Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I have a mean Trojan Horse- AVG says it is Generic36.DWH


  • Please log in to reply
12 replies to this topic

#1 whitsouth

whitsouth

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 01:54 PM

I have a virus on my computer. AVG finds it says that it has gotton rid of it, however it detects it again in about 30 seconds, even with the internet off. As I write this AVG is popping up every 30 seconds from detecting the virus. I say protect me and it comes back. I believe that I accidently downloaded it but I cannot get rid of the virus. I uninstalled it as soon as it finished downloading. I do not remember what the program was called, but it said it protection against haveing a program change my homepage. Since then, about a week, I have about a week worth of this virus and my computer acting up.
 
First, my computer is much slower then usual. Then it started having errors. The first error was an event host error. In fact, it just had another one. This error does not seem to be slowing down my computer any. The second error was much more scary, in that my user profile failed to load when I started up this computer. I ran a virus scan as soon as I restarted my computer and it it popped up with about 70 viruses, all the same thing. I removed them but is still there. I run a windows vista operating system.
 

 

AVG says it is Trojan horse Generic36. DWH. The process neame is C:\Windows\System32\svchost.exe.



BC AdBot (Login to Remove)

 


m

#2 whitsouth

whitsouth
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 02:02 PM

The programs name that I accidently downloaded was Conduit.



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:20 PM

Posted 14 April 2014 - 02:08 PM

Hello whitsouth

I believe we can get this out. What is your browser?

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 whitsouth

whitsouth
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 02:25 PM

I use both mozilla and internet explorer. I believe I got this one with mozilla. It just restarted my computer for me and now AVG is not detecting the virus anymore. I am now very concerned.



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:20 PM

Posted 14 April 2014 - 02:28 PM

Run the tools any way , I'm sure we'll get junk out. Then we will clean your Browsers too.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 whitsouth

whitsouth
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 02:30 PM

MiniToolBox by Farbar  Version: 23-01-2014

 

Ran by Whitney (administrator) on 14-04-2014 at 15:22:58

 

Running from "C:\Users\Whitney\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YMXUPJNC"

 

Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)

 

Boot Mode: Normal

 

***************************************************************************

 

 

========================= Flush DNS: ===================================

 

 

Windows IP Configuration

 

 

Successfully flushed the DNS Resolver Cache.

 

 

========================= IE Proxy Settings: ==============================

 

 

Proxy is not enabled.

 

No Proxy Server is set.

 

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

 

========================= FF Proxy Settings: ==============================

 

 

"network.proxy.type", 0

 

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

 

========================= Hosts content: =================================

 

 

::1             localhost

 

 

127.0.0.1       localhost

 

 

========================= IP Configuration: ================================

 

 

Dell Wireless 1395 WLAN Mini-Card = Wireless Network Connection (Connected)

 

Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)

 

 

 

# ----------------------------------

 

# IPv4 Configuration

 

# ----------------------------------

 

pushd interface ipv4

 

 

reset

 

set global icmpredirects=enabled

 

 

 

popd

 

# End of IPv4 configuration

 

 

 

 

Windows IP Configuration

 

 

   Host Name . . . . . . . . . . . . : Whitney-PC

 

   Primary Dns Suffix  . . . . . . . :

 

   Node Type . . . . . . . . . . . . : Hybrid

 

   IP Routing Enabled. . . . . . . . : No

 

   WINS Proxy Enabled. . . . . . . . : No

 

 

Wireless LAN adapter Wireless Network Connection:

 

 

   Connection-specific DNS Suffix  . :

 

   Description . . . . . . . . . . . : Dell Wireless 1395 WLAN Mini-Card

 

   Physical Address. . . . . . . . . : 00-1F-E1-5E-01-D1

 

   DHCP Enabled. . . . . . . . . . . : Yes

 

   Autoconfiguration Enabled . . . . : Yes

 

   Link-local IPv6 Address . . . . . : fe80::b8ab:4464:1a44:8d73%11(Preferred)

 

   IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)

 

   Subnet Mask . . . . . . . . . . . : 255.255.255.0

 

   Lease Obtained. . . . . . . . . . : Monday, April 14, 2014 3:13:26 PM

 

   Lease Expires . . . . . . . . . . : Tuesday, April 15, 2014 3:13:25 PM

 

   Default Gateway . . . . . . . . . : 192.168.1.1

 

   DHCP Server . . . . . . . . . . . : 192.168.1.1

 

   DHCPv6 IAID . . . . . . . . . . . : 268443617

 

   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-D9-04-49-00-21-9B-CC-52-FD

 

   DNS Servers . . . . . . . . . . . : 192.168.1.1

 

   NetBIOS over Tcpip. . . . . . . . : Enabled

 

 

Ethernet adapter Local Area Connection:

 

 

   Media State . . . . . . . . . . . : Media disconnected

 

   Connection-specific DNS Suffix  . :

 

   Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller

 

   Physical Address. . . . . . . . . : 00-21-9B-CC-52-FD

 

   DHCP Enabled. . . . . . . . . . . : Yes

 

   Autoconfiguration Enabled . . . . : Yes

 

 

Tunnel adapter Local Area Connection* 6:

 

 

   Media State . . . . . . . . . . . : Media disconnected

 

   Connection-specific DNS Suffix  . :

 

   Description . . . . . . . . . . . : isatap.{AD18976E-74D2-40C7-B6BD-0D2004E5F76B}

 

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

 

   DHCP Enabled. . . . . . . . . . . : No

 

   Autoconfiguration Enabled . . . . : Yes

 

 

Tunnel adapter Local Area Connection* 7:

 

 

   Media State . . . . . . . . . . . : Media disconnected

 

   Connection-specific DNS Suffix  . :

 

   Description . . . . . . . . . . . : isatap.{6947F30A-7C79-4DCB-9EDE-022495290096}

 

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

 

   DHCP Enabled. . . . . . . . . . . : No

 

   Autoconfiguration Enabled . . . . : Yes

 

 

Tunnel adapter Local Area Connection* 11:

 

 

   Media State . . . . . . . . . . . : Media disconnected

 

   Connection-specific DNS Suffix  . :

 

   Description . . . . . . . . . . . : 6TO4 Adapter

 

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

 

   DHCP Enabled. . . . . . . . . . . : No

 

   Autoconfiguration Enabled . . . . : Yes

 

 

Tunnel adapter Local Area Connection* 12:

 

 

   Media State . . . . . . . . . . . : Media disconnected

 

   Connection-specific DNS Suffix  . :

 

   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

 

   Physical Address. . . . . . . . . : 02-00-54-55-4E-01

 

   DHCP Enabled. . . . . . . . . . . : No

 

   Autoconfiguration Enabled . . . . : Yes

 

Server:  UnKnown

 

Address:  192.168.1.1

 

 

Name:    google.com

 

Addresses:  2607:f8b0:4002:c01::8a

 

   74.125.137.138

 

   74.125.137.102

 

   74.125.137.101

 

   74.125.137.139

 

   74.125.137.100

 

   74.125.137.113

 

 

 

Pinging google.com [74.125.137.100] with 32 bytes of data:

 

Reply from 74.125.137.100: bytes=32 time=55ms TTL=49

 

Reply from 74.125.137.100: bytes=32 time=57ms TTL=49

 

 

Ping statistics for 74.125.137.100:

 

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

 

Approximate round trip times in milli-seconds:

 

    Minimum = 55ms, Maximum = 57ms, Average = 56ms

 

Server:  UnKnown

Address:  192.168.1.1

 

Name:    yahoo.com

Addresses:  98.139.183.24

   98.138.253.109

   206.190.36.45

 

 

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

 

Reply from 206.190.36.45: bytes=32 time=189ms TTL=51

 

Reply from 206.190.36.45: bytes=32 time=114ms TTL=51

 

 

 

Ping statistics for 206.190.36.45:

 

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

 

Approximate round trip times in milli-seconds:

 

    Minimum = 114ms, Maximum = 189ms, Average = 151ms

 

 

Pinging 127.0.0.1 with 32 bytes of data:

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

 

Ping statistics for 127.0.0.1:

 

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

 

Approximate round trip times in milli-seconds:

 

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

 

===========================================================================

Interface List

11 ...00 1f e1 5e 01 d1 ...... Dell Wireless 1395 WLAN Mini-Card

10 ...00 21 9b cc 52 fd ...... Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller

  1 ........................... Software Loopback Interface 1

14 ...00 00 00 00 00 00 00 e0  isatap.{AD18976E-74D2-40C7-B6BD-0D2004E5F76B}

15 ...00 00 00 00 00 00 00 e0  isatap.{6947F30A-7C79-4DCB-9EDE-022495290096}

13 ...00 00 00 00 00 00 00 e0  6TO4 Adapter

12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface

===========================================================================

 

 

IPv4 Route Table

 

===========================================================================

 

Active Routes:

 

Network Destination        Netmask          Gateway       Interface  Metric

 

          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.4     25

 

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

 

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

 

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

 

      192.168.1.0    255.255.255.0         On-link       192.168.1.4    281

 

      192.168.1.4  255.255.255.255         On-link       192.168.1.4    281

 

    192.168.1.255  255.255.255.255         On-link       192.168.1.4    281

 

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

 

        224.0.0.0        240.0.0.0         On-link       192.168.1.4    281

 

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

 

  255.255.255.255  255.255.255.255         On-link       192.168.1.4    281

 

===========================================================================

 

Persistent Routes:

 

  None

 

 

IPv6 Route Table

 

===========================================================================

 

Active Routes:

 

If Metric Network Destination      Gateway

 

  1    306 ::1/128                  On-link

 

11    281 fe80::/64                On-link

 

11    281 fe80::b8ab:4464:1a44:8d73/128

 

                                    On-link

 

  1    306 ff00::/8                 On-link

 

11    281 ff00::/8                 On-link

 

===========================================================================

 

Persistent Routes:

 

  None

 

========================= Winsock entries =====================================

 

 

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)

 

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)

 

Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)

 

Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)

 

Catalog5 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)

 

Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

 

========================= Event log errors: ===============================

 

 

Application errors:

 

==================

 

Error: (04/14/2014 03:14:21 PM) (Source: WinMgmt) (User: )

 

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

 

Error: (04/14/2014 02:52:10 PM) (Source: Application Error) (User: )

 

Description: Faulting application svchost.exe, version 6.0.6001.18000, time stamp 0x2a425e19, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0x06279e48,

 

process id 0x1774, application start time 0xsvchost.exe0.

