E9B0960A8ED2, 40214A9220C6EC232C245939E4F40A9FF6D30497E180EDC809B87938A922E52D ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:15:51.0560 0x0640  isapnp - ok
12:15:51.0608 0x0640  [ 4DCA456D4D5723F8FA9C6760D240B0DF, 812BC60CAEB70DA93A95F360755151863AAF264C0B519BD5342D08214D012F0C ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:15:51.0633 0x0640  iScsiPrt - ok
12:15:51.0660 0x0640  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
12:15:51.0662 0x0640  iteatapi - ok
12:15:51.0698 0x0640  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
12:15:51.0701 0x0640  iteraid - ok
12:15:51.0728 0x0640  [ B076B2AB806B3F696DAB21375389101C, DBD7F6C303CD61EAB3935A702D9499D37801ED0088ED263E5EDA0C2D6DFE792C ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:15:51.0730 0x0640  kbdclass - ok
12:15:51.0791 0x0640  [ ED61DBC6603F612B7338283EDBACBC4B, E43F2AEC4F0462BCD74B68682A3E8E6C3B3C24F043CC1603BBA200416581E080 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:15:51.0794 0x0640  kbdhid - ok
12:15:51.0851 0x0640  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] KeyIso          C:\Windows\system32\lsass.exe
12:15:51.0856 0x0640  KeyIso - ok
12:15:51.0904 0x0640  [ 0A829977B078DEA11641FC2AF87CEADE, C22CFDEAB8A75073BA965313609F0E2393692ABD4D48587382101DA785A7622D ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:15:51.0938 0x0640  KSecDD - ok
12:15:51.0998 0x0640  [ 45C537FE5DDE9A0146AEFF76E615737D, F4B0DCB5FD8731E34EB4BF18B509A9D7837F9D96B3F22D056A941480D341B0EC ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:15:52.0015 0x0640  KtmRm - ok
12:15:52.0048 0x0640  [ 53D1482FC1AA36AC015A85E6CF2146BD, AD764237410A7D1B7016D421C160644CCFFBC5F42FD53B179D30BF7E50346B4D ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:15:52.0055 0x0640  LanmanServer - ok
12:15:52.0123 0x0640  [ 435F0F6DC87A4B5DA78F1FA309884189, 4ABCE3AA0ED9D36E3439AABFB086B05A09A567E2BEA3714F984D1400DE743516 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:15:52.0140 0x0640  LanmanWorkstation - ok
12:15:52.0174 0x0640  [ FD015B4F95DAA2B712F0E372A116FBAD, A73D472276FE0EF0AC273FB04EEA168C3FF5D62AEB3FB5A22B028BFDEF6F3CDF ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:15:52.0177 0x0640  lltdio - ok
12:15:52.0223 0x0640  [ 7450DBCF754391DD6363FFFD5EF0E789, CD571803825C23D32E43D84376B68FC2B71FDA3A89931CBB6AFE84D0FAD8C2F1 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:15:52.0257 0x0640  lltdsvc - ok
12:15:52.0286 0x0640  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:15:52.0291 0x0640  lmhosts - ok
12:15:52.0339 0x0640  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:15:52.0345 0x0640  LSI_FC - ok
12:15:52.0374 0x0640  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:15:52.0382 0x0640  LSI_SAS - ok
12:15:52.0437 0x0640  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:15:52.0443 0x0640  LSI_SCSI - ok
12:15:52.0481 0x0640  [ 42885BB44B6E065B8575A8DD6C430C52, BC7013C7902C64D4B443D517F358FF264795F638EF30B664E51C2D55C80D39A3 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:15:52.0485 0x0640  luafv - ok
12:15:52.0569 0x0640  [ 3C7B3072C3C5CC23F5FD46F8DFDA7480, E685963025BA3C0A4D1C806C0563B224BC976CA4C99FBCDCF22EDA30B11A596A ] massfilter_hs   C:\Windows\system32\drivers\massfilter_hs.sys
12:15:52.0571 0x0640  massfilter_hs - ok
12:15:52.0649 0x0640  [ 0DB7527DB188C7D967A37BB51BBF3963, 3812E26626EC49BE61B0B8DA5FE6E838C0FEF8A08363C239F64E6CCA0BA949D5 ] MBAMSwissArmy   C:\Windows\system32\drivers\mbamswissarmy.sys
12:15:52.0653 0x0640  MBAMSwissArmy - ok
12:15:52.0676 0x0640  [ E93C1AD58E88A0846EAEE10671C2A8F3, 6635BFBD6F2D6EDCE00A95A105E90E09965C9C4798949105B48EE46189C3E8E0 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:15:52.0681 0x0640  Mcx2Svc - ok
12:15:52.0707 0x0640  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
12:15:52.0709 0x0640  mdmxsdk - ok
12:15:52.0755 0x0640  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:15:52.0758 0x0640  megasas - ok
12:15:52.0801 0x0640  [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] MMCSS           C:\Windows\system32\mmcss.dll
12:15:52.0805 0x0640  MMCSS - ok
12:15:52.0853 0x0640  [ 21755967298A46FB6ADFEC9DB6012211, 3F83BA0D0ED6D40CB4A62A41722F6FDB8C34DF7B0C115FFE7D0EA12E1D4B4EFD ] Modem           C:\Windows\system32\drivers\modem.sys
12:15:52.0856 0x0640  Modem - ok
12:15:52.0897 0x0640  [ 7446E104A5FE5987CA9E4983FBAC4F97, 61EDE5042718C12BFC8337D71C924D86FE7357E25182E1FDE25C73719FC7F3BD ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:15:52.0900 0x0640  monitor - ok
12:15:52.0965 0x0640  [ 5FBA13C1A1841B0885D316ED3589489D, 16CAB611D0C3C38138164A7452E826091A57E51149A4DBA8B1E7D8979A37CD9A ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:15:52.0969 0x0640  mouclass - ok
12:15:53.0045 0x0640  [ B569B5C5D3BDE545DF3A6AF512CCCDBA, 4B6EC4E78EDC847EFA69A358718C8466356131D6CF8472BE65E43DD871173D3C ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:15:53.0048 0x0640  mouhid - ok
12:15:53.0068 0x0640  [ 01F1E5A3E4877C931CBB31613FEC16A6, 7312C41A8188BAEBF6E3216B74F7698EFD1E80F77E7BB051B34AB14FB84E4130 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
12:15:53.0073 0x0640  MountMgr - ok
12:15:53.0131 0x0640  [ 24406D75B40F0F6B3C1AC7031D734565, B58AA80E9C3738CFD826D7C8129D5467166A4397CCFEEEF7F14542DEBB659A51 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
12:15:53.0191 0x0640  MpFilter - ok
12:15:53.0241 0x0640  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:15:53.0248 0x0640  mpio - ok
12:15:53.0290 0x0640  [ 6E7A7F0C1193EE5648443FE2D4B789EC, 56F37438B3252D5385C324A87D472D355572D339C5A27954106D51AF5AD3CE17 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:15:53.0294 0x0640  mpsdrv - ok
12:15:53.0338 0x0640  [ 563ED845885C6A7C09A7715D8BD0585C, 3A8B12D63AA7EBB51331DDF40077E156CCC225FE6FF0630BFAFD6D008988DC58 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:15:53.0363 0x0640  MpsSvc - ok
12:15:53.0396 0x0640  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
12:15:53.0399 0x0640  Mraid35x - ok
12:15:53.0444 0x0640  [ 1D8828B98EE309D65E006F0829E280E5, F53FB67D73788E0B38CFEA4FE9CA79B778C2AD383EA2D61A3AC935C722336E79 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:15:53.0449 0x0640  MRxDAV - ok
12:15:53.0480 0x0640  [ 8AF705CE1BB907932157FAB821170F27, 9C0B0E1F7E366372186BC3D40CA2F1513A9613576F024334ED5C65BCD230BC3A ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:15:53.0485 0x0640  mrxsmb - ok
12:15:53.0529 0x0640  [ 47E13AB23371BE3279EEF22BBFA2C1BE, EE878AD816AD9E0544E00D92CC017930C458179D0E2A396117611B7B81D4DB2C ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:15:53.0538 0x0640  mrxsmb10 - ok
12:15:53.0549 0x0640  [ 90B3FC7BD6B3D7EE7635DEBBA2187F66, 879255516B5BBE7C86081DAEB8EDCC8659299019E3C912FD1F7B02B2C78F22D2 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:15:53.0552 0x0640  mrxsmb20 - ok
12:15:53.0586 0x0640  [ F0EC3A4E0693A34B148723B4DA31668C, 96D8730D94F15FB2C54DAD8298C8CA1075373CFC04FE62FA9123D28575E987FC ] msahci          C:\Windows\system32\drivers\msahci.sys
12:15:53.0588 0x0640  msahci - ok
12:15:53.0612 0x0640  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:15:53.0616 0x0640  msdsm - ok
12:15:53.0646 0x0640  [ BC64A92D821EFEA8BAB8E8CAF1B668BC, 3ADC299529AE377D4C131772C9A31E668C3F6BFADD45D01D11501F859536A4F3 ] MSDTC           C:\Windows\System32\msdtc.exe
12:15:53.0653 0x0640  MSDTC - ok
12:15:53.0691 0x0640  [ 729EAFEFD4E7417165F353A18DBE947D, 2C2D9A0F5075C372A63D8D3C9CAAA9D57691703506C9F508F05C01727555AC5A ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:15:53.0694 0x0640  Msfs - ok
12:15:53.0715 0x0640  [ 207DF26DBB2537C20276DA0E15892274, 3871E68EB19EDF5F021747B6EFF7B3EAA86D7E2BE61DB537CC91FBDAD0A530F8 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:15:53.0717 0x0640  msisadrv - ok
12:15:53.0788 0x0640  [ 8ACF956D9154E893E789881430C12632, 222C2F957E69A8FEC1CBBF47D43DE1A3A0EBE3E8888A12862BF1ECCBFD61021D ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:15:53.0794 0x0640  MSiSCSI - ok
12:15:53.0802 0x0640  msiserver - ok
12:15:53.0897 0x0640  [ 892CEDEFA7E0FFE7BE8DA651B651D047, A5FDD8D6CC5B1FEE643BA44A4596F2F1C066240A503214B0B00F074DE76ED0D6 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:15:53.0899 0x0640  MSKSSRV - ok
12:15:53.0972 0x0640  [ 3EA6A1A744D79328AE7E2C6FAE4C4420, CB4F8F744B454FCC16D4C0D28126BC31B1B5C9F9FB5DAE3152D9B3B7F4165523 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:15:53.0999 0x0640  MsMpSvc - ok