 

 

Error: (04/14/2014 01:44:58 PM) (Source: Application Error) (User: )

 

Description: Faulting application svchost.exe, version 6.0.6001.18000, time stamp 0x2a425e19, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0xe8760161,

 

process id 0x1818, application start time 0xsvchost.exe0.

 

 

Error: (04/14/2014 01:12:21 PM) (Source: Application Error) (User: )

 

Description: Faulting application svchost.exe, version 6.0.6001.18000, time stamp 0x2a425e19, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0xe8760161,

 

process id 0x198c, application start time 0xsvchost.exe0.

 

 

Error: (04/14/2014 00:34:41 PM) (Source: Google Update) (User: Whitney-PC)

 

Description: Network Request Error.

 

Error: 0x80072ee7. Http status code: 0.

 

Url=https://www.facebook.com/omaha/update.php

 

Trying config: source=FireFox, direct connection.

 

trying CUP:WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying CUP:iexplore.

 

Send request returned 0x80004005. Http status code 0.

 

Trying config: source=auto, wpad=1, script=.

 

trying CUP:WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying CUP:iexplore.

 

Send request returned 0x80004005. Http status code 0.

 

Trying config: source=FireFox, direct connection.

 

trying CUP:WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying CUP:iexplore.

 

Send request returned 0x80004005. Http status code 0.

 

Trying config: source=auto, wpad=1, script=.

 

trying CUP:WinHTTP.

 

Send request returned

 

 

Error: (04/14/2014 00:25:16 PM) (Source: Google Update) (User: Whitney-PC)

 

Description: Network Request Error.

 

Error: 0x80072ee7. Http status code: 0.

 

Url=https://www.facebook.com/omaha/update.php

 

Trying config: source=FireFox, direct connection.

 

trying CUP:WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying CUP:iexplore.

 

Send request returned 0x80004005. Http status code 0.

 

Trying config: source=auto, wpad=1, script=.

 

trying CUP:WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying CUP:iexplore.

 

Send request returned 0x80004005. Http status code 0.

 

Trying config: source=FireFox, direct connection.

 

trying CUP:WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying WinHTTP.

 

Send request returned 0x80072ee7. Http status code 0.

 

trying CUP:iexplore.

 

Send request returned 0x80004005. Http status code 0.

 

Trying config: source=auto, wpad=1, script=.

 

trying CUP:WinHTTP.

 

Send request returned

 

 

Error: (04/12/2014 08:29:16 PM) (Source: Application Error) (User: )

 

Description: Faulting application bcmwltry.exe, version 4.170.25.12, time stamp 0x46f3437a, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0x01ca8ec2,

 

process id 0x718, application start time 0xbcmwltry.exe0.

 

 

Error: (04/12/2014 08:26:50 PM) (Source: WinMgmt) (User: )

 

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

 

Error: (04/10/2014 09:41:56 PM) (Source: VSS) (User: )

 

Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid.  hr = 0x80070539.

 

 

Operation:

   OnIdentify event

   Gathering Writer Data

 

Context:

   Execution Context: Shadow Copy Optimization Writer

   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}

   Writer Name: Shadow Copy Optimization Writer

   Writer Instance ID: {51a2320a-f33c-4dd3-8263-84cc6415fbab}

 

 

Error: (04/10/2014 08:52:26 PM) (Source: WinMgmt) (User: )

 

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

 

 

System errors:

 

=============

 

Error: (04/14/2014 03:15:20 PM) (Source: Service Control Manager) (User: )

 

Description: BCM42RLY%%2

 

 

Error: (04/14/2014 03:15:19 PM) (Source: Service Control Manager) (User: )

 

Description: BCM42RLY%%2

 

 

Error: (04/14/2014 03:14:22 PM) (Source: Service Control Manager) (User: )

 

Description: BCM42RLY%%2

 

 

Error: (04/14/2014 03:14:22 PM) (Source: Service Control Manager) (User: )

 

Description: BCM42RLY%%2

 

 

Error: (04/14/2014 03:14:22 PM) (Source: Service Control Manager) (User: )

 

Description: BCM42RLY%%2

 

 

Error: (04/14/2014 03:14:22 PM) (Source: Service Control Manager) (User: )

 

Description: BCM42RLY%%2

 

 

Error: (04/14/2014 03:14:22 PM) (Source: Service Control Manager) (User: )

 

Description: Update PacFunction%%3

 

 

Error: (04/14/2014 03:14:22 PM) (Source: Service Control Manager) (User: )

 

Description: Parallel port driver%%1058

 

 

Error: (04/14/2014 03:11:44 PM) (Source: Service Control Manager) (User: )

 

Description: ScRegSetValueExWFailureActions%%5

 

 

Error: (04/14/2014 00:25:12 PM) (Source: Service Control Manager) (User: )

 

Description: BCM42RLY%%2

 

 

 

Microsoft Office Sessions:

 

=========================

 

Error: (11/25/2012 04:59:21 PM) (Source: Microsoft Office 12 Sessions)(User: )

 

Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 3860 seconds with 2760 seconds of active time.  This session ended with a crash.

 

 

 

CodeIntegrity Errors:

 

===================================

 

  Date: 2014-04-14 12:25:44.052

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-14 12:25:43.553

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-14 12:25:42.960

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-14 12:25:42.477

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-14 12:25:41.541

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-14 12:25:41.041

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-14 12:25:40.480

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-14 12:25:39.903

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-08 22:19:24.791

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\AVG\AVG2013\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

 

 

  Date: 2014-04-08 22:19:24.048

 

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\AVG\AVG2013\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

 

 

 

=========================== Installed Programs ============================

 

 

Update for Microsoft Office 2007 (KB2508958)

 

Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)

 

Adobe Flash Player 11 Plugin (Version: 11.7.700.202)

 

Adobe Reader X (10.1.4) (Version: 10.1.4)

 

Advanced Audio FX Engine

 

Advanced Video FX Engine

 

Amazon Kindle

 

Apple Application Support (Version: 1.4.1)

 

Apple Software Update (Version: 2.1.1.116)

 

AVG 2013 (Version: 13.0.3466)

 

AVG 2013 (Version: 13.0.3722)

 

AVG 2013 (Version: 2013.0.3466)

 

AVG Security Toolbar (Version: 17.0.1.12)

 

BitTorrent (Version: 7.5.0)

 

calibre (Version: 0.8.17)

 

Canon MX300 series

 

Cisco EAP-FAST Module (Version: 2.0.26)

 

Cisco LEAP Module (Version: 1.0.11)

 

Cisco PEAP Module (Version: 1.0.12)

 

Conexant HDA D330 MDC V.92 Modem

 

D3DX10 (Version: 15.4.2368.0902)

 

Dell Driver Download Manager (Version: 2.1.0.0)

 

Dell Resource CD (Version: 1.00.0000)

 

Dell Support Center (Support Software) (Version: 2.2.09085)

 

Dell Touchpad (Version: 7.1.102.7)

 

Dell Webcam Center

 

Dell Webcam Manager

 

Dell Wireless WLAN Card (Version: 4.170.25.12)

 

Facebook Video Calling 2.0.0.447 (Version: 2.0.447)

 

Final Media Player 2012 (Version: 2012.10.9.0)

 

Google Toolbar for Internet Explorer (Version: 1.0.0)

 

Google Toolbar for Internet Explorer (Version: 7.5.5111.1712)

 

Google Update Helper (Version: 1.3.23.9)

 

HP Photo Creations (Version: 1.0.0.6972)

 

Intel® Graphics Media Accelerator Driver

 

iSEEK AnswerWorks English Runtime (Version: 009.000.0002)

 

Java™ 6 Update 31 (Version: 6.0.310)

 

Java™ SE Runtime Environment 6 (Version: 1.6.0.0)

 

Junk Mail filter update (Version: 15.4.3502.0922)

 

Laptop Integrated Webcam Driver (1.04.01.1011) 

 

Live! Cam Avatar Creator (Version: 4.6.0817.1)

 

Live! Cam Avatar v1.0 (Version: 1.0)

 

Marvell Miniport Driver (Version: 10.22.6.3)

 

Mesh Runtime (Version: 15.4.5722.2)

 

Messenger Companion (Version: 15.4.3502.0922)

 

Microsoft .NET Framework 3.5 SP1

 

Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)

 

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)

 

Microsoft Application Error Reporting (Version: 12.0.6012.5000)

 

Microsoft Office 2007 Service Pack 3 (SP3)

 

Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)

 

Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Outlook Connector (Version: 14.0.5118.5000)

 

Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Professional Plus 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)

 

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

 

Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)

 

Microsoft Reader

 

Microsoft Silverlight (Version: 5.1.30214.0)

 

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

 

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)

 

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

 

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

 

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

 

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

 

Modem Diagnostic Tool (Version: 1.0.20.0)

 

Mozilla Firefox 28.0 (x86 en-US) (Version: 28.0)

 

Mozilla Maintenance Service (Version: 28.0)

 

Mplayer 0.6.9 (Version: 0.6.9)

 

MSVCRT (Version: 15.4.2862.0708)

 

Nancy Drew: Message in a Haunted Mansion

 

NOOK Study (Version: 2.1.2.28770)

 

OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)

 

QuickSet (Version: 8.2.17)

 

QuickTime (Version: 7.69.80.9)

 

RICOH Media Driver ver.2.07.01.04 (Version: 2.07.01.04)

 

RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 (Version: 3.51.01)

 

Segoe UI (Version: 15.4.2271.0615)

 

SigmaTel Audio (Version: 5.10.5207.0)

 

Skype™ 6.11 (Version: 6.11.102)

 

TurboTax 2009

 

TurboTax 2009 WinPerFedFormset (Version: 009.000.2881)

 

TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0328)

 

TurboTax 2009 WinPerTaxSupport (Version: 009.000.0245)

 

TurboTax 2009 wrapper (Version: 009.000.0145)

 

TurboTax 2010

 

TurboTax 2010 WinPerFedFormset (Version: 010.000.3337)

 

TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0407)

 

TurboTax 2010 WinPerTaxSupport (Version: 010.000.0195)

 

TurboTax 2010 wnciper (Version: 010.000.1103)

 

TurboTax 2010 wneiper (Version: 010.000.0981)

 

TurboTax 2010 wrapper (Version: 010.000.0155)

 

TurboTax 2011

 

TurboTax 2011 WinPerFedFormset (Version: 011.000.2783)

 

TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0449)

 

TurboTax 2011 WinPerTaxSupport (Version: 011.000.0211)

 

TurboTax 2011 wnciper (Version: 011.000.1433)

 

TurboTax 2011 wneiper (Version: 011.000.1396)

 

TurboTax 2011 wrapper (Version: 011.000.0121)

 

TurboTax 2012 (Version: 2012.0)

 

TurboTax 2012 WinPerFedFormset (Version: 012.000.1842)

 

TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0419)

 

TurboTax 2012 WinPerTaxSupport (Version: 012.000.0178)

 

TurboTax 2012 wnciper (Version: 012.000.1205)

 

TurboTax 2012 wneiper (Version: 012.000.1144)

 

TurboTax 2012 wrapper (Version: 012.000.0127)

 

Uninstall EMBARQHelp

 

Update for 2007 Microsoft Office System (KB967642)

 

Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)

 

Update for Microsoft Office 2007 Help for Common Features (KB963673)

 

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

 

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

 

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition

 

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

 

Update for Microsoft Office Access 2007 Help (KB963663)

 

Update for Microsoft Office Excel 2007 Help (KB963678)

 

Update for Microsoft Office Infopath 2007 Help (KB963662)

 

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition

 

Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition

 

Update for Microsoft Office Outlook 2007 Help (KB963677)

 

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878297) 32-Bit Edition

 

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

 

Update for Microsoft Office Publisher 2007 Help (KB963667)

 

Update for Microsoft Office Script Editor Help (KB963671)

 

Update for Microsoft Office Word 2007 Help (KB963665)

 

VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)

 

Windows Live Communications Platform (Version: 15.4.3502.0922)

 

Windows Live Essentials (Version: 15.4.3502.0922)

 

Windows Live Family Safety (Version: 15.4.3502.0922)

 

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)

 

Windows Live Installer (Version: 15.4.3502.0922)

 

Windows Live Mail (Version: 15.4.3502.0922)

 

Windows Live Mesh (Version: 15.4.3502.0922)

 

Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)

 

Windows Live Messenger (Version: 15.4.3502.0922)

 

Windows Live Messenger Companion Core (Version: 15.4.3502.0922)

 

Windows Live MIME IFilter (Version: 15.4.3502.0922)

 

Windows Live Movie Maker (Version: 15.4.3502.0922)

 

Windows Live Photo Common (Version: 15.4.3502.0922)

 

Windows Live Photo Gallery (Version: 15.4.3502.0922)

 

Windows Live PIMT Platform (Version: 15.4.3502.0922)

 

Windows Live Remote Client (Version: 15.4.5722.2)

 

Windows Live Remote Client Resources (Version: 15.4.5722.2)

 

Windows Live Remote Service (Version: 15.4.5722.2)

 

Windows Live Remote Service Resources (Version: 15.4.5722.2)

 

Windows Live SOXE (Version: 15.4.3502.0922)

 

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

 

Windows Live UX Platform (Version: 15.4.3502.0922)

 

Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)

 

Windows Live Writer (Version: 15.4.3502.0922)

 

Windows Live Writer Resources (Version: 15.4.3502.0922)

 

WinRAR 4.01 (32-bit) (Version: 4.01.0)

 

 

========================= Memory info: ===================================

 

 

Percentage of memory in use: 48%

 

Total physical RAM: 3061.31 MB

 

Available physical RAM: 1563.08 MB

 

Total Pagefile: 6324.87 MB

 

Available Pagefile: 4740.64 MB

 

Total Virtual: 2047.88 MB

 

Available Virtual: 1942.22 MB

 

 

========================= Partitions: =====================================

 

 

1 Drive c: () (Fixed) (Total:465.76 GB) (Free:347.77 GB) NTFS

 

 

========================= Users: ========================================

 

 

User accounts for \\WHITNEY-PC

 

 

Administrator            Guest                    Whitney                 

 

 

 

**** End of log ****

 



#7 whitsouth

whitsouth
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 02:41 PM

15:36:42.0151 0x0a48  TDSS rootkit removing tool 3.0.0.31 Apr 11 2014 08:55:10

 

15:36:49.0920 0x0a48  ============================================================

 

15:36:49.0920 0x0a48  Current date / time: 2014/04/14 15:36:49.0920

 

15:36:49.0920 0x0a48  SystemInfo:

 

15:36:49.0920 0x0a48 

 

15:36:49.0920 0x0a48  OS Version: 6.0.6002 ServicePack: 2.0

 

15:36:49.0920 0x0a48  Product type: Workstation

 

15:36:49.0920 0x0a48  ComputerName: WHITNEY-PC

 

15:36:49.0920 0x0a48  UserName: Whitney

 

15:36:49.0920 0x0a48  Windows directory: C:\Windows

 

15:36:49.0920 0x0a48  System windows directory: C:\Windows

 

15:36:49.0920 0x0a48  Processor architecture: Intel x86

 

15:36:49.0920 0x0a48  Number of processors: 2

 

15:36:49.0920 0x0a48  Page size: 0x1000

 

15:36:49.0920 0x0a48  Boot type: Normal boot

 

15:36:49.0920 0x0a48  ============================================================

 

15:36:52.0041 0x0a48  KLMD registered as C:\Windows\system32\drivers\80614919.sys

 

15:36:52.0166 0x0a48  System UUID: {B87BABC1-DE1D-D89E-EC2B-EADF70CA4B43}

 

15:36:53.0133 0x0a48  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

 

15:36:53.0133 0x0a48  ============================================================

 

15:36:53.0133 0x0a48  \Device\Harddisk0\DR0:

 

15:36:53.0133 0x0a48  MBR partitions:

 

15:36:53.0133 0x0a48  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000

 

15:36:53.0133 0x0a48  ============================================================

 

15:36:53.0164 0x0a48  C: <-> \Device\Harddisk0\DR0\Partition1

 

15:36:53.0164 0x0a48  ============================================================

 

15:36:53.0164 0x0a48  Initialize success

 

15:36:53.0164 0x0a48  ============================================================

 

15:36:58.0125 0x179c  ============================================================

 

15:36:58.0125 0x179c  Scan started

 

15:36:58.0125 0x179c  Mode: Manual;

 

15:36:58.0125 0x179c  ============================================================

 

15:36:58.0125 0x179c  KSN ping started

 

15:37:01.0978 0x179c  KSN ping finished: true

 

15:37:02.0930 0x179c  ================ Scan system memory ========================

 

15:37:02.0930 0x179c  System memory - ok

 

15:37:02.0930 0x179c  ================ Scan services =============================

 

15:37:03.0211 0x179c  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys

 

15:37:03.0226 0x179c  ACPI - ok

 

15:37:03.0367 0x179c  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A, F419E159D3E428A3929A1A983142E7B0783D3F104EE9587585418E51011E4B8F ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

 

15:37:03.0367 0x179c  AdobeARMservice - ok

 

15:37:03.0414 0x179c  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys

 

15:37:03.0460 0x179c  adp94xx - ok

 

15:37:03.0523 0x179c  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys

 

15:37:03.0538 0x179c  adpahci - ok

 

15:37:03.0570 0x179c  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys

 

15:37:03.0570 0x179c  adpu160m - ok

 

15:37:03.0601 0x179c  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys

 

15:37:03.0616 0x179c  adpu320 - ok

 

15:37:03.0679 0x179c  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

 

15:37:03.0679 0x179c  AeLookupSvc - ok

 

15:37:03.0819 0x179c  [ EF1142512BEC12F1C2C87735DA1755BE, 236EFD8FBA717123E0CF5A136ACEBB80A2BE1FA4B1A9A2C74728BC4EB4E787D8 ] AESTFilters     C:\Windows\system32\aestsrv.exe

 

15:37:03.0835 0x179c  AESTFilters - ok

 

15:37:03.0928 0x179c  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys

 

15:37:03.0944 0x179c  AFD - ok

 

15:37:03.0991 0x179c  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys

 

15:37:04.0022 0x179c  agp440 - ok

 

15:37:04.0069 0x179c  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys

 

15:37:04.0069 0x179c  aic78xx - ok

 

15:37:04.0100 0x179c  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe

 

15:37:04.0100 0x179c  ALG - ok

 

15:37:04.0131 0x179c  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys

 

15:37:04.0131 0x179c  aliide - ok

 

15:37:04.0162 0x179c  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys

 

15:37:04.0178 0x179c  amdagp - ok

 

15:37:04.0194 0x179c  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys

 

15:37:04.0194 0x179c  amdide - ok

 

15:37:04.0209 0x179c  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys

 

15:37:04.0225 0x179c  AmdK7 - ok

 

15:37:04.0240 0x179c  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys

 

15:37:04.0240 0x179c  AmdK8 - ok

 

15:37:04.0381 0x179c  [ 350F19EB5FE4EC37A2414DF56CDE1AA8, AC78C39D08D7DFEC19AF3FEF40C0EB8290897CABFF1DE40A399026E37426C735 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys

 

15:37:04.0459 0x179c  ApfiltrService - ok

 

15:37:04.0599 0x179c  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll

 

15:37:04.0599 0x179c  Appinfo - ok

 

15:37:04.0630 0x179c  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys

 

15:37:04.0646 0x179c  arc - ok

 

15:37:04.0677 0x179c  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys

 

15:37:04.0693 0x179c  arcsas - ok

 

15:37:04.0896 0x179c  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe

 

15:37:04.0896 0x179c  aspnet_state - ok

 

15:37:04.0942 0x179c  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

 

15:37:04.0942 0x179c  AsyncMac - ok

 

15:37:04.0989 0x179c  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys

 

15:37:05.0005 0x179c  atapi - ok

 

15:37:05.0083 0x179c  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

 

15:37:05.0098 0x179c  AudioEndpointBuilder - ok

 

15:37:05.0130 0x179c  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll

 

15:37:05.0145 0x179c  Audiosrv - ok

 

15:37:05.0348 0x179c  AVG Bonjour Service - ok

 

15:37:05.0379 0x179c  AVG Security Toolbar Service - ok

 

15:37:05.0426 0x179c  [ 0FE7773CD592DAE0CA994BA987F44E85, F4404D2ACCF2173E5382C4002C21D7AA711157DEF26D2F17699843DE2DAFBCED ] Avgfwfd         C:\Windows\system32\DRIVERS\avgfwd6x.sys

 

15:37:05.0442 0x179c  Avgfwfd - ok

 