12:15:54.0042 0x0640  [ AE2CB1DA69B2676B4CEE2A501AF5871C, 576F1F5F52B5E89F0046173BEF8FC870B2DAAEFAD276D16429AC2050FE04FB8E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:15:54.0065 0x0640  MSPCLOCK - ok
12:15:54.0109 0x0640  [ F910DA84FA90C44A3ADDB7CD874463FD, 8CBA93EE6AB074262DC48415927B077CCE0F7790BFEFF6F3BFD653C37C36BE57 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:15:54.0113 0x0640  MSPQM - ok
12:15:54.0168 0x0640  [ 84571C0AE07647BA38D493F5F0015DF7, A810B28957759EBF0616567C8550FB1D5FDABA65FC6A87CF45957370E48FF0DC ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:15:54.0185 0x0640  MsRPC - ok
12:15:54.0237 0x0640  [ 7DBAA028F625AA46B95DDA4FBE4B602B, 3B12BF7725B90A13CAE99CAACFDAB8C2875E54A06E07A66E316AC7EBFC3899EC ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:15:54.0242 0x0640  mssmbios - ok
12:15:54.0292 0x0640  [ C826DD1373F38AFD9CA46EC3C436A14E, B5BC1C7760BF4CC1AFC714CA9DFD1D75C2D3804D27F17DD08D1C5CF548F93042 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:15:54.0306 0x0640  MSTEE - ok
12:15:54.0360 0x0640  [ FA7AA70050CF5E2D15DE00941E5665E5, 177F19C4436203E028D07300B4C77F5160835C7E02DB8863E8D01F277A678606 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:15:54.0365 0x0640  Mup - ok
12:15:54.0459 0x0640  MySQL - ok
12:15:54.0516 0x0640  [ 1CDBB5D002FE2BC5300AA20550D8A52E, 86529AEE13545AADAA2F20C300059096F1663BE8A5A76740E9FEDEA26928A364 ] napagent        C:\Windows\system32\qagentRT.dll
12:15:54.0534 0x0640  napagent - ok
12:15:54.0610 0x0640  [ 6DA4A0FC7C0E83DF0CB3CFD0A514C3BC, 606449557E11AFD0C370EFD2D2566D58E0A6E90A590BF47779A077761E3FD682 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:15:54.0627 0x0640  NativeWifiP - ok
12:15:54.0697 0x0640  [ 227C11E1E7CF6EF8AFB2A238D209760C, C36E450DD54CE9DDF17C3E1240BFC9073D73B409C1E090EF65E80C1EA53A31A5 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:15:54.0738 0x0640  NDIS - ok
12:15:54.0775 0x0640  [ 81659CDCBD0F9A9E07E6878AD8C78D3F, CC62555E680B52541BE4B882BE9438A300EFF0F50D0632E430AF269D4224F5E9 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:15:54.0778 0x0640  NdisTapi - ok
12:15:54.0837 0x0640  [ 5DE5EE546BF40838EBE0E01CB629DF64, 2617B588338AB43E98BD1DDDB4725B9D422029120415FC98C3B37E906F109152 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:15:54.0839 0x0640  Ndisuio - ok
12:15:54.0874 0x0640  [ 397402ADCBB8946223A1950101F6CD94, 612F6D887CB4374BB762BEF24A826D69971EC22D98FB4C0AAA4CC4B367E11AA6 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:15:54.0880 0x0640  NdisWan - ok
12:15:54.0898 0x0640  [ 1B24FA907AF283199A81B3BB37E5E526, 0689F688B73DD521F6B31A81415E55628995D54458F628BC14F88296638162C7 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:15:54.0901 0x0640  NDProxy - ok
12:15:54.0944 0x0640  [ 9213AA35BCA94EB79D366DA254E4BDF5, 5E1C71BEB6CFFF5A6F149E9FE6E169D087A6CBE63A504FEE8D42170284952F85 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl.sys
12:15:54.0946 0x0640  Netaapl - ok
12:15:54.0955 0x0640  [ 356DBB9F98E8DC1028DD3092FCEEB877, BCCD66AE76DD6AAB0A7A83227329E7D9D05D7D1FD30CDB66B19EB166E9BAD8E5 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:15:54.0959 0x0640  NetBIOS - ok
12:15:54.0996 0x0640  [ E3A168912E7EEFC3BD3B814720D68B41, 0A8B74C07E8E410CD9ACCF8A44C6198D1E89888238C820C800EC0B1B3C5F7BC2 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
12:15:55.0013 0x0640  netbt - ok
12:15:55.0025 0x0640  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] Netlogon        C:\Windows\system32\lsass.exe
12:15:55.0028 0x0640  Netlogon - ok
12:15:55.0084 0x0640  [ 90A4DAE28B94497F83BEA0F2A3B77092, 9100B9312E92871AD634E373AC1EE8288A36F9E92A1390AF32B1C5B9419344A7 ] Netman          C:\Windows\System32\netman.dll
12:15:55.0101 0x0640  Netman - ok
12:15:55.0160 0x0640  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:15:55.0210 0x0640  NetMsmqActivator - ok
12:15:55.0227 0x0640  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:15:55.0236 0x0640  NetPipeActivator - ok
12:15:55.0277 0x0640  [ 7C5C3D9CEEE838856B828AB6F98A2857, BDFA0F43500E5E8A96EBF539B7E72E547E3EBCCD692A6C6B9452C1F25AD31471 ] netprofm        C:\Windows\System32\netprofm.dll
12:15:55.0303 0x0640  netprofm - ok
12:15:55.0323 0x0640  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:15:55.0332 0x0640  NetTcpActivator - ok
12:15:55.0365 0x0640  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:15:55.0374 0x0640  NetTcpPortSharing - ok
12:15:55.0413 0x0640  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:15:55.0419 0x0640  nfrd960 - ok
12:15:55.0466 0x0640  [ C424117A562F2DE37A42266894C79AEB, A027AE08E37058316C004D79D038149FF9E233C1ECCE1D672AB5FE55C3B2B3AD ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:15:55.0479 0x0640  NlaSvc - ok
12:15:55.0498 0x0640  [ 4F9832BEB9FAFD8CEB0E541F1323B26E, FE4B9FDA83F186405C9B4A001E8496CA3DB42B4B4695E80F6DF5946E509F50F0 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:15:55.0501 0x0640  Npfs - ok
12:15:55.0515 0x0640  [ 23B8201A363DE0E649FC75EE9874DEE2, B6C2E40E62E9B4DA9B4E152DC406BD2338BF820CB547D65B03BC2C64D5D84EB2 ] nsi             C:\Windows\system32\nsisvc.dll
12:15:55.0518 0x0640  nsi - ok
12:15:55.0537 0x0640  [ B488DFEC274DE1FC9D653870EF2587BE, A1F4B1D59BA49D760E9D7925FFE1180BE436376C79AFD04119BC0E0E95C69603 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:15:55.0540 0x0640  nsiproxy - ok
12:15:55.0617 0x0640  [ 37430AA7A66D7A63407ADC2C0D05E9F6, EC9B117C42F2905251A6D29C1C5DF883FFEB60CFF3497C07C306500F107E2565 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:15:55.0667 0x0640  Ntfs - ok
12:15:55.0733 0x0640  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
12:15:55.0735 0x0640  ntrigdigi - ok
12:15:55.0761 0x0640  [ EC5EFB3C60F1B624648344A328BCE596, 0416128AA53D8FF79D5AAC69A8D9CE86D929A1517FAE4644AB06FA2362BB63A5 ] Null            C:\Windows\system32\drivers\Null.sys
12:15:55.0763 0x0640  Null - ok
12:15:56.0376 0x0640  [ 9A77B1C13BCCEDDF78DFD7AFC25B4F5E, 88FA632754A20025F03FE0970C93F572055919F53C8A50E5DB6CF1EF7B00B7FD ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:15:57.0883 0x0640  nvlddmkm - ok
12:15:57.0963 0x0640  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:15:57.0968 0x0640  nvraid - ok
12:15:58.0008 0x0640  [ 4A5FCAB82D9BF6AF8A023A66802FE9E9, 1901DC75B1763F49AFD4E3FE67B52FE1BF99EC083F4F878557128EADCAF58C5C ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:15:58.0011 0x0640  nvstor - ok
12:15:58.0047 0x0640  [ DC5F166422BEEBF195E3E4BB8AB4EE22, C98539C12588A79ECAAA2CE50DCDDA801FB62AD401D7DA1056BE30F266F0E63B ] nvstor32        C:\Windows\system32\DRIVERS\nvstor32.sys
12:15:58.0052 0x0640  nvstor32 - ok
12:15:58.0290 0x0640  [ 31B8835B003CAA6D31BEAD83DDBF98E5, FB7C7BD1E95BEFB9A8FFEB3FB1B6D9BCD923E48498CB23169EDAA025C84CDD33 ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:15:58.0338 0x0640  nvsvc - ok
12:15:58.0380 0x0640  [ 055081FD5076401C1EE1BCAB08D81911, E6621F2D24E7E2544AFD249660F2D1026B94698CA841E79B3F1199ACB2203995 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:15:58.0385 0x0640  nv_agp - ok
12:15:58.0393 0x0640  NwlnkFlt - ok
12:15:58.0403 0x0640  NwlnkFwd - ok
12:15:58.0454 0x0640  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:15:58.0458 0x0640  ohci1394 - ok
12:15:58.0525 0x0640  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
12:15:58.0558 0x0640  p2pimsvc - ok
12:15:58.0596 0x0640  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:15:58.0617 0x0640  p2psvc - ok
12:15:58.0652 0x0640  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
12:15:58.0656 0x0640  Parport - ok
12:15:58.0686 0x0640  [ 555A5B2C8022983BC7467BC925B222EE, D4E8B5FAF5F46F349B9C2554E7D8245808E3F7B86B40A547C37511E462838A89 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:15:58.0689 0x0640  partmgr - ok
12:15:58.0720 0x0640  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
12:15:58.0722 0x0640  Parvdm - ok
12:15:58.0750 0x0640  [ D8C5C215C932233A4F1D7F368F4E4E65, E3FFEFC98FCA95E2290A30EA13793514E0C490C49E7E242C49FE3EA9FD6D651A ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:15:58.0754 0x0640  PcaSvc - ok
12:15:58.0775 0x0640  [ BDD96F9CF34D58958AFF1BE6EF4C8020, 6C5240161184C4686CBB0A58B7B9E0677E45FB10733BD2A31EAAFF1A98ED416C ] pci             C:\Windows\system32\drivers\pci.sys
12:15:58.0781 0x0640  pci - ok