15:37:05.0613 0x179c  [ 8A0D857EE0D05FDF1FAC51D3CC03E18C, 0806BCC1593B2CCFA26B0C8BA17088801D850401505A486B17BC49B28B058D01 ] avgfws          C:\Program Files\AVG\AVG2013\avgfws.exe

 

15:37:05.0722 0x179c  avgfws - ok

 

15:37:06.0066 0x179c  [ 4DB93F4DB7077801D2D82013506AC1D0, 3D71655D1557021D5D828E37EAFDBA35C631061E48D64B9D376746F8FCC760B3 ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe

 

15:37:06.0362 0x179c  AVGIDSAgent - ok

 

15:37:06.0456 0x179c  [ 5BCAE36134162830ED283F4C3D88476A, A47EE816A88A8C18458BA721AB829E49D492128BA8D5BF6FF317C2B5A1FFA60F ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys

 

15:37:06.0471 0x179c  AVGIDSDriver - ok

 

15:37:06.0565 0x179c  [ 7C8E88549BCDAAC965B1B724C175F7A9, 86240BF965C60FFAF381879D1B2DD7190FAD597E7534AEE9A9E48A2BDEC119BA ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys

 

15:37:06.0565 0x179c  AVGIDSHX - ok

 

15:37:06.0580 0x179c  [ F8D2E76EA51B3B4119DF3D6A7A6D99F3, 417E05BA987345ED48223404DEBC10043A18CBC749462186CC3EE9C20F47C86D ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys

 

15:37:06.0596 0x179c  AVGIDSShim - ok

 

15:37:06.0627 0x179c  [ 2018C4E9A40B122408763A5635CF14D9, E0BF5D5C7CFDD078F8BBA9627F1F8E0434B38A23FA9E039B37A22D7E1AD4EFFA ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys

 

15:37:06.0643 0x179c  Avgldx86 - ok

 

15:37:06.0674 0x179c  [ E2B9CF2CF787C6978E7CC898E9684E48, 73D5D8514EF1BF3BCC64DC158C68189D07B3940641F1155823C6822D03BC761B ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys

 

15:37:06.0690 0x179c  Avglogx - ok

 

15:37:06.0721 0x179c  [ 3F59750A3AA55C46663801E7C2FD1E2B, F748EB6552889974CB1FC6F666F2D78F654CAA990A339C741255355295CD46E8 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys

 

15:37:06.0721 0x179c  Avgmfx86 - ok

 

15:37:06.0752 0x179c  [ 90FA3A4BB1039701D68FD1CC2ED3EE22, 5842AECBF76163BCAEE19DED708291DD8402E2D24DD48453E6067A9AE5BABB11 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys

 

15:37:06.0752 0x179c  Avgrkx86 - ok

 

15:37:06.0814 0x179c  [ E3AB4B3B2BD79B662FDF3A8042AE036E, 0689E7900B0BBCD81DBEBF7E637183C4A744EB948BDEB4DD7AC1D7A995704C11 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys

 

15:37:06.0830 0x179c  Avgtdix - ok

 

15:37:06.0861 0x179c  [ 15ACA2AD17ACECA4814F249783E63AD3, AB8E74A5B8FC2FD04BA2B495610A8BE76408E9362A447D7069D5AAB8F3512F33 ] avgtp           C:\Windows\system32\drivers\avgtpx86.sys

 

15:37:06.0861 0x179c  avgtp - ok

 

15:37:06.0908 0x179c  [ D646FA5135A1CD795877AFE9D17FA9ED, 2F97FBCD7BD75727A77C17D75D2482AE819D5D2EB9760D96412F9C20AA7D9473 ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe

 

15:37:06.0924 0x179c  avgwd - ok

 

15:37:06.0955 0x179c  BCM42RLY - ok

 

15:37:07.0064 0x179c  [ CDF7F28FFD693B1B4137845DD1EF1CCC, 5EAEC23CEEFF69DE116C4435D6AD637BD87E20BE82B6299560F2ED3A7EAD678D ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys

 

15:37:07.0142 0x179c  BCM43XX - ok

 

15:37:07.0204 0x179c  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys

 

15:37:07.0204 0x179c  Beep - ok

 

15:37:07.0282 0x179c  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll

 

15:37:07.0314 0x179c  BFE - ok

 

15:37:07.0423 0x179c  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll

 

15:37:07.0454 0x179c  BITS - ok

 

15:37:07.0485 0x179c  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys

 

15:37:07.0501 0x179c  blbdrive - ok

 

15:37:07.0548 0x179c  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

 

15:37:07.0548 0x179c  bowser - ok

 

15:37:07.0579 0x179c  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys

 

15:37:07.0594 0x179c  BrFiltLo - ok

 

15:37:07.0610 0x179c  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys

 

15:37:07.0610 0x179c  BrFiltUp - ok

 

15:37:07.0657 0x179c  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll

 

15:37:07.0657 0x179c  Browser - ok

 

15:37:07.0672 0x179c  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys

 

15:37:07.0688 0x179c  Brserid - ok

 

15:37:07.0735 0x179c  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys

 

15:37:07.0750 0x179c  BrSerWdm - ok

 

15:37:07.0750 0x179c  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys

 

15:37:07.0750 0x179c  BrUsbMdm - ok

 

15:37:07.0782 0x179c  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys

 

15:37:07.0782 0x179c  BrUsbSer - ok

 

15:37:07.0813 0x179c  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys

 

15:37:07.0813 0x179c  BTHMODEM - ok

 

15:37:07.0844 0x179c  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

 

15:37:07.0860 0x179c  cdfs - ok

 

15:37:07.0906 0x179c  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys

 

15:37:07.0922 0x179c  cdrom - ok

 

15:37:07.0969 0x179c  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll

 

15:37:07.0969 0x179c  CertPropSvc - ok

 

15:37:08.0000 0x179c  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\drivers\circlass.sys

 

15:37:08.0000 0x179c  circlass - ok

 

15:37:08.0078 0x179c  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys

 

15:37:08.0094 0x179c  CLFS - ok

 

15:37:08.0187 0x179c  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

 

15:37:08.0187 0x179c  clr_optimization_v2.0.50727_32 - ok

 

15:37:08.0312 0x179c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

 

15:37:08.0312 0x179c  clr_optimization_v4.0.30319_32 - ok

 

15:37:08.0374 0x179c  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys

 

15:37:08.0374 0x179c  CmBatt - ok

 

15:37:08.0390 0x179c  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys

 

15:37:08.0390 0x179c  cmdide - ok

 

15:37:08.0406 0x179c  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys

 

15:37:08.0406 0x179c  Compbatt - ok

 

15:37:08.0421 0x179c  COMSysApp - ok

 

15:37:08.0515 0x179c  cpuz132 - ok

 

15:37:08.0530 0x179c  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys

 

15:37:08.0530 0x179c  crcdisk - ok

 

15:37:08.0546 0x179c  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys

 

15:37:08.0546 0x179c  Crusoe - ok

 

15:37:08.0640 0x179c  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll

 

15:37:08.0640 0x179c  CryptSvc - ok

 

15:37:08.0749 0x179c  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll

 

15:37:08.0764 0x179c  DcomLaunch - ok

 

15:37:08.0811 0x179c  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

 

15:37:08.0811 0x179c  DfsC - ok

 

15:37:08.0983 0x179c  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe

 

15:37:09.0108 0x179c  DFSR - ok

 

15:37:09.0201 0x179c  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll

 

15:37:09.0217 0x179c  Dhcp - ok

 

15:37:09.0248 0x179c  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys

 

15:37:09.0248 0x179c  disk - ok

 

15:37:09.0310 0x179c  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll

 

15:37:09.0326 0x179c  Dnscache - ok

 

15:37:09.0373 0x179c  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll

 

15:37:09.0388 0x179c  dot3svc - ok

 

15:37:09.0451 0x179c  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll

 

15:37:09.0466 0x179c  DPS - ok

 

15:37:09.0498 0x179c  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

 

15:37:09.0513 0x179c  drmkaud - ok

 

15:37:09.0685 0x179c  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

 

15:37:09.0732 0x179c  DXGKrnl - ok

 

15:37:09.0778 0x179c  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys

 

15:37:09.0778 0x179c  E1G60 - ok

 

15:37:09.0810 0x179c  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll

 

15:37:09.0810 0x179c  EapHost - ok

 

15:37:09.0841 0x179c  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys

 

15:37:09.0856 0x179c  Ecache - ok

 

15:37:09.0903 0x179c  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

 

15:37:09.0919 0x179c  ehRecvr - ok

 

15:37:09.0934 0x179c  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe

 

15:37:09.0950 0x179c  ehSched - ok

 

15:37:09.0966 0x179c  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll

 

15:37:09.0966 0x179c  ehstart - ok

 

15:37:09.0997 0x179c  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys

 

15:37:10.0028 0x179c  elxstor - ok

 

15:37:10.0122 0x179c  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll

 

15:37:10.0137 0x179c  EMDMgmt - ok

 

15:37:10.0184 0x179c  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys

 

15:37:10.0184 0x179c  ErrDev - ok

 

15:37:10.0278 0x179c  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll

 

15:37:10.0278 0x179c  EventSystem - ok

 

15:37:10.0356 0x179c  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys

 

15:37:10.0356 0x179c  exfat - ok

 

15:37:10.0418 0x179c  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys

 

15:37:10.0434 0x179c  fastfat - ok

 

15:37:10.0449 0x179c  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys

 

15:37:10.0449 0x179c  fdc - ok

 

15:37:10.0449 0x179c  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll

 

15:37:10.0465 0x179c  fdPHost - ok

 

15:37:10.0496 0x179c  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll

 

15:37:10.0496 0x179c  FDResPub - ok

 

15:37:10.0512 0x179c  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

 

15:37:10.0512 0x179c  FileInfo - ok

 

15:37:10.0527 0x179c  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

 

15:37:10.0527 0x179c  Filetrace - ok

 

15:37:10.0543 0x179c  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys

 

15:37:10.0558 0x179c  flpydisk - ok

 

15:37:10.0590 0x179c  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

 

15:37:10.0590 0x179c  FltMgr - ok

 

15:37:10.0746 0x179c  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll

 

15:37:10.0792 0x179c  FontCache - ok

 

15:37:10.0870 0x179c  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

 

15:37:10.0870 0x179c  FontCache3.0.0.0 - ok

 

15:37:10.0964 0x179c  [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys

 

15:37:10.0964 0x179c  fssfltr - ok

 