12:15:58.0812 0x0640  [ 20B869152448F80AC49CF10264E91F5E, 619D0E191493B136811FFC717BBC778688D9E386E874AF5A7A6D805D0A5CD4C0 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:15:58.0814 0x0640  pciide - ok
12:15:58.0857 0x0640  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:15:58.0919 0x0640  pcmcia - ok
12:15:59.0041 0x0640  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:15:59.0107 0x0640  PEAUTH - ok
12:15:59.0251 0x0640  [ CD05A38D166BEADE18030BAFC0C0A939, 4C310C4EA270FA5EDD268A5AA17713F5CD7AD526DB3AEA6C691772720BD16801 ] pla             C:\Windows\system32\pla.dll
12:15:59.0327 0x0640  pla - ok
12:15:59.0373 0x0640  [ 747BB4C31F3B6E8D1B5ED0AD61518CB5, 3B4075A24A46C4EE7322AF80F65C280F1A3AD0079DDFF77CC8523662225F01F5 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:15:59.0390 0x0640  PlugPlay - ok
12:15:59.0423 0x0640  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
12:15:59.0445 0x0640  PNRPAutoReg - ok
12:15:59.0479 0x0640  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
12:15:59.0499 0x0640  PNRPsvc - ok
12:15:59.0552 0x0640  [ 5EBDEC613BD377CE9A85382BE5C6B83B, 528D4DE5AAF113A6F3266EB018247EA46BD2581747DFBA1312D32AE37536E5A3 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:15:59.0577 0x0640  PolicyAgent - ok
12:15:59.0624 0x0640  [ 6C359AC71D7B550A0D41F9DB4563CE05, D23899AD8354C92FC025FD43DE80EEABB819EF3F0C0FC957C87D29B94B006E63 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:15:59.0628 0x0640  PptpMiniport - ok
12:15:59.0663 0x0640  [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor       C:\Windows\system32\drivers\processr.sys
12:15:59.0666 0x0640  Processor - ok
12:15:59.0716 0x0640  [ 213112E152E68F0E4705E36F052A2880, E5CB788E11DC01B82480FAAE8B1E122C075AA51144591189386C8EBB34197F06 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:15:59.0733 0x0640  ProfSvc - ok
12:15:59.0747 0x0640  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:15:59.0749 0x0640  ProtectedStorage - ok
12:15:59.0808 0x0640  [ 2C8BAE55247C4E09352E870292E4D1AB, 1AA43E8D62A71F4859ADEDAC90E7F3B73F6356EFA3C700E276C3F5EE58ED6804 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
12:15:59.0812 0x0640  PSched - ok
12:15:59.0863 0x0640  [ F7BB4E7A7C02AB4A2672937E124E306E, F6FB71B325A1661E233C76DA1E7ABE624B11CE2117D6BA8A29CDC2C7A79BFB40 ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
12:15:59.0866 0x0640  PxHelp20 - ok
12:15:59.0971 0x0640  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:16:00.0021 0x0640  ql2300 - ok
12:16:00.0073 0x0640  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:16:00.0078 0x0640  ql40xx - ok
12:16:00.0115 0x0640  [ CA61BDFD3713A7CE75F2812AFC431594, 42CAD3B8EADE4EDCC0F12869BA1B457E2B8712B796BDF1A5D231AF38D0CCF1FF ] QWAVE           C:\Windows\system32\qwave.dll
12:16:00.0131 0x0640  QWAVE - ok
12:16:00.0172 0x0640  [ D2B3E2B7426DC23E185FBC73C8936C12, 543B6341AB0224E122A341068D1199715C503E840A41A852764AA400CEF6D75F ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:16:00.0175 0x0640  QWAVEdrv - ok
12:16:00.0349 0x0640  [ E642B131FB74CAF4BB8A014F31113142, 18A81B27FB2DA556AC51DBA8956203A6E821D75B2B09F11049250E732318F573 ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
12:16:00.0454 0x0640  R300 - ok
12:16:00.0486 0x0640  [ BD7B30F55B3649506DD8B3D38F571D2A, CFDED547FEE24CC0F9CD32A96D4F445D44FCA908BB99AEE890C720142EF0D68B ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:16:00.0488 0x0640  RasAcd - ok
12:16:00.0518 0x0640  [ F14F4AAB9F54D099FE99192BDB100AC9, 68293A5B23F4B602142442B1FA57B678BE46FA89808B76FBA7EB875FE3AAC3D8 ] RasAuto         C:\Windows\System32\rasauto.dll
12:16:00.0524 0x0640  RasAuto - ok
12:16:00.0540 0x0640  [ 88587DD843E2059848995B407B67F6CF, C813C5FDCE2CEA211EC4C91FEA4B1D0EFF7459BFCD124D69EB19FDAEF61F690E ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:16:00.0545 0x0640  Rasl2tp - ok
12:16:00.0568 0x0640  [ 11D65E29BC9D1E4114D18FE68194394C, A2C6345D038E1EB954C0DFA4E5645DC1A78EDF7F0873BDFBE36E7CB047ECC33A ] RasMan          C:\Windows\System32\rasmans.dll
12:16:00.0579 0x0640  RasMan - ok
12:16:00.0597 0x0640  [ CCF4E9C6CBBAC81437F88CB2AE0B6C96, 20F877FAE1D4B592AEE9A20AFD32066F7DE838FEE3501C6F72C44D3F32BC6AE0 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:16:00.0600 0x0640  RasPppoe - ok
12:16:00.0632 0x0640  [ 54129C5D9581BBEC8BD1EBD3BA813F47, 8A19AEFF124F55A99EDE9693E5981F03343736E7924C28290DA10D3092D98675 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:16:00.0649 0x0640  rdbss - ok
12:16:00.0690 0x0640  [ 794585276B5D7FCA9F3FC15543F9F0B9, 71424462303DA4035301F7E66792116ED09856A1724BAACBB47060121EDCE77F ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:16:00.0692 0x0640  RDPCDD - ok
12:16:00.0737 0x0640  [ 0245418224CFA77BF4B41C2FE0622258, 532A8ABB476A1723FDD25A12EA07C97F2588F24D0AE6F86C0105112A9AECCDB9 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
12:16:00.0754 0x0640  rdpdr - ok
12:16:00.0785 0x0640  [ 980B56E2E273E19D3A9D72D5C420F008, 142CFC831C4E70494275AA483CDAB5F63997EA1977F1DD4AE25AFBD419ABFF62 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:16:00.0787 0x0640  RDPENCDD - ok
12:16:00.0832 0x0640  [ 8830E790A74A96605FABA74F9665BB3C, 3CD2CFE48026485A4D7F6C985BFAF716D8D4B566BE53EA67904FD18B1C8F8604 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:16:00.0857 0x0640  RDPWD - ok
12:16:00.0863 0x0640  RealNetworks Downloader Resolver Service - ok
12:16:00.0913 0x0640  [ 6C1A43C589EE8011A1EBFD51C01B77CE, 61206F6AD4BBE241DBB948D48364898118BEA6E289EDD3141FD57B61ED62BB52 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:16:00.0918 0x0640  RemoteAccess - ok
12:16:00.0973 0x0640  [ 9A043808667C8C1893DA7275AF373F0E, 4317B975305F2FD6696A2227FA30214406179D9BB9898390A0FA2663AD27CBCF ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:16:00.0980 0x0640  RemoteRegistry - ok
12:16:01.0076 0x0640  [ EBCDE8B48FADC6479D96A56D0A432160, 2F73D8656A929321D8B651FCFF55DFF5F90489CE9BEB7BB7DC3C7444D9A3C0FD ] RoxMediaDB9     C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
12:16:01.0119 0x0640  RoxMediaDB9 - ok
12:16:01.0153 0x0640  [ AB2B1DE1C8F31EFCE2384B14B3DC4260, 5E67354010A19726810C172775C39C9A9AD3AAE1EB09CF2C552473D75ABD01BD ] RoxWatch9       C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
12:16:01.0179 0x0640  RoxWatch9 - ok
12:16:01.0210 0x0640  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
12:16:01.0213 0x0640  RpcLocator - ok
12:16:01.0292 0x0640  [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] RpcSs           C:\Windows\system32\rpcss.dll
12:16:01.0326 0x0640  RpcSs - ok
12:16:01.0368 0x0640  [ 97E939D2128FEC5D5A3E6E79B290A2F4, FB71FD62BFD02608347C44E5EC865DCFA41EDFF58011673487D25C8DD79C268E ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:16:01.0371 0x0640  rspndr - ok
12:16:01.0388 0x0640  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] SamSs           C:\Windows\system32\lsass.exe
12:16:01.0390 0x0640  SamSs - ok
12:16:01.0465 0x0640  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:16:01.0469 0x0640  sbp2port - ok
12:16:01.0500 0x0640  [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB, 4222182FF80A6A9DEF7239965C12F3BBE843A5219D16D5BFD167350EDA5A23CF ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:16:01.0506 0x0640  SCardSvr - ok
12:16:01.0589 0x0640  [ 886CEC884B5BE29AB9828B8AB46B11F7, 13901D422D3F0BD9D416865D91561C8A3B0FDC4D7593748460BA5DD45B7C5A6A ] Schedule        C:\Windows\system32\schedsvc.dll
12:16:01.0623 0x0640  Schedule - ok
12:16:01.0636 0x0640  [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:16:01.0638 0x0640  SCPolicySvc - ok
12:16:01.0659 0x0640  [ F7B6BF02240D0A764ADF8C8966735552, E3A21C746E8B79B4F08B0CC3C1610AE3F2BBC8FB6D237C653C7883F4EEA6F6E7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:16:01.0665 0x0640  SDRSVC - ok
12:16:01.0684 0x0640  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:16:01.0686 0x0640  secdrv - ok
12:16:01.0719 0x0640  [ 8388C4133DDBE62AD7BC3EC9F14271ED, 38BF611174C660A0F737D97DAD4488E589CF0CC6242F7B9A8DA034F0D4E22A4F ] seclogon        C:\Windows\system32\seclogon.dll
12:16:01.0723 0x0640  seclogon - ok
12:16:01.0764 0x0640  [ 34350AE2C1D33D21C7305F861BD8DAD8, C2CF4DDC0B223F2CFEFC3BC4EE5B8BC0F3E1E972BE894C388FBA067D52945C2B ] SENS            C:\Windows\system32\sens.dll
12:16:01.0769 0x0640  SENS - ok