15:37:11.0167 0x179c  [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe

 

15:37:11.0260 0x179c  fsssvc - ok

 

15:37:11.0292 0x179c  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

 

15:37:11.0292 0x179c  Fs_Rec - ok

 

15:37:11.0323 0x179c  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys

 

15:37:11.0323 0x179c  gagp30kx - ok

 

15:37:11.0401 0x179c  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll

 

15:37:11.0432 0x179c  gpsvc - ok

 

15:37:11.0526 0x179c  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe

 

15:37:11.0541 0x179c  gupdate - ok

 

15:37:11.0557 0x179c  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe

 

15:37:11.0572 0x179c  gupdatem - ok

 

15:37:11.0697 0x179c  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

 

15:37:11.0713 0x179c  gusvc - ok

 

15:37:11.0760 0x179c  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

 

15:37:11.0775 0x179c  HdAudAddService - ok

 

15:37:11.0853 0x179c  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys

 

15:37:11.0900 0x179c  HDAudBus - ok

 

15:37:11.0916 0x179c  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys

 

15:37:11.0931 0x179c  HidBth - ok

 

15:37:11.0947 0x179c  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys

 

15:37:11.0947 0x179c  HidIr - ok

 

15:37:12.0009 0x179c  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll

 

15:37:12.0009 0x179c  hidserv - ok

 

15:37:12.0072 0x179c  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys

 

15:37:12.0072 0x179c  HidUsb - ok

 

15:37:12.0118 0x179c  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll

 

15:37:12.0134 0x179c  hkmsvc - ok

 

15:37:12.0150 0x179c  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys

 

15:37:12.0165 0x179c  HpCISSs - ok

 

15:37:12.0212 0x179c  [ 46D67209550973257601A533E2AC5785, 3C0D97781947BA8532344AA5D9F3B684761B5B3263A0A294F4593E76EE41DB0C ] HSFHWAZL        C:\Windows\system32\DRIVERS\VSTAZL3.SYS

 

15:37:12.0228 0x179c  HSFHWAZL - ok

 

15:37:12.0306 0x179c  [ E9E589C9AB799F52E18F057635A2B362, 24857D672B09C13EF290E7EA587D25270DE23740EE18E2FCF16716D9E0D0E457 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys

 

15:37:12.0368 0x179c  HSF_DPV - ok

 

15:37:12.0415 0x179c  [ 7845D2385F4DC7DFB3CCAF0C2FA4948E, 18F01851E18CCF84A7987B739C7661C8BF272CF69F4E6BA87A69FCDBA1B8774A ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys

 

15:37:12.0430 0x179c  HSXHWAZL - ok

 

15:37:12.0508 0x179c  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

 

15:37:12.0524 0x179c  HTTP - ok

 

15:37:12.0540 0x179c  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys

 

15:37:12.0555 0x179c  i2omp - ok

 

15:37:12.0586 0x179c  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys

 

15:37:12.0586 0x179c  i8042prt - ok

 

15:37:12.0664 0x179c  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys

 

15:37:12.0680 0x179c  iaStorV - ok

 

15:37:12.0774 0x179c  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

 

15:37:12.0836 0x179c  idsvc - ok

 

15:37:13.0008 0x179c  [ F7ECD4B9E7FAD4A01A0ED889D40E2494, EFDA1EFE26B1CC61CBA82197C237AF57AC37D17BED219701ADCB75764AA25E9B ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys

 

15:37:13.0117 0x179c  igfx - ok

 

15:37:13.0148 0x179c  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys

 

15:37:13.0164 0x179c  iirsp - ok

 

15:37:13.0242 0x179c  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll

 

15:37:13.0273 0x179c  IKEEXT - ok

 

15:37:13.0304 0x179c  [ CACE3BE2499CF00827A641869297CEA6, C5A6E029F8B1766E0869DB7DA548E08E18220197DC7F77AA4591BDA3F8529211 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys

 

15:37:13.0304 0x179c  IntcHdmiAddService - ok

 

15:37:13.0335 0x179c  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys

 

15:37:13.0351 0x179c  intelide - ok

 

15:37:13.0366 0x179c  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys

 

15:37:13.0366 0x179c  intelppm - ok

 

15:37:13.0460 0x179c  [ 3DC635B66DD7412E1C9C3A77B8D78F25, D3894065DA2D08744863ECC5EE9027A0E39711A6A56AAB599F1CAF4BB996F42A ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe

 

15:37:13.0476 0x179c  IntuitUpdateService - ok

 

15:37:13.0569 0x179c  [ D9DA7B3117BF5EFF921C0CDED4D58050, D51A2AFC0E310C5A0EE1540A9E6353F5F7C9E76711187FAD91EEB0B3254EE935 ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe

 

15:37:13.0585 0x179c  IntuitUpdateServiceV4 - ok

 

15:37:13.0616 0x179c  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

 

15:37:13.0616 0x179c  IPBusEnum - ok

 

15:37:13.0647 0x179c  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

 

15:37:13.0647 0x179c  IpFilterDriver - ok

 

15:37:13.0710 0x179c  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

 

15:37:13.0710 0x179c  iphlpsvc - ok

 

15:37:13.0725 0x179c  IpInIp - ok

 

15:37:13.0772 0x179c  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys

 

15:37:13.0772 0x179c  IPMIDRV - ok

 

15:37:13.0803 0x179c  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys

 

15:37:13.0803 0x179c  IPNAT - ok

 

15:37:13.0819 0x179c  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys

 

15:37:13.0819 0x179c  IRENUM - ok

 

15:37:13.0850 0x179c  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

 

15:37:13.0850 0x179c  isapnp - ok

 

15:37:13.0928 0x179c  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys

 

15:37:13.0944 0x179c  iScsiPrt - ok

 

15:37:13.0975 0x179c  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys

 

15:37:13.0975 0x179c  iteatapi - ok

 

15:37:14.0022 0x179c  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys

 

15:37:14.0022 0x179c  iteraid - ok

 

15:37:14.0037 0x179c  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys

 

15:37:14.0037 0x179c  kbdclass - ok

 

15:37:14.0100 0x179c  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys

 

15:37:14.0100 0x179c  kbdhid - ok

 

15:37:14.0131 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe

 

15:37:14.0131 0x179c  KeyIso - ok

 

15:37:14.0193 0x179c  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

 

15:37:14.0209 0x179c  KSecDD - ok

 

15:37:14.0287 0x179c  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll

 

15:37:14.0302 0x179c  KtmRm - ok

 

15:37:14.0365 0x179c  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll

 

15:37:14.0380 0x179c  LanmanServer - ok

 

15:37:14.0443 0x179c  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

 

15:37:14.0458 0x179c  LanmanWorkstation - ok

 

15:37:14.0490 0x179c  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

 

15:37:14.0490 0x179c  lltdio - ok

 

15:37:14.0536 0x179c  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll

 

15:37:14.0552 0x179c  lltdsvc - ok

 

15:37:14.0583 0x179c  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll

 

15:37:14.0583 0x179c  lmhosts - ok

 

15:37:14.0614 0x179c  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys

 

15:37:14.0630 0x179c  LSI_FC - ok

 

15:37:14.0692 0x179c  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys

 

15:37:14.0708 0x179c  LSI_SAS - ok

 

15:37:14.0755 0x179c  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys

 

15:37:14.0770 0x179c  LSI_SCSI - ok

 

15:37:14.0802 0x179c  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys

 

15:37:14.0817 0x179c  luafv - ok

 

15:37:14.0864 0x179c  [ F8B823414A22DBF3BEC10DCAA5F93CD8, 651C7521033439C0AA9006F1AC2CF376B1588CE781BEE4D10B7622FA3D055F6C ] McciCMService   C:\Program Files\Common Files\Motive\McciCMService.exe

 

15:37:14.0880 0x179c  McciCMService - ok

 

15:37:14.0911 0x179c  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

 

15:37:14.0911 0x179c  Mcx2Svc - ok

 

15:37:14.0942 0x179c  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys

 

15:37:14.0942 0x179c  mdmxsdk - ok

 

15:37:14.0958 0x179c  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys

 

15:37:14.0973 0x179c  megasas - ok

 

15:37:15.0004 0x179c  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys

 

15:37:15.0051 0x179c  MegaSR - ok

 

15:37:15.0067 0x179c  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll

 

15:37:15.0082 0x179c  MMCSS - ok

 

15:37:15.0098 0x179c  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys

 

15:37:15.0098 0x179c  Modem - ok

 

15:37:15.0129 0x179c  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

 

15:37:15.0129 0x179c  monitor - ok

 

15:37:15.0145 0x179c  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys

 

15:37:15.0160 0x179c  mouclass - ok

 

15:37:15.0176 0x179c  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys

 

15:37:15.0176 0x179c  mouhid - ok

 

15:37:15.0207 0x179c  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys

 

15:37:15.0207 0x179c  MountMgr - ok

 

15:37:15.0270 0x179c  [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

 

15:37:15.0285 0x179c  MozillaMaintenance - ok

 

15:37:15.0332 0x179c  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys

 

15:37:15.0332 0x179c  mpio - ok

 

15:37:15.0363 0x179c  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

 

15:37:15.0363 0x179c  mpsdrv - ok

 

15:37:15.0426 0x179c  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll

 

15:37:15.0457 0x179c  MpsSvc - ok

 

15:37:15.0472 0x179c  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys

 

15:37:15.0472 0x179c  Mraid35x - ok

 

15:37:15.0488 0x179c  [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50         C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS

 

15:37:15.0488 0x179c  MREMP50 - ok

 

15:37:15.0504 0x179c  MREMPR5 - ok

 

15:37:15.0504 0x179c  MRENDIS5 - ok

 

15:37:15.0519 0x179c  [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50         C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS

 

15:37:15.0519 0x179c  MRESP50 - ok

 

15:37:15.0582 0x179c  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

 

15:37:15.0597 0x179c  MRxDAV - ok

 

15:37:15.0660 0x179c  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

 

15:37:15.0660 0x179c  mrxsmb - ok

 

15:37:15.0738 0x179c  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

 

15:37:15.0738 0x179c  mrxsmb10 - ok

 

15:37:15.0753 0x179c  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

 

15:37:15.0769 0x179c  mrxsmb20 - ok

 

15:37:15.0816 0x179c  [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci          C:\Windows\system32\drivers\msahci.sys

 

15:37:15.0816 0x179c  msahci - ok

 

15:37:15.0847 0x179c  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

 

15:37:15.0862 0x179c  msdsm - ok

 

15:37:15.0894 0x179c  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe

 

15:37:15.0894 0x179c  MSDTC - ok

 

15:37:15.0940 0x179c  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

 

15:37:15.0956 0x179c  Msfs - ok

 

15:37:15.0987 0x179c  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

 

15:37:15.0987 0x179c  msisadrv - ok

 

15:37:16.0034 0x179c  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

 

15:37:16.0034 0x179c  MSiSCSI - ok

 

15:37:16.0050 0x179c  msiserver - ok

 

15:37:16.0096 0x179c  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

 

15:37:16.0096 0x179c  MSKSSRV - ok

 

15:37:16.0096 0x179c  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

 

15:37:16.0112 0x179c  MSPCLOCK - ok

 

15:37:16.0159 0x179c  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

 

15:37:16.0159 0x179c  MSPQM - ok

 

15:37:16.0221 0x179c  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

 

15:37:16.0237 0x179c  MsRPC - ok

 

15:37:16.0284 0x179c  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys

 

15:37:16.0284 0x179c  mssmbios - ok

 

15:37:16.0299 0x179c  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

 

15:37:16.0299 0x179c  MSTEE - ok

 

15:37:16.0330 0x179c  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys

 

15:37:16.0330 0x179c  Mup - ok

 

15:37:16.0393 0x179c  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll

 

15:37:16.0408 0x179c  napagent - ok

 

15:37:16.0486 0x179c  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

 

15:37:16.0502 0x179c  NativeWifiP - ok

 

15:37:16.0564 0x179c  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys

 

15:37:16.0596 0x179c  NDIS - ok

 

15:37:16.0611 0x179c  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

 

15:37:16.0627 0x179c  NdisTapi - ok

 

15:37:16.0627 0x179c  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

 

15:37:16.0627 0x179c  Ndisuio - ok

 

15:37:16.0736 0x179c  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

 

15:37:16.0752 0x179c  NdisWan - ok

 

15:37:16.0767 0x179c  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

 

15:37:16.0767 0x179c  NDProxy - ok

 

15:37:16.0783 0x179c  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

 

15:37:16.0798 0x179c  NetBIOS - ok

 

15:37:16.0861 0x179c  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys

 

15:37:16.0861 0x179c  netbt - ok

 

15:37:16.0876 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe

 

15:37:16.0876 0x179c  Netlogon - ok

 

15:37:16.0923 0x179c  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll

 

15:37:16.0939 0x179c  Netman - ok

 

15:37:17.0017 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

 

15:37:17.0032 0x179c  NetMsmqActivator - ok

 

15:37:17.0048 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

 

15:37:17.0064 0x179c  NetPipeActivator - ok

 

15:37:17.0095 0x179c  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll

 

15:37:17.0110 0x179c  netprofm - ok

 

15:37:17.0142 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

 

15:37:17.0157 0x179c  NetTcpActivator - ok

 

15:37:17.0173 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

 

15:37:17.0173 0x179c  NetTcpPortSharing - ok

 

15:37:17.0204 0x179c  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys

 

15:37:17.0204 0x179c  nfrd960 - ok

 

15:37:17.0235 0x179c  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll

 

15:37:17.0251 0x179c  NlaSvc - ok

 

15:37:17.0282 0x179c  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys

 

15:37:17.0282 0x179c  Npfs - ok

 

15:37:17.0313 0x179c  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll

 

15:37:17.0329 0x179c  nsi - ok

 

15:37:17.0329 0x179c  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

 

15:37:17.0344 0x179c  nsiproxy - ok

 

15:37:17.0438 0x179c  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

 

15:37:17.0516 0x179c  Ntfs - ok

 

15:37:17.0547 0x179c  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys

 

15:37:17.0563 0x179c  ntrigdigi - ok

 

15:37:17.0563 0x179c  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys

 

15:37:17.0563 0x179c  Null - ok

 

15:37:17.0610 0x179c  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys

 

15:37:17.0610 0x179c  nvraid - ok

 

15:37:17.0641 0x179c  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

 

15:37:17.0656 0x179c  nvstor - ok

 

15:37:17.0672 0x179c  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

 

15:37:17.0688 0x179c  nv_agp - ok

 

15:37:17.0688 0x179c  NwlnkFlt - ok

 

15:37:17.0703 0x179c  NwlnkFwd - ok

 

15:37:17.0875 0x179c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

 

15:37:17.0906 0x179c  odserv - ok

 

15:37:17.0968 0x179c  [ 19CAC780B858822055F46C58A111723C, D91CE501328281B8FEE6943776A145FB3201645B01BA8D1545FFA93A547DE2C7 ] OEM02Dev        C:\Windows\system32\DRIVERS\OEM02Dev.sys

 

15:37:17.0984 0x179c  OEM02Dev - ok

 

15:37:18.0031 0x179c  [ 86326062A90494BDD79CE383511D7D69, 43D5682CA8ECB4BA7CC1A5C4C2BF966EE4802E8C3AA84CDEB634CA3C410DAB89 ] OEM02Vfx        C:\Windows\system32\DRIVERS\OEM02Vfx.sys

 

15:37:18.0031 0x179c  OEM02Vfx - ok

 

15:37:18.0062 0x179c  [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys

 

15:37:18.0062 0x179c  ohci1394 - ok

 

15:37:18.0124 0x179c  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

 

15:37:18.0140 0x179c  ose - ok

 

15:37:18.0234 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll

 

15:37:18.0265 0x179c  p2pimsvc - ok

 

15:37:18.0327 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll

 

15:37:18.0358 0x179c  p2psvc - ok

 

15:37:18.0390 0x179c  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys

 

15:37:18.0390 0x179c  Parport - ok

 

15:37:18.0452 0x179c  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys

 

15:37:18.0452 0x179c  partmgr - ok

 

15:37:18.0468 0x179c  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys

 

15:37:18.0468 0x179c  Parvdm - ok

 

15:37:18.0483 0x179c  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll

 

15:37:18.0499 0x179c  PcaSvc - ok

 

15:37:18.0530 0x179c  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys

 

15:37:18.0546 0x179c  pci - ok

 

15:37:18.0577 0x179c  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys

 

15:37:18.0577 0x179c  pciide - ok

 

15:37:18.0608 0x179c  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys

 

15:37:18.0624 0x179c  pcmcia - ok

 

15:37:18.0717 0x179c  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

 

15:37:18.0748 0x179c  PEAUTH - ok

 

15:37:18.0873 0x179c  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll

 

15:37:18.0967 0x179c  pla - ok

 

15:37:19.0029 0x179c  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

 

15:37:19.0045 0x179c  PlugPlay - ok

 

15:37:19.0092 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll

 

15:37:19.0123 0x179c  PNRPAutoReg - ok

 

15:37:19.0170 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll

 

15:37:19.0201 0x179c  PNRPsvc - ok

 

15:37:19.0279 0x179c  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

 

15:37:19.0310 0x179c  PolicyAgent - ok

 

15:37:19.0341 0x179c  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

 

15:37:19.0341 0x179c  PptpMiniport - ok

 

15:37:19.0372 0x179c  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys

 

15:37:19.0372 0x179c  Processor - ok

 

15:37:19.0435 0x179c  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll

 

15:37:19.0435 0x179c  ProfSvc - ok

 

15:37:19.0450 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe

 

15:37:19.0466 0x179c  ProtectedStorage - ok

 

15:37:19.0513 0x179c  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys

 

15:37:19.0513 0x179c  PSched - ok

 

15:37:19.0622 0x179c  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys

 

15:37:19.0684 0x179c  ql2300 - ok

 

15:37:19.0731 0x179c  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys

 

15:37:19.0747 0x179c  ql40xx - ok

 

15:37:19.0809 0x179c  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll

 

15:37:19.0825 0x179c  QWAVE - ok

 

15:37:19.0840 0x179c  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

 

15:37:19.0840 0x179c  QWAVEdrv - ok

 

15:37:19.0856 0x179c  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

 

15:37:19.0856 0x179c  RasAcd - ok

 

15:37:19.0887 0x179c  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll

 

15:37:19.0887 0x179c  RasAuto - ok

 

15:37:19.0903 0x179c  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

 

15:37:19.0918 0x179c  Rasl2tp - ok

 

15:37:19.0981 0x179c  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll

 

15:37:19.0996 0x179c  RasMan - ok

 

15:37:20.0059 0x179c  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

 

15:37:20.0059 0x179c  RasPppoe - ok

 

15:37:20.0074 0x179c  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

 

15:37:20.0090 0x179c  RasSstp - ok

 

15:37:20.0137 0x179c  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

 

15:37:20.0168 0x179c  rdbss - ok

 

15:37:20.0184 0x179c  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

 

15:37:20.0184 0x179c  RDPCDD - ok

 

15:37:20.0230 0x179c  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys

 

15:37:20.0277 0x179c  rdpdr - ok

 

15:37:20.0277 0x179c  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

 

15:37:20.0277 0x179c  RDPENCDD - ok

 

15:37:20.0340 0x179c  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

 

15:37:20.0355 0x179c  RDPWD - ok

 

15:37:20.0402 0x179c  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll

 

15:37:20.0402 0x179c  RemoteAccess - ok

 

15:37:20.0464 0x179c  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll

 

15:37:20.0464 0x179c  RemoteRegistry - ok

 

15:37:20.0527 0x179c  [ EA885E7A56F1BE1F14C372337C42FE48, 2C6F0FCB95D4A04E9BC26765B1EB856D3D40811F8B0D090C0E8AB571FF4D1C7A ] rimmptsk        C:\Windows\system32\DRIVERS\rimmptsk.sys

 

15:37:20.0527 0x179c  rimmptsk - ok

 

15:37:20.0542 0x179c  [ D7E09BC852684A7B1FC0F74FE090D45A, 97D6ABCDA50C4FC5BE8B5532FF013EC9AF4AA098D7EB450EB1C3A358BD8E6B2D ] rimsptsk        C:\Windows\system32\DRIVERS\rimsptsk.sys

 

15:37:20.0558 0x179c  rimsptsk - ok

 

15:37:20.0605 0x179c  [ B0A7494A9BA7909EFAC64E05D3F160DB, 3B2C362F70C53CF12DD36C1888292FB5C9E05CB711B30B22C1FBE330C5E635BE ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys

 

15:37:20.0605 0x179c  rismxdp - ok

 

15:37:20.0636 0x179c  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe

 

15:37:20.0636 0x179c  RpcLocator - ok

 

15:37:20.0683 0x179c  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll

 

15:37:20.0714 0x179c  RpcSs - ok

 

15:37:20.0745 0x179c  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

 

15:37:20.0761 0x179c  rspndr - ok

 

15:37:20.0776 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe

 

15:37:20.0776 0x179c  SamSs - ok

 

15:37:20.0792 0x179c  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

 

15:37:20.0808 0x179c  sbp2port - ok

 

15:37:20.0839 0x179c  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll

 

15:37:20.0839 0x179c  SCardSvr - ok

 

15:37:20.0917 0x179c  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll

 

15:37:20.0948 0x179c  Schedule - ok

 

15:37:21.0010 0x179c  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll

 

15:37:21.0010 0x179c  SCPolicySvc - ok

 

15:37:21.0073 0x179c  [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys

 

15:37:21.0073 0x179c  sdbus - ok

 

15:37:21.0120 0x179c  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

 

15:37:21.0120 0x179c  SDRSVC - ok

 

15:37:21.0151 0x179c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys

 

15:37:21.0151 0x179c  secdrv - ok

 

15:37:21.0166 0x179c  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll

 

15:37:21.0166 0x179c  seclogon - ok

 

15:37:21.0198 0x179c  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll

 

15:37:21.0198 0x179c  SENS - ok

 

15:37:21.0244 0x179c  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys

 

15:37:21.0244 0x179c  Serenum - ok

 

15:37:21.0276 0x179c  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys

 

15:37:21.0276 0x179c  Serial - ok

 

15:37:21.0307 0x179c  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys

 

15:37:21.0307 0x179c  sermouse - ok

 

15:37:21.0338 0x179c  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll

 

15:37:21.0354 0x179c  SessionEnv - ok

 

15:37:21.0369 0x179c  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys

 

15:37:21.0385 0x179c  sffdisk - ok

 

15:37:21.0400 0x179c  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

 

15:37:21.0400 0x179c  sffp_mmc - ok

 

15:37:21.0447 0x179c  [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys

 

15:37:21.0447 0x179c  sffp_sd - ok

 

15:37:21.0478 0x179c  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys

 

15:37:21.0478 0x179c  sfloppy - ok

 

15:37:21.0525 0x179c  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll

 

15:37:21.0541 0x179c  SharedAccess - ok

 

15:37:21.0603 0x179c  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

 

15:37:21.0619 0x179c  ShellHWDetection - ok

 

15:37:21.0650 0x179c  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys

 

15:37:21.0650 0x179c  sisagp - ok

 

15:37:21.0697 0x179c  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys

 

15:37:21.0697 0x179c  SiSRaid2 - ok

 

15:37:21.0712 0x179c  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys

 

15:37:21.0728 0x179c  SiSRaid4 - ok

 

15:37:21.0775 0x179c  [ BC9C2EF22EE0320C079E3FF9B4D29951, BBEE3CB683B798B5259DCCB9064C7613BD7A188DC891C43275C2D68CA512E810 ] SIUSBXP         C:\Windows\system32\drivers\SiUSBXp.sys

 

15:37:21.0822 0x179c  SIUSBXP - ok

 

15:37:21.0931 0x179c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe

 

15:37:21.0931 0x179c  SkypeUpdate - ok

 

15:37:22.0180 0x179c  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe

 

15:37:22.0383 0x179c  slsvc - ok

 

15:37:22.0461 0x179c  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll

 

15:37:22.0477 0x179c  SLUINotify - ok

 

15:37:22.0524 0x179c  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys

 

15:37:22.0539 0x179c  Smb - ok

 

15:37:22.0586 0x179c  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

 

15:37:22.0602 0x179c  SNMPTRAP - ok

 

15:37:22.0617 0x179c  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys

 

15:37:22.0617 0x179c  spldr - ok

 

15:37:22.0664 0x179c  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe

 

15:37:22.0680 0x179c  Spooler - ok

 

15:37:22.0742 0x179c  sprtsvc_dellsupportcenter - ok

 

15:37:22.0804 0x179c  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys

 

15:37:22.0820 0x179c  srv - ok

 

15:37:22.0882 0x179c  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

 

15:37:22.0898 0x179c  srv2 - ok

 

15:37:22.0960 0x179c  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

 

15:37:22.0960 0x179c  srvnet - ok

 

15:37:22.0992 0x179c  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

 

15:37:23.0007 0x179c  SSDPSRV - ok

 

15:37:23.0023 0x179c  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll

 

15:37:23.0023 0x179c  SstpSvc - ok

 

15:37:23.0085 0x179c  [ 7E6DD4B34ACD36AF6C711D2BDE91B040, 737C76749FE53A968E558289613A6ED5A0263F9585A47028343284F64808AC67 ] STacSV          C:\Windows\system32\STacSV.exe

 

15:37:23.0101 0x179c  STacSV - ok

 

15:37:23.0163 0x179c  [ 6A2A5E809C2C0178326D92B19EE4AAD3, B2D78857BDB72A2CB63950558CA3D5105F1857056F52BB8E9D888394CC2D06E9 ] STHDA           C:\Windows\system32\drivers\stwrt.sys

 

15:37:23.0179 0x179c  STHDA - ok

 

15:37:23.0257 0x179c  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll

 

15:37:23.0288 0x179c  stisvc - ok

 

15:37:23.0304 0x179c  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys

 

15:37:23.0304 0x179c  swenum - ok

 

15:37:23.0366 0x179c  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll

 

15:37:23.0382 0x179c  swprv - ok

 

15:37:23.0397 0x179c  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys

 

15:37:23.0413 0x179c  Symc8xx - ok

 

15:37:23.0428 0x179c  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys

 

15:37:23.0444 0x179c  Sym_hi - ok

 

15:37:23.0475 0x179c  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys

 

15:37:23.0475 0x179c  Sym_u3 - ok

 

15:37:23.0553 0x179c  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll

 

15:37:23.0584 0x179c  SysMain - ok

 

15:37:23.0600 0x179c  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll

 

15:37:23.0600 0x179c  TabletInputService - ok

 

15:37:23.0662 0x179c  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll

 

15:37:23.0678 0x179c  TapiSrv - ok

 

15:37:23.0694 0x179c  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll

 

15:37:23.0709 0x179c  TBS - ok

 

15:37:23.0834 0x179c  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

 

15:37:23.0865 0x179c  Tcpip - ok

 

15:37:23.0959 0x179c  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys

 

15:37:23.0990 0x179c  Tcpip6 - ok

 

15:37:24.0037 0x179c  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

 

15:37:24.0052 0x179c  tcpipreg - ok

 

15:37:24.0068 0x179c  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

 

15:37:24.0068 0x179c  TDPIPE - ok

 

15:37:24.0084 0x179c  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

 

15:37:24.0084 0x179c  TDTCP - ok

 

15:37:24.0146 0x179c  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

 

15:37:24.0146 0x179c  tdx - ok

 

15:37:24.0177 0x179c  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys

 

15:37:24.0177 0x179c  TermDD - ok

 

15:37:24.0224 0x179c  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll

 

15:37:24.0240 0x179c  TermService - ok

 

15:37:24.0286 0x179c  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll

 

15:37:24.0286 0x179c  Themes - ok

 

15:37:24.0318 0x179c  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll

 

15:37:24.0318 0x179c  THREADORDER - ok

 

15:37:24.0364 0x179c  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll

 

15:37:24.0364 0x179c  TrkWks - ok

 

15:37:24.0411 0x179c  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

 

15:37:24.0411 0x179c  TrustedInstaller - ok

 

15:37:24.0458 0x179c  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

 

15:37:24.0458 0x179c  tssecsrv - ok

 

15:37:24.0505 0x179c  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys

 

15:37:24.0505 0x179c  tunmp - ok

 

15:37:24.0552 0x179c  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

 

15:37:24.0552 0x179c  tunnel - ok

 

15:37:24.0598 0x179c  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys

 

15:37:24.0598 0x179c  uagp35 - ok

 

15:37:24.0630 0x179c  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

 

15:37:24.0645 0x179c  udfs - ok

 

15:37:24.0676 0x179c  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe

 

15:37:24.0676 0x179c  UI0Detect - ok

 

15:37:24.0708 0x179c  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

 

15:37:24.0708 0x179c  uliagpkx - ok

 

15:37:24.0754 0x179c  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys

 

15:37:24.0770 0x179c  uliahci - ok

 

15:37:24.0832 0x179c  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys

 

15:37:24.0832 0x179c  UlSata - ok

 

15:37:24.0895 0x179c  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys

 

15:37:24.0895 0x179c  ulsata2 - ok

 

15:37:24.0926 0x179c  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys

 

15:37:24.0926 0x179c  umbus - ok

 

15:37:24.0957 0x179c  Update PacFunction - ok

 

15:37:25.0004 0x179c  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll

 

15:37:25.0020 0x179c  upnphost - ok

 

15:37:25.0066 0x179c  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

 

15:37:25.0098 0x179c  usbccgp - ok

 

15:37:25.0129 0x179c  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys

 

15:37:25.0129 0x179c  usbcir - ok

 

15:37:25.0191 0x179c  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys

 

15:37:25.0207 0x179c  usbehci - ok

 

15:37:25.0269 0x179c  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys

 

15:37:25.0285 0x179c  usbhub - ok

 

15:37:25.0300 0x179c  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys

 

15:37:25.0300 0x179c  usbohci - ok

 

15:37:25.0347 0x179c  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys

 

15:37:25.0363 0x179c  usbprint - ok

 

15:37:25.0394 0x179c  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys

 

15:37:25.0425 0x179c  usbscan - ok

 

15:37:25.0441 0x179c  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

 

15:37:25.0441 0x179c  USBSTOR - ok

 

15:37:25.0456 0x179c  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys

 

15:37:25.0456 0x179c  usbuhci - ok

 

15:37:25.0503 0x179c  [ E67998E8F14CB0627A769F6530BCB352, 60982F168E9BF13954328C728F55F4D3ADDC572CACB65289B0E895A63DAA08C1 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys

 

15:37:25.0519 0x179c  usbvideo - ok

 

15:37:25.0566 0x179c  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll

 