12:16:01.0807 0x0640  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:16:01.0810 0x0640  Serenum - ok
12:16:01.0848 0x0640  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
12:16:01.0853 0x0640  Serial - ok
12:16:01.0910 0x0640  [ 450ACCD77EC5CEA720C1CDB9E26B953B, 3B053BDB8EDDC99274C46E9330AEE83851AA3AD37472BBCBE5624233CA9B1B55 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:16:01.0913 0x0640  sermouse - ok
12:16:01.0959 0x0640  [ 78878235DA4DF0D116E86837A0A21DF8, E66B050B56F9F1E902DA6A55126BD2D6AD8F9A40995942055387DC1CDE857B9F ] SessionEnv      C:\Windows\system32\sessenv.dll
12:16:01.0965 0x0640  SessionEnv - ok
12:16:01.0992 0x0640  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:16:01.0994 0x0640  sffdisk - ok
12:16:02.0009 0x0640  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:16:02.0011 0x0640  sffp_mmc - ok
12:16:02.0028 0x0640  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:16:02.0030 0x0640  sffp_sd - ok
12:16:02.0044 0x0640  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
12:16:02.0046 0x0640  sfloppy - ok
12:16:02.0091 0x0640  [ 9A82BF4C90B00A63150A606A1E2FD82B, 48F9B5CD950668F2F28D89F77E54C1EF02849F0E28DC104780F9D62AEE1BF247 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:16:02.0108 0x0640  SharedAccess - ok
12:16:02.0156 0x0640  [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:16:02.0173 0x0640  ShellHWDetection - ok
12:16:02.0213 0x0640  [ 08072B2FB92477FC813271A84B3A8698, A97ABDEB5E37F7B50DD6168FAAD524BE82418FC7818BB667C10951408FB6EB70 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:16:02.0217 0x0640  sisagp - ok
12:16:02.0242 0x0640  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
12:16:02.0245 0x0640  SiSRaid2 - ok
12:16:02.0270 0x0640  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:16:02.0274 0x0640  SiSRaid4 - ok
12:16:02.0598 0x0640  [ 23E3C83DFF7B09A97B01A85ED8A44478, 1F19D2EE35198D7C64DAEE6914ABD3BD7BAEEF1BAF1668BC13ECA1D379330782 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
12:16:02.0829 0x0640  Skype C2C Service - ok
12:16:02.0950 0x0640  [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
12:16:02.0966 0x0640  SkypeUpdate - ok
12:16:03.0123 0x0640  [ A1DCD30534835CB67733AD00175125A6, 04E77F80D365ED8A500B5818015739B7D3562C528CC005E63012D07767132D71 ] slsvc           C:\Windows\system32\SLsvc.exe
12:16:03.0280 0x0640  slsvc - ok
12:16:03.0351 0x0640  [ 56DA296E7B376A727E7BDC5AC7FBEE02, 6A01699DEADE24DCE15321F51368F41EBC6594A838953D9EF250A57D7C1216B7 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
12:16:03.0357 0x0640  SLUINotify - ok
12:16:03.0380 0x0640  [ AC0D90738ADB51A6FD12FF00874A2162, 81086C33F77BA32DEDE0BE51CDD130AB124DB08DE63350CAA0B974B85A59B834 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:16:03.0387 0x0640  Smb - ok
12:16:03.0461 0x0640  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:16:03.0465 0x0640  SNMPTRAP - ok
12:16:03.0490 0x0640  [ 426F9B029AA9162CECCF65369457D046, 36F47ABD5F16CA406036BD79AA8F89FF265B913C433BA73F115E84292D5FFD26 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:16:03.0494 0x0640  spldr - ok
12:16:03.0563 0x0640  [ DA612EF2556776DF2630B68BF2D48935, 770E883E3CA0CB8B63F5C09D26AD0474054F759EB692905EB37F9BC16D1FE5F4 ] Spooler         C:\Windows\System32\spoolsv.exe
12:16:03.0575 0x0640  Spooler - ok
12:16:03.0631 0x0640  [ 038579C35F7CAD4A4BBF735DBF83277D, 95B5B32D8818E89A7AE2B6DDEAE3025B9E2B4C7A99E7CAEE4D7BF3E336413377 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:16:03.0656 0x0640  srv - ok
12:16:03.0681 0x0640  [ 6971A757AF8CB5E2CBCBB76CC530DB6C, E8BD4353F6EBCF3316CA6D288C402CAB72C674A94E07EB3003A8010F74BDC90C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:16:03.0687 0x0640  srv2 - ok
12:16:03.0700 0x0640  [ 9E1A4603B874EEBCE0298113951ABEFB, 79C6153AF6E23F7A86642BE977E76B3D420F4D720B72418D0F3FB5A9EAFE36BB ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:16:03.0705 0x0640  srvnet - ok
12:16:03.0733 0x0640  [ 8D3E4BAFF8B3997138C38EB1B600519A, D40E30C86B2B5AB30B29CD211091C97876673E786D708EDDC5068656CB84E7F3 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:16:03.0750 0x0640  SSDPSRV - ok
12:16:03.0830 0x0640  [ CF26EB925F557D4D70973C702C8E7A49, 4E19443AA7CE70A26CD881FB57CB07BF60DC092A2F19FFFD1DD5742B45E3AFDF ] STacSV          C:\Windows\system32\STacSV.exe
12:16:03.0836 0x0640  STacSV - ok
12:16:03.0930 0x0640  [ AB2059AE6D9243C502C86824BC40439E, 20C452ED46A30D5E4E98C5E00305FCFD2AB3B359B88DF6EB07CDA51BAB42F58F ] STHDA           C:\Windows\system32\drivers\stwrt.sys
12:16:03.0964 0x0640  STHDA - ok
12:16:04.0022 0x0640  [ A941E099EF46E3CC12F898CBE1C39910, 03419E0FC240C51A05B432041F1747068475EF2E6E23B06D85D5AEF4F442D32D ] stisvc          C:\Windows\System32\wiaservc.dll
12:16:04.0048 0x0640  stisvc - ok
12:16:04.0097 0x0640  [ 51778FD315C9882F1CBD932743E62A72, 5127292970ABC2966723CC5535DD547C77AAC132AAA849BCBD90D0F00EDD08C0 ] stllssvr        C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
12:16:04.0101 0x0640  stllssvr - ok
12:16:04.0140 0x0640  [ 3B80B4383C9BCE13279C8482734B32B2, F54C98B69BA4B1BE39DC82708280B7405B7BDC8AB165551D2B5B2683A20D3097 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:16:04.0142 0x0640  swenum - ok
12:16:04.0207 0x0640  [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0, 376C3FDAB5926DDDE8BF009988D782A96AA198D9BC147C799016D558AEE6537E ] swprv           C:\Windows\System32\swprv.dll
12:16:04.0231 0x0640  swprv - ok
12:16:04.0257 0x0640  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
12:16:04.0260 0x0640  Symc8xx - ok
12:16:04.0282 0x0640  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
12:16:04.0285 0x0640  Sym_hi - ok
12:16:04.0307 0x0640  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
12:16:04.0310 0x0640  Sym_u3 - ok
12:16:04.0399 0x0640  [ 8F2B5FEDE18BD3C4C926CBF88E6F1264, A6398F4CBD27C59A1160AE7F79B651F4956F8BEFB829353A263502CEFBDEBF36 ] SysMain         C:\Windows\system32\sysmain.dll
12:16:04.0433 0x0640  SysMain - ok
12:16:04.0447 0x0640  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:16:04.0453 0x0640  TabletInputService - ok
12:16:04.0518 0x0640  [ 5A5927C254DA9D76D66DE866E21C1058, 3D6BB582F5D75B65EC1EE8ECD478C5D1054712464E73B5C7E4F70F85BCA4AAD3 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
12:16:04.0520 0x0640  tap0901 - ok
12:16:04.0561 0x0640  [ 0C3B2A9C4BD2DD9A6C2E4084314DD719, AEB6D9616BC7083BEF1D199CC7E0307DDF9A63541E60380697749F7B6497E847 ] taphss          C:\Windows\system32\DRIVERS\taphss.sys
12:16:04.0564 0x0640  taphss - ok
12:16:04.0603 0x0640  [ EF3DD33C740FC2F82E7E4622F1C49289, 56CA8119E23AE7B9A6E454C7F52514D361AFFE92F46B63FBCA36AA7273624E52 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:16:04.0620 0x0640  TapiSrv - ok
12:16:04.0636 0x0640  [ 68FA52794AE9ACC61BDE16FE0956B414, 3848DAF78246935134443FCEBA4E48843E98E5201DCD1B7C4C2BA46E2E106F50 ] TBS             C:\Windows\System32\tbssvc.dll
12:16:04.0642 0x0640  TBS - ok
12:16:04.0712 0x0640  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:16:04.0754 0x0640  Tcpip - ok
12:16:04.0800 0x0640  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
12:16:04.0825 0x0640  Tcpip6 - ok
12:16:04.0873 0x0640  [ 5CE0C4A7B12D0067DAD527D72B68C726, BA2B482C5A9B59721A893B11475E199808E8182A0C39DA82BF87E6BE03B61867 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:16:04.0875 0x0640  tcpipreg - ok
12:16:04.0900 0x0640  [ 964248AEF49C31FA6A93201A73FFAF50, 479174899E7375C29E7C0EA7715AF1FDB09D7565B0678E15DC109C32B08624AD ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:16:04.0903 0x0640  TDPIPE - ok
12:16:04.0927 0x0640  [ 7D2C1AE1648A60FCE4AA0F7982E419D3, E08F2A380388E3F0886B9EF440758AAE85F619A6B98C8054E55190423B7377DB ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:16:04.0930 0x0640  TDTCP - ok
12:16:04.0984 0x0640  [ AB4FDE8AF4A0270A46A001C08CBCE1C2, E420B59E716C09623A28A95CD20721EA3FA2804E44F0D9226C0DCBA8FB716A78 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:16:04.0990 0x0640  tdx - ok
12:16:05.0019 0x0640  [ 849ED71967D45F15C3E0ABFC633FDF2A, 6C9CF0A26CEF0C541F7B95D4D1A9F96D5A7D3B91E0F556C4F581D6395B3D9991 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:16:05.0025 0x0640  TermDD - ok
12:16:05.0090 0x0640  [ FAD71C1E8E4047B154E899AE31EB8CAA, 44DDADAFF31B4D6D840DA48A9A435204184CF3016EA426B24249F19C4C5AF304 ] TermService     C:\Windows\System32\termsrv.dll
12:16:05.0132 0x0640  TermService - ok
12:16:05.0168 0x0640  [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] Themes          C:\Windows\system32\shsvcs.dll
12:16:05.0188 0x0640  Themes - ok
12:16:05.0203 0x0640  [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] THREADORDER     C:\Windows\system32\mmcss.dll
12:16:05.0208 0x0640  THREADORDER - ok
12:16:05.0225 0x0640  [ 6BBA0582C0025D43729A1112D3B57897, 052B291EBE695FB1DF40F65085CBA74624C877D57F881CE79027DEEBFE07FBA2 ] TrkWks          C:\Windows\System32\trkwks.dll
12:16:05.0231 0x0640  TrkWks - ok
12:16:05.0275 0x0640  [ 34E388A395FEDBA1D0511ED39BBF4074, 9A44459AC8A258380E0E46F4F9FD8D9FB34B2FB127F0A672824642886E90A1D7 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:16:05.0278 0x0640  TrustedInstaller - ok
12:16:05.0311 0x0640  [ 29F0ECA726F0D51F7E048BDB0B372F29, FC4D5859633DA90A14CC5026347EF95BA3309594F8485F4F8C6451F44A8A8787 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:16:05.0313 0x0640  tssecsrv - ok
12:16:05.0361 0x0640  [ 65E953BC0084D44498B51F59784D2A82, 64A33090CE2A9046F413C9A0D0209ABF4B3FA0E44031CB871B20CF7C6ADA7021 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
12:16:05.0364 0x0640  tunmp - ok
12:16:05.0396 0x0640  [ 4A39BDA5E0FD30BDF4884F9D33AE6105, C827FCA940CCB4B5305A35E02AB296AD0CB9455B401555BDB2938BAED4A2A5D0 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:16:05.0399 0x0640  tunnel - ok
12:16:05.0425 0x0640  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:16:05.0429 0x0640  uagp35 - ok
12:16:05.0485 0x0640  [ 6348DA98707CEDA8A0DFB05820E17732, FEADD72EBF7CE3E85463D676B45E05E5141EB80C76594DE66E2F3D27569AE90B ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:16:05.0503 0x0640  udfs - ok
12:16:05.0546 0x0640  [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD, 8145A7668103B6768D49B5EADCA47C0D75E09C190325892DC74A29A5E959CE37 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:16:05.0551 0x0640  UI0Detect - ok
12:16:05.0597 0x0640  [ 4012D4AB61F16CBAD2C4913B0B1F47CF, 5D8E490245B0E6287B7CCE1BEE9EE74CD899F5E480186756BD9F8A1B976A324C ] UimBus          C:\Windows\system32\DRIVERS\UimBus.sys
12:16:05.0602 0x0640  UimBus - ok
12:16:05.0649 0x0640  [ DC0DB228E8CF82C9BAD670274C42522B, ACDFB0F068B3392AABCC9A91DCBED29979EC4A721FDC456A54E5F23531CF6EEA ] Uim_IM          C:\Windows\system32\Drivers\Uim_IM.sys
12:16:05.0674 0x0640  Uim_IM - ok
12:16:05.0723 0x0640  [ 25EB385F490E24D87D009337C12CFAAA, 70810287709DF4DFD5D3AB8A244920C5BB52D88EE5B6CA1E327DDBF2C9726F99 ] Uim_Vim         C:\Windows\system32\Drivers\Uim_Vim.sys
12:16:05.0740 0x0640  Uim_Vim - ok
12:16:05.0785 0x0640  [ 6D72EF05921ABDF59FC45C7EBFE7E8DD, 9102CB4B5E8B858B61DE1508C6A00D75584741891899966258E510173DBF7BB9 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:16:05.0789 0x0640  uliagpkx - ok
12:16:05.0827 0x0640  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
12:16:05.0844 0x0640  uliahci - ok
12:16:05.0897 0x0640  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
12:16:05.0923 0x0640  UlSata - ok
12:16:05.0968 0x0640  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
12:16:05.0978 0x0640  ulsata2 - ok
12:16:06.0027 0x0640  [ 3FB78F1D1DD86D87BECECD9DFFA24DD9, B6344D33D064B56311168B02315B01238964D834AA44EB6C2B3788698F2077CF ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:16:06.0032 0x0640  umbus - ok
12:16:06.0074 0x0640  [ 8EB871A3DEB6B3D5A85EB6DDFC390B59, 84D8A02CC4597078D868F1C31992D04B2D4B3CC4FAF4F57625A2054C13AE1513 ] upnphost        C:\Windows\System32\upnphost.dll
12:16:06.0091 0x0640  upnphost - ok
12:16:06.0168 0x0640  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
12:16:06.0171 0x0640  USBAAPL - ok
12:16:06.0212 0x0640  [ F6BF998AE33E3FB6C7D27F0560F1173F, A1E7DBC85267AC23D2351EE184681032DD3A6BE2689AEB6B98D5885F461AB7F4 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:16:06.0216 0x0640  usbaudio - ok
12:16:06.0293 0x0640  [ B0BA9CAFFE9B0555EC0317F30CB79CD2, 1163BAF9B03D741E46163566666B96259B4ECD8C3AC9E6D4D3A0555ADCC7F1BB ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:16:06.0297 0x0640  usbccgp - ok
12:16:06.0332 0x0640  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:16:06.0336 0x0640  usbcir - ok
12:16:06.0385 0x0640  [ C9FCD05B0A80EA08C2768E5A279B14DE, BB594B0E0A90B8737368D220C86F3CD1E0A3214201C5E6B60CD793ECFF923825 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:16:06.0390 0x0640  usbehci - ok
12:16:06.0426 0x0640  [ 5E44F7D957F7560DA06BFE6B84B58A35, EE44EDDDF5DD26948B931754871FD8287AFD2A2628FF94570FA6D36F07247FDA ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:16:06.0443 0x0640  usbhub - ok
12:16:06.0474 0x0640  [ 9333E482A173938788CBDE8F81EC52FB, 546DB05F5E8F5DC085C862BCDDBC0C41353FB361898D72FB729D165BB0D17125 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:16:06.0479 0x0640  usbohci - ok
12:16:06.0525 0x0640  [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:16:06.0529 0x0640  usbprint - ok
12:16:06.0613 0x0640  [ B1F95285C08DDFE00C0B955462637EC7, 08EA5D7874F74EE3A5903F5EDFD4C3329AB103185A64699EA138CD2B25174C2F ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:16:06.0616 0x0640  usbscan - ok
12:16:06.0677 0x0640  [ C0488CC01A1C686B08A3D360C7F50324, 513836CA44A64E6422A20A5FB01DE009D98DBF036D6F251F4DCB14D628081E15 ] usbser          C:\Windows\system32\DRIVERS\usbser.sys
12:16:06.0680 0x0640  usbser - ok
12:16:06.0730 0x0640  [ 7887CE56934E7F104E98C975F47353C5, A77F4F36119DE0330CB39F0082130398479016C6819860E8A3873485679FFC15 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:16:06.0734 0x0640  USBSTOR - ok
12:16:06.0774 0x0640  [ 325DBBACB8A36AF9988CCF40EAC228CC, 22FE5658A12296634FBE9D8565485BEE8CB200C47182F70DC9D2B0442E10C4AA ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:16:06.0776 0x0640  usbuhci - ok
12:16:06.0867 0x0640  [ 0A6B81F01BC86399482E27E6FDA7B33B, EDED102916634ADE83F5ACE327E2E3FF1C145A35A80320FAF03872B069DDA626 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:16:06.0873 0x0640  usbvideo - ok
12:16:06.0944 0x0640  [ F79D0D7C9004474CB42746D9B2C30A2B, B693C6DEB1AB879F91BF5362ECD02C8C676A6AAB82D01CB534734CC07FA6A3D8 ] UxSms           C:\Windows\System32\uxsms.dll
12:16:06.0947 0x0640  UxSms - ok
12:16:07.0023 0x0640  [ C9D0BAFEE0D0A2681F048CA61BC0DA96, DEE8345E0F0E1984001C4305294DD0006C9C6DDA08BF8E23669D53919FB0D479 ] vds             C:\Windows\System32\vds.exe
12:16:07.0048 0x0640  vds - ok
12:16:07.0126 0x0640  [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:16:07.0129 0x0640  vga - ok
12:16:07.0155 0x0640  [ 17A8F877314E4067F8C8172CC6D9101C, 86644BE36B12DBB61A14AE076EE5A3C04C1AC5328FD540BB39F80086302E30FA ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:16:07.0158 0x0640  VgaSave - ok
12:16:07.0189 0x0640  [ D5929A28BDFF4367A12CAF06AF901971, DE2A60A9EE1ABACEE6221E4AD5D4AA4CBA12FED448EB36CA3B7A9A5F09A8DC8C ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:16:07.0193 0x0640  viaagp - ok
12:16:07.0236 0x0640  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
12:16:07.0239 0x0640  ViaC7 - ok
12:16:07.0263 0x0640  [ 58C8D5AC5C3EEF40E7E704A5CED7987D, 247188A1579C02656696AB46A3762E64E642CEBA1F549BB144881877F895D11D ] viaide          C:\Windows\system32\drivers\viaide.sys
12:16:07.0265 0x0640  viaide - ok
12:16:07.0303 0x0640  [ FD16FAC15F9F165AC19A618E7B391F5C, DC2024DC8B364C7BC29DC27720972054823D118E08D444DEE6F8513FF2BF0190 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:16:07.0306 0x0640  volmgr - ok
12:16:07.0331 0x0640  [ 294DA8D3F965F6A8DB934A83C7B461FF, 6761A3B24173C76E8AAE17D131EB897F475D84CAE76C9E1CF1F450DF7AC0A9B7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:16:07.0348 0x0640  volmgrx - ok
12:16:07.0376 0x0640  [ 80DC0C9BCB579ED9815001A4D37CBFD5, E80392798A10DD9354683D80FDAE182D5D34CC3945BD5A7D16B79F0B2ED0D1A5 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:16:07.0385 0x0640  volsnap - ok
12:16:07.0416 0x0640  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:16:07.0422 0x0640  vsmraid - ok
12:16:07.0490 0x0640  [ E0E29D9EF2524ABD11749C7C2FD7F607, 9A463C3BC73309B2114F30E8F923FE458F7AF8A385508403B56F260F1C0D042E ] VSS             C:\Windows\system32\vssvc.exe
12:16:07.0540 0x0640  VSS - ok
12:16:07.0615 0x0640  [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED, 6354B3D18AD753A96B38A71C4DC071944C1EFFBB695507DB3F40355203FB9A78 ] W32Time         C:\Windows\system32\w32time.dll
12:16:07.0632 0x0640  W32Time - ok
12:16:07.0670 0x0640  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:16:07.0673 0x0640  WacomPen - ok
12:16:07.0725 0x0640  [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:16:07.0729 0x0640  Wanarp - ok
12:16:07.0760 0x0640  [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:16:07.0763 0x0640  Wanarpv6 - ok
12:16:07.0814 0x0640  [ C1B19162E0509CEAB4CDF664E139D956, 24F03AD0EB901777F8DDF874A82BF32361D8313F8E79A477C42D58CD6BF12657 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:16:07.0873 0x0640  wcncsvc - ok
12:16:07.0893 0x0640  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:16:07.0902 0x0640  WcsPlugInService - ok
12:16:07.0936 0x0640  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
12:16:07.0946 0x0640  Wd - ok
12:16:08.0015 0x0640  [ 9950E3D0F08141C7E89E64456AE7DC73, DE4B96812B305A63F5874BBF2DC40354FB45B3D96C1D33436E677099760BA448 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:16:08.0090 0x0640  Wdf01000 - ok
12:16:08.0140 0x0640  [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:16:08.0146 0x0640  WdiServiceHost - ok
12:16:08.0153 0x0640  [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:16:08.0158 0x0640  WdiSystemHost - ok
12:16:08.0195 0x0640  [ 01E41C264EEDCB827820A1909162579F, E21E6CFE3A0F46320175A261E31DA86573F28CCD0C710E972E7888C5FB85C494 ] WebClient       C:\Windows\System32\webclnt.dll
12:16:08.0212 0x0640  WebClient - ok
12:16:08.0233 0x0640  [ 9CF67FF7F8D34CBF115D0C278B9F74AA, B5EE61B3345B3DE88230858FD639A90919D00D52D44C8138E3AD66F79DFBB54B ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:16:08.0250 0x0640  Wecsvc - ok
12:16:08.0266 0x0640  [ B68CAB45DB1DAB59D92ACADFAD6364A8, 47491F6E759CDE7C343648C41302A57B0A41EAD49B7F55AD545743AEF9E168ED ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:16:08.0271 0x0640  wercplsupport - ok
12:16:08.0292 0x0640  [ 36BA0707680EF4236FD752BEE982CC25, 215E20E83A13B0B680990E4557DFBA5B83B60D2FCF356C1AB5BEFEA22B134B0A ] WerSvc          C:\Windows\System32\WerSvc.dll
12:16:08.0299 0x0640  WerSvc - ok
12:16:08.0392 0x0640  [ 6D2350BB6E77E800FC4BE4E5B7A2E89A, 5C70AA76991B85D4EA52C70A03C932B34B51133CC55B3F4CC25F4A7044574885 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
12:16:08.0426 0x0640  winachsf - ok
12:16:08.0492 0x0640  [ 0D5AD0E71FF5DDAC5DD2F443B499ABD0, 7FE7C635B811E882AB02437FED1778A11F32F273E44E669DC445E929EF2C9B2D ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:16:08.0509 0x0640  WinDefend - ok
12:16:08.0531 0x0640  WinHttpAutoProxySvc - ok
12:16:08.0603 0x0640  [ 38A7B89DE4E3417C122317949667FDD8, 611CFCC36EABA5752E99C1E0E3F6269C93CC5E5F53495C257929FB5492DCDE97 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:16:08.0620 0x0640  Winmgmt - ok
12:16:08.0687 0x0640  [ 3F6823040030C3E4DA1CF11CD40B7534, 4B1B1CE5F4E6679A96BA081F6CFC1D43FFCE3CAE58B8C3AD74B261D7F5C70E28 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:16:08.0713 0x0640  WinRM - ok
12:16:08.0766 0x0640  [ 30FC6E5448D0CBAAA95280EEEF7FEDAE, 04374450882504D9031951F4E9317E5A128EBA5A22A3555ACD28BC742861AF9C ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
12:16:08.0769 0x0640  WinUSB - ok
12:16:08.0844 0x0640  [ 7640ACEA41348BFEF34B76E245501261, 9B1067197DBE0E71AD547535FF8B97E30A89521FB84008DF9F57C71408B714BA ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:16:08.0878 0x0640  Wlansvc - ok
12:16:08.0912 0x0640  [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:16:08.0914 0x0640  WmiAcpi - ok
12:16:08.0956 0x0640  [ A279323BEE5FFFAFDA222910BCE92132, 9A61FCDFBB4ECF3ADA153A62E7BF07309FC430DF43FA7A02F2F829E52D4FC65A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:16:08.0962 0x0640  wmiApSrv - ok
12:16:09.0068 0x0640  [ ACB2E63D50157E3EA7140F29D9E76A48, BA5F1F9EB162C7E4CE56D0582DE674803633B9BAAB9A3726DC4CB8AF9E98BC5A ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:16:09.0110 0x0640  WMPNetworkSvc - ok
12:16:09.0147 0x0640  [ 3D3B3B80C12ABE506F56930C46422C28, 9164F603B6BBE4597FDD99545715369FAE97402A2C2E89FD62F8A09629AB31F9 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:16:09.0775 0x0640  WPCSvc - ok
12:16:09.0831 0x0640  [ C24844A1D0D9528B19D5BC266B8CD572, 2FABE49F7B93E5B99EA13828C81BBD7202BA813ACEBB192552E2AFD1E6AD67FD ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:16:09.0850 0x0640  WPDBusEnum - ok
12:16:09.0939 0x0640  [ 2D27171B16A577EF14C1273668753485, CA18E5A467D4C2EA3141F214E3D227630AB4D568179C1597936B55EEED6F5C2B ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
12:16:09.0944 0x0640  WpdUsb - ok
12:16:10.0081 0x0640  [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:16:10.0239 0x0640  WPFFontCache_v0400 - ok
12:16:10.0305 0x0640  [ 84620AECDCFD2A7A14E6263927D8C0ED, 0FB188B40EA140DC5C7A0AD289613BC3FEF71C220F7852C57650A0889CF99A87 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:16:10.0318 0x0640  ws2ifsl - ok
12:16:10.0361 0x0640  [ F97CBB919AF6D0A6643D1A59C15014D1, E765BAF504DE624AE954531711AAFDD98CE9624C3806D7F25D228B53F6BDA6A0 ] wscsvc          C:\Windows\system32\wscsvc.dll
12:16:10.0367 0x0640  wscsvc - ok
12:16:10.0374 0x0640  WSearch - ok
12:16:10.0938 0x0640  [ 6298277B73C77FA99106B271A7525163, 9E076697F025167B57D8D66ED0862B184D70324E058BFA36E42D0C6728720B31 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:16:11.0078 0x0640  wuauserv - ok
12:16:11.0135 0x0640  [ A2AAFCC8A204736296D937C7C545B53F, AB9C42AA1917E828F84C9D0E7505664937681CEC833600953BB98307F878DB93 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:16:11.0146 0x0640  WUDFRd - ok
12:16:11.0171 0x0640  [ DB5BF5AAB72B1B99B5331231D09EBB26, E1E49CA488211F6CAFF00FBF7F1F044155882864069FACEA3DD397AB8EDDD72F ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:16:11.0186 0x0640  wudfsvc - ok
12:16:11.0224 0x0640  [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8, 3660379AADB6DB56E54D9C680929CD3882CDE4E6A8BB888FC892110D6B50C627 ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
12:16:11.0226 0x0640  XAudio - ok
12:16:11.0269 0x0640  [ 28DC5D626E036A75A572556F0A6EB1F6, 9AE635C08B87AD85A552ADE0AF8BA10DC258E0DEFE133A2A74EFCD43B7A38A98 ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
12:16:11.0293 0x0640  XAudioService - ok
12:16:11.0715 0x0640  [ DD0042F0C3B606A6A8B92D49AFB18AD6, 8D3BE4C93D02AF5F42EC46AF598D6DA40C61D467CB2FEE5E222F9C1E7A84B852 ] YahooAUService  C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
12:16:11.0763 0x0640  YahooAUService - ok
12:16:11.0849 0x0640  ================ Scan global ===============================
12:16:11.0910 0x0640  [ 8CD98A8EC9CADAF4E051CDCAC15C96C4, E2F18E0FFB31FDDF210798EFA0C9C30C04B41B7CAACD93BFC224DE569000C220 ] C:\Windows\system32\basesrv.dll
12:16:11.0970 0x0640  [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
12:16:12.0052 0x0640  [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
12:16:12.0239 0x0640  [ 329CF3C97CE4C19375C8ABCABAE258B0, 193A99EB3151C8C99B05A1BA4A69C39CC95E776CF1D39D7E318254383A4C9C0D ] C:\Windows\system32\services.exe
12:16:12.0267 0x0640  [ Global ] - ok
12:16:12.0267 0x0640  ================ Scan MBR ==================================
12:16:12.0295 0x0640  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:16:14.0813 0x0640  \Device\Harddisk0\DR0 - ok
12:16:14.0813 0x0640  ================ Scan VBR ==================================
12:16:14.0857 0x0640  [ 8E8E73C5A2E99C7609918EDF6D9A797A ] \Device\Harddisk0\DR0\Partition1
12:16:14.0890 0x0640  \Device\Harddisk0\DR0\Partition1 - ok
12:16:14.0924 0x0640  [ 6E6DC35E67FC06B78F99EC3518D5BB86 ] \Device\Harddisk0\DR0\Partition2
12:16:14.0960 0x0640  \Device\Harddisk0\DR0\Partition2 - ok
12:16:14.0964 0x0640  Waiting for KSN requests completion. In queue: 44
12:16:15.0964 0x0640  Waiting for KSN requests completion. In queue: 44
12:16:16.0964 0x0640  Waiting for KSN requests completion. In queue: 44
12:16:18.0821 0x0640  AV detected via SS1: AVG Internet Security 2014, 2014.0, enabled, outofdate
12:16:18.0824 0x0640  AV detected via SS1: Microsoft Security Essentials, 4.3.0216.0, enabled, updated
12:16:18.0843 0x0640  FW detected via SS1: AVG Internet Security 2014, 2014.0, enabled
12:16:21.0499 0x0640  ============================================================
12:16:21.0499 0x0640  Scan finished
12:16:21.0499 0x0640  ============================================================
12:16:21.0523 0x0994  Detected object count: 0
12:16:21.0523 0x0994  Actual detected object count: 0


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 PM

Posted 05 December 2013 - 08:48 PM

Are you running JRT and ESET?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 tgoodch1

tgoodch1
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:25 PM

Posted 05 December 2013 - 10:04 PM

Are you running JRT and ESET?

Here's JRT sorry for the delay. (Will run ESET now)

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows Vista ™ Home Premium x86
Ran by Hobgood on Thu 12/05/2013 at 20:55:06.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Chrome
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 12/05/2013 at 20:58:49.89
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 PM

Posted 05 December 2013 - 10:12 PM

No rush just checking as ESET can in some cases take several hours.

You will also need to remove these as older versions are exploitable by malware.

From Control Panel uninstall these.

Java 7 Update 40 (Version: 7.0.400)

Java™ 6 Update 3 (Version: 1.6.0.30)

Java™ 6 Update 31 (Version: 6.0.310)

Java™ 6 Update 5 (Version: 1.6.0.50)

Restart


If you want the latest click Version 7 Update 45

Scroll and click on Windows Offline (32-bit)
filesize: 27.7 MB


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 tgoodch1

tgoodch1
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:25 PM

Posted 06 December 2013 - 11:33 PM

 

Are you running JRT and ESET?

Here's JRT sorry for the delay. (Will run ESET now)

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows Vista ™ Home Premium x86
Ran by Hobgood on Thu 12/05/2013 at 20:55:06.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Chrome
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 12/05/2013 at 20:58:49.89
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Hi Boopme,

I just wanted to check in and let you know that the ESET is still scanning.  It says that it's found 212 so far, but it's been stuck on 99% since last night.  Is that normal?  Also, I can already tell a difference in the way the computer is running, so thanks for all of your help so far!



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 PM

Posted 07 December 2013 - 10:28 AM

Wait it out till 18 hrs, as it sometimes has a lot of work to do. If still going then stop it.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 tgoodch1

tgoodch1
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:25 PM

Posted 07 December 2013 - 02:10 PM

ESETS RESULTS:

 

C:\AdwCleaner\Quarantine\C\Program Files\DomaIQ Uninstaller\DomaIQUninstall.exe.vir probably a variant of MSIL/DomaIQ.A application
C:\AdwCleaner\Quarantine\C\Program Files\FBFlicker\ExtensionUpdaterService.exe.vir a variant of Win32/Toolbar.BitCocktail.B application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65auxstb.dll.vir Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll.vir a variant of Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65bprtct.dll.vir Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65brmon.exe.vir Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65datact.dll.vir a variant of Win32/Toolbar.MyWebSearch.A application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65htmlmu.dll.vir probably a variant of Win32/Toolbar.MyWebSearch.B application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65ieovr.dll.vir probably a variant of Win32/Toolbar.MyWebSearch.P application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65impipe.exe.vir Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65Plugin.dll.vir probably a variant of Win32/Toolbar.MyWebSearch application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65reghk.dll.vir Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65skin.dll.vir a variant of Win32/Toolbar.MyWebSearch.P application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65skplay.exe.vir Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\65SrchMn.exe.vir Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\AppIntegrator64.exe.vir Win64/Toolbar.MyWebSearch.A application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\AppIntegratorStub64.dll.vir Win64/Toolbar.MyWebSearch.A application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\CREXT.DLL.vir a variant of Win32/Toolbar.MyWebSearch.W application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\Hpg64.dll.vir Win64/Toolbar.MyWebSearch.A application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\NP65Stub.dll.vir Win32/Toolbar.MyWebSearch.T application
C:\AdwCleaner\Quarantine\C\Program Files\FromDocToPDF_65\bar\1.bin\T8HTML.DLL.vir probably a variant of Win32/Toolbar.MyWebSearch.F application
C:\AdwCleaner\Quarantine\C\Program Files\internethelper3.1\ldrtbInte.dll.vir a variant of Win32/Toolbar.Conduit.P application
C:\AdwCleaner\Quarantine\C\Program Files\internethelper3.1\tbInte.dll.vir a variant of Win32/Toolbar.Conduit.B application
C:\AdwCleaner\Quarantine\C\Program Files\OApps\SelectionLinks.dll.vir Win32/AdWare.Facetheme.F application
C:\AdwCleaner\Quarantine\C\Program Files\SweetPacks\ldrtbSwee.dll.vir a variant of Win32/Toolbar.Conduit.P application
C:\AdwCleaner\Quarantine\C\Program Files\SweetPacks\tbSwee.dll.vir a variant of Win32/Toolbar.Conduit.B application
C:\AdwCleaner\Quarantine\C\Program Files\Vaudix\uninstall.exe.vir a variant of Win32/SProtector.B application
C:\AdwCleaner\Quarantine\C\ProgramData\Premium\VaudiX\VaudiX.exe.vir Win32/GenUpdater application
C:\AdwCleaner\Quarantine\C\ProgramData\Vaudix\50bbc03150757.ocx.vir Win32/Adware.MultiPlug.D application
C:\AdwCleaner\Quarantine\C\ProgramData\Vaudix\50bbc0315078f.html.vir Win32/Adware.MultiPlug.H application
C:\AdwCleaner\Quarantine\C\ProgramData\Vaudix\ifpmeckbkndbpjhmgococgocgcahmjip.crx.vir Win32/Adware.MultiPlug.H application
C:\AdwCleaner\Quarantine\C\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpmeckbkndbpjhmgococgocgcahmjip\1.3_0\50bbc031505335.26052446.js.vir Win32/Adware.MultiPlug.H application
C:\AdwCleaner\Quarantine\C\Users\Hobgood\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpmeckbkndbpjhmgococgocgcahmjip\1.3_0\50bbc031505335.26052446.js.vir Win32/Adware.MultiPlug.H application
C:\AdwCleaner\Quarantine\C\Users\Hobgood\AppData\LocalLow\internethelper3.1\ldrtbInte.dll.vir a variant of Win32/Toolbar.Conduit.P application
C:\AdwCleaner\Quarantine\C\Users\Hobgood\AppData\LocalLow\internethelper3.1\tbInte.dll.vir a variant of Win32/Toolbar.Conduit.B application
C:\AdwCleaner\Quarantine\C\Users\Hobgood\AppData\LocalLow\VisualBee_V.10\ldrtbVisu.dll.vir a variant of Win32/Toolbar.Conduit.P application
C:\AdwCleaner\Quarantine\C\Users\Hobgood\AppData\LocalLow\VisualBee_V.10\tbVisu.dll.vir a variant of Win32/Toolbar.Conduit.B application
C:\AdwCleaner\Quarantine\C\Users\Hobgood\AppData\Roaming\0D0S1L2Z1P1B0T1P1B2Z\Zip Opener Packages\uninstaller.exe.vir Win32/InstallCore.AZ application
C:\AdwCleaner\Quarantine\C\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\eeiipebe.default\Extensions\textlinks@playsushi.com\components\PlaySushiFF.dll.vir probably a variant of Win32/Adware.Gamevance.AG application
C:\AdwCleaner\Quarantine\C\Users\Michael.Hobgood-PC.003\AppData\Roaming\Searchprotect\ffprotect\application.js.vir Win32/Conduit.SearchProtect.A application
C:\AdwCleaner\Quarantine\C\Users\Michael.Hobgood-PC.003\AppData\Roaming\Searchprotect\ffprotect\nsprotector.js.vir Win32/Conduit.SearchProtect.A application
C:\Program Files\FileShareFanatic_8lEI\Installr\1.bin\8lEIPlug.dll Win32/Toolbar.MyWebSearch application
C:\Program Files\FileShareFanatic_8lEI\Installr\1.bin\8lEZSETP.dll probably a variant of Win32/Toolbar.MyWebSearch.Q application
C:\Program Files\VideoConverter\VideoConverter.exe a variant of Win32/InstallCore.A application
C:\ProgramData\Spybot - Search & Destroy\Recovery\WiIQfraud9.zip Win32/Bagle.gen.zip worm
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinWebdirb2.zip Win32/Bagle.gen.zip worm
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\101_cortica_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\102_dealply_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\103_intext_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\104_jollywallet_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\105_corticas_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\107_coupish_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\108_icm_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\116_ads_only_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\117_coupons_intext_ads_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\119_similar_web_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\120_luck_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\123_intext_adv_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\125_arcadi2_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\126_revizer_ws_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\127_revizer_p_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\128_superfish_pricora_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\129_widdit_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\135_arcadi3_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\138_getdeal_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\155_ibario_pops_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\159_cortica_rollover_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\170_icm1_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\171_arcadi2_sourceID_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\175_coolmirage_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\101_cortica_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\102_dealply_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\103_intext_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\104_jollywallet_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\105_corticas_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\107_coupish_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\108_icm_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\116_ads_only_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\117_coupons_intext_ads_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\119_similar_web_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\120_luck_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\123_intext_adv_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\125_arcadi2_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\126_revizer_ws_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\127_revizer_p_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\128_superfish_pricora_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\129_widdit_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\135_arcadi3_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\138_getdeal_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\155_ibario_pops_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\159_cortica_rollover_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\170_icm1_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\171_arcadi2_sourceID_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\8mwq2exq.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\175_coolmirage_m.js JS/Toolbar.Crossrider.A application
C:\Users\Admin\Downloads\cbsidlm-cbsi134-Wise_Program_Uninstaller-ORG-75798277.exe a variant of Win32/CNETInstaller.B application
C:\Users\Admin\Downloads\CheatEngine63.exe multiple threats
C:\Users\All Users\Spybot - Search & Destroy\Recovery\WiIQfraud9.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\WinWebdirb2.zip Win32/Bagle.gen.zip worm
C:\Users\Hobgood\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000 Win32/Somoto.A application
C:\Users\Hobgood\AppData\Local\Temp\biclient.exe Win32/Somoto.A application
C:\Users\Hobgood\AppData\Local\Temp\HighAurum_bs.exe Win32/BrowseFox.C application
C:\Users\Hobgood\AppData\Local\Temp\UpdateCheckerSetup.exe a variant of Win32/Somoto.D application
C:\Users\Hobgood\AppData\LocalLow\FileShareFanatic_8lEI\Installr\Cache\001514F6.exe a variant of Win32/Toolbar.MyWebSearch.O application
C:\Users\Hobgood\Desktop\Cleaners\ARO2013_tbt(1).exe a variant of Win32/Bundled.Toolbar.Ask.D application
C:\Users\Hobgood\Downloads\ARO2013_tbt.exe a variant of Win32/Bundled.Toolbar.Ask.D application
C:\Users\Hobgood\Downloads\Babylon10_setup.exe a variant of Win32/Toolbar.Babylon.E application
C:\Users\Hobgood\Downloads\HomeTab.exe a variant of Win32/Toolbar.Widdit.A application
C:\Users\Hobgood\Downloads\PDFCreatorSetup-bnmT2bX.exe Win32/Somoto.A application
C:\Users\Hobgood\Downloads\revouninstaller-setup.exe Win32/DownloadAdmin.G application
C:\Users\Hobgood\Downloads\VideoConverterSetup.exe a variant of Win32/InstallCore.CF application
C:\Users\Michael\AppData\LocalLow\TenchisTV\ldrtbTen0.dll a variant of Win32/Toolbar.Conduit.P application
C:\Users\Michael\AppData\LocalLow\TenchisTV\tbTenc.dll a variant of Win32/Toolbar.Conduit.B application
C:\Users\Michael\Downloads\l5m-usjobsearch-dtx.exe Win32/Toolbar.Zugo application
C:\Users\Michael\Downloads\l5m-usjobsearch-us-dtx.exe Win32/Toolbar.Zugo application
C:\Users\Michael\Downloads\Lagrange5.exe Win32/Toolbar.Zugo application
C:\Users\Michael\Downloads\Setup.exe multiple threats
C:\Users\Michael\Downloads\vv-supersearch-silent.exe Win32/Toolbar.Zugo application
C:\Users\Michael\Downloads\Y!ChatMessenger_setup.exe a variant of Win32/AirAdInstaller.A application
C:\Users\Michael Shane\AppData\Roaming\Mozilla\Firefox\Profiles\9gn2r19y.default\extensions\50bbc031505c7@50bbc03150600.com\content\bg.js Win32/Adware.MultiPlug.H application
C:\Users\Michael Shane\Downloads\Adobe_Flash_Player_.exe a variant of Win32/DomaIQ.A application
C:\Users\Michael Shane\Downloads\AudioConverterSetup.exe a variant of Win32/InstallCore.AX application
C:\Users\Michael Shane\Downloads\BestCodecPack_Setup.exe a variant of Win32/InstallBrain.O application
C:\Users\Michael Shane\Downloads\GrandParker.exe a variant of Win32/CasOnline.I application
C:\Users\Michael Shane\Downloads\setup.exe a variant of Win32/AirAdInstaller.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\101_cortica_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\102_dealply_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\103_intext_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\104_jollywallet_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\105_corticas_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\107_coupish_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\108_icm_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\116_ads_only_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\117_coupons_intext_ads_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\119_similar_web_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\120_luck_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\123_intext_adv_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\125_arcadi2_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\126_revizer_ws_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\127_revizer_p_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\128_superfish_pricora_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\129_widdit_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\135_arcadi3_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\138_getdeal_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\155_ibario_pops_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\159_cortica_rollover_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\170_icm1_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\171_arcadi2_sourceID_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\175_coolmirage_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\101_cortica_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\102_dealply_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\103_intext_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\104_jollywallet_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\105_corticas_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\107_coupish_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\108_icm_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\116_ads_only_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\117_coupons_intext_ads_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\119_similar_web_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\120_luck_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\123_intext_adv_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\125_arcadi2_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\126_revizer_ws_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\127_revizer_p_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\128_superfish_pricora_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\129_widdit_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\135_arcadi3_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\138_getdeal_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\155_ibario_pops_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\159_cortica_rollover_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\170_icm1_5_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\171_arcadi2_sourceID_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js JS/Toolbar.Crossrider.A application
C:\Users\Michael.Hobgood-PC.003\AppData\Roaming\Mozilla\Firefox\Profiles\wfgxocnt.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com\extensionData\plugins\175_coolmirage_m.js JS/Toolbar.Crossrider.A application
C:\Windows\Desktop\SopCast.zip multiple threats
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\101_cortica_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\102_dealply_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\103_intext_5_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\104_jollywallet_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\105_corticas_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\107_coupish_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\108_icm_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\116_ads_only_5_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\117_coupons_intext_ads_5_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\119_similar_web_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\120_luck_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\123_intext_adv_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\125_arcadi2_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\126_revizer_ws_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\127_revizer_p_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\128_superfish_pricora_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\129_widdit_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\135_arcadi3_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\138_getdeal_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\155_ibario_pops_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\159_cortica_rollover_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\170_icm1_5_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\171_arcadi2_sourceID_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js JS/Toolbar.Crossrider.A application
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikjpgpbpnapbimplfcbcbakjacpgceb\1.25.18_0\extensionData\plugins\175_coolmirage_m.js JS/Toolbar.Crossrider.A application


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 PM

Posted 09 December 2013 - 11:47 AM

that was a lot of crap.. How's windows Update..

This is much quicker.. Things should be a lot better now.

Please download Malwarebytes Anti-Malware mbamicontw5.gif and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
  • Double-click on the renamed file to install, then follow these instructions
  • for doing a Quick Scan in normal mode.
  • Don't forget to check for database definition updates through the program's interface (preferable method) before scanning.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • After completing the scan, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab .
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, use Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users