15:37:25.0581 0x179c  UxSms - ok

 

15:37:25.0659 0x179c  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe

 

15:37:25.0675 0x179c  vds - ok

 

15:37:25.0690 0x179c  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

 

15:37:25.0706 0x179c  vga - ok

 

15:37:25.0722 0x179c  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys

 

15:37:25.0722 0x179c  VgaSave - ok

 

15:37:25.0737 0x179c  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys

 

15:37:25.0753 0x179c  viaagp - ok

 

15:37:25.0815 0x179c  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys

 

15:37:25.0815 0x179c  ViaC7 - ok

 

15:37:25.0878 0x179c  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys

 

15:37:25.0878 0x179c  viaide - ok

 

15:37:25.0893 0x179c  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

 

15:37:25.0909 0x179c  volmgr - ok

 

15:37:25.0987 0x179c  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

 

15:37:25.0987 0x179c  volmgrx - ok

 

15:37:26.0065 0x179c  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys

 

15:37:26.0080 0x179c  volsnap - ok

 

15:37:26.0112 0x179c  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys

 

15:37:26.0127 0x179c  vsmraid - ok

 

15:37:26.0205 0x179c  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe

 

15:37:26.0268 0x179c  VSS - ok

 

15:37:26.0346 0x179c  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll

 

15:37:26.0377 0x179c  W32Time - ok

 

15:37:26.0392 0x179c  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys

 

15:37:26.0408 0x179c  WacomPen - ok

 

15:37:26.0439 0x179c  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys

 

15:37:26.0439 0x179c  Wanarp - ok

 

15:37:26.0455 0x179c  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

 

15:37:26.0455 0x179c  Wanarpv6 - ok

 

15:37:26.0502 0x179c  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll

 

15:37:26.0533 0x179c  wcncsvc - ok

 

15:37:26.0564 0x179c  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

 

15:37:26.0564 0x179c  WcsPlugInService - ok

 

15:37:26.0595 0x179c  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys

 

15:37:26.0595 0x179c  Wd - ok

 

15:37:26.0642 0x179c  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam.sys

 

15:37:26.0642 0x179c  WDC_SAM - ok

 

15:37:26.0704 0x179c  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys

 

15:37:26.0736 0x179c  Wdf01000 - ok

 

15:37:26.0751 0x179c  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll

 

15:37:26.0767 0x179c  WdiServiceHost - ok

 

15:37:26.0782 0x179c  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll

 

15:37:26.0782 0x179c  WdiSystemHost - ok

 

15:37:26.0845 0x179c  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll

 

15:37:26.0860 0x179c  WebClient - ok

 

15:37:26.0923 0x179c  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll

 

15:37:26.0938 0x179c  Wecsvc - ok

 

15:37:26.0954 0x179c  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll

 

15:37:26.0970 0x179c  wercplsupport - ok

 

15:37:27.0032 0x179c  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll

 

15:37:27.0032 0x179c  WerSvc - ok

 

15:37:27.0126 0x179c  [ 4DACA8F07537D4D7E3534BB99294AA26, 8418B5A83D945FF1827C5B19A57BE7FFE1FD523C6795B0ACE88E4A906C82BA2C ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys

 

15:37:27.0172 0x179c  winachsf - ok

 

15:37:27.0250 0x179c  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll

 

15:37:27.0266 0x179c  WinDefend - ok

 

15:37:27.0282 0x179c  WinHttpAutoProxySvc - ok

 

15:37:27.0344 0x179c  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

 

15:37:27.0360 0x179c  Winmgmt - ok

 

15:37:27.0484 0x179c  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll

 

15:37:27.0562 0x179c  WinRM - ok

 

15:37:27.0656 0x179c  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll

 

15:37:27.0672 0x179c  Wlansvc - ok

 

15:37:27.0734 0x179c  [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

 

15:37:27.0750 0x179c  wlcrasvc - ok

 

15:37:27.0952 0x179c  [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

 

15:37:28.0062 0x179c  wlidsvc - ok

 

15:37:28.0077 0x179c  wltrysvc - ok

 

15:37:28.0124 0x179c  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys

 

15:37:28.0124 0x179c  WmiAcpi - ok

 

15:37:28.0202 0x179c  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

 

15:37:28.0202 0x179c  wmiApSrv - ok

 

15:37:28.0280 0x179c  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe

 

15:37:28.0311 0x179c  WMPNetworkSvc - ok

 

15:37:28.0389 0x179c  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll

 

15:37:28.0389 0x179c  WPCSvc - ok

 

15:37:28.0436 0x179c  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

 

15:37:28.0436 0x179c  WPDBusEnum - ok

 

15:37:28.0498 0x179c  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys

 

15:37:28.0514 0x179c  WpdUsb - ok

 

15:37:28.0623 0x179c  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

 

15:37:28.0654 0x179c  WPFFontCache_v0400 - ok

 

15:37:28.0686 0x179c  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

 

15:37:28.0686 0x179c  ws2ifsl - ok

 

15:37:28.0748 0x179c  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\System32\wscsvc.dll

 

15:37:28.0748 0x179c  wscsvc - ok

 

15:37:28.0764 0x179c  WSearch - ok

 

15:37:28.0951 0x179c  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll

 

15:37:29.0060 0x179c  wuauserv - ok

 

15:37:29.0154 0x179c  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

 

15:37:29.0154 0x179c  WudfPf - ok

 

15:37:29.0185 0x179c  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys

 

15:37:29.0200 0x179c  WUDFRd - ok

 

15:37:29.0263 0x179c  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

 

15:37:29.0278 0x179c  wudfsvc - ok

 

15:37:29.0325 0x179c  [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8, 3660379AADB6DB56E54D9C680929CD3882CDE4E6A8BB888FC892110D6B50C627 ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys

 

15:37:29.0325 0x179c  XAudio - ok

 

15:37:29.0356 0x179c  [ 28DC5D626E036A75A572556F0A6EB1F6, 9AE635C08B87AD85A552ADE0AF8BA10DC258E0DEFE133A2A74EFCD43B7A38A98 ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe

 

15:37:29.0403 0x179c  XAudioService - ok

 

15:37:29.0497 0x179c  [ 04E268ADFC81964C49DC0C082D520F7E, 7D2574E366636AB1D59A08FE3038268095D627C39636C6ED6BCE1D5ACB44A179 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys

 

15:37:29.0512 0x179c  yukonwlh - ok

 

15:37:29.0528 0x179c  ================ Scan global ===============================

 

15:37:29.0559 0x179c  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll

 

15:37:29.0637 0x179c  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll

 

15:37:29.0700 0x179c  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll

 

15:37:29.0778 0x179c  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe

 

15:37:29.0793 0x179c  [ Global ] - ok

 

15:37:29.0793 0x179c  ================ Scan MBR ==================================

 

15:37:29.0856 0x179c  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0

 

15:37:30.0370 0x179c  \Device\Harddisk0\DR0 - ok

 

15:37:30.0370 0x179c  ================ Scan VBR ==================================

 

15:37:30.0386 0x179c  [ 7BD6E77E3A41110D6A2562C768B40F3B ] \Device\Harddisk0\DR0\Partition1

 

15:37:30.0433 0x179c  \Device\Harddisk0\DR0\Partition1 - ok

 

15:37:30.0433 0x179c  Waiting for KSN requests completion. In queue: 25

 

15:37:31.0447 0x179c  Waiting for KSN requests completion. In queue: 25

 

15:37:32.0461 0x179c  Waiting for KSN requests completion. In queue: 25

 

15:37:33.0537 0x179c  AV detected via SS2: AVG Internet Security 2013, C:\Program Files\AVG\AVG2013\avgwsc.exe ( 13.0.0.3300 ), 0x41000 ( enabled : updated )

 

15:37:33.0537 0x179c  FW detected via SS2: AVG Internet Security 2013, C:\Program Files\AVG\AVG2013\avgwsc.exe ( 13.0.0.3300 ), 0x41010 ( enabled )

 

15:37:36.0174 0x179c  ============================================================

 

15:37:36.0174 0x179c  Scan finished

 

15:37:36.0174 0x179c  ============================================================

 

15:37:36.0189 0x0a00  Detected object count: 0

 

15:37:36.0189 0x0a00  Actual detected object count: 0

 



#8 whitsouth

whitsouth
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 02:58 PM

# AdwCleaner v3.011 - Report created 05/11/2013 at 19:44:05

 

# Updated 03/11/2013 by Xplode

 

# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)

 

# Username : Whitney - WHITNEY-PC

 

# Running from : C:\Users\Whitney\Downloads\AdwCleaner.exe

 

# Option : Clean

 

 

***** [ Services ] *****

 

 

[#] Service Deleted : BitGuard

 

[#] Service Deleted : bonanzadealslive

 

[#] Service Deleted : bonanzadealslivem

 

Service Deleted : vToolbarUpdater17.0.12

 

 

***** [ Files / Folders ] *****

 

 

[x] Not Deleted : C:\ProgramData\AVG Secure Search

 

[x] Not Deleted : C:\ProgramData\AVG Security Toolbar

 

Folder Deleted : C:\ProgramData\Babylon

 

[!] Folder Deleted : C:\ProgramData\BitGuard

 

Folder Deleted : C:\ProgramData\BonanzaDealsLive

 

[x] Not Deleted : C:\Program Files\AVG Secure Search

 

Folder Deleted : C:\Program Files\BonanzaDeals

 

Folder Deleted : C:\Program Files\BonanzaDealsLive

 

Folder Deleted : C:\Program Files\Gophoto.it

 

Folder Deleted : C:\Program Files\RelevantKnowledge

 

Folder Deleted : C:\Program Files\TornTV.com

 

[x] Not Deleted : C:\Program Files\Common Files\AVG Secure Search

 

[x] Not Deleted : C:\Users\Whitney\AppData\Local\AVG Secure Search

 

[x] Not Deleted : C:\Users\Whitney\AppData\Local\AVG Security Toolbar

 

Folder Deleted : C:\Users\Whitney\AppData\Local\BonanzaDealsLive

 

Folder Deleted : C:\Users\Whitney\AppData\Local\PackageAware

 

[x] Not Deleted : C:\Users\Whitney\AppData\LocalLow\AVG Secure Search

 

[x] Not Deleted : C:\Users\Whitney\AppData\LocalLow\AVG Security Toolbar

 

Folder Deleted : C:\Users\Whitney\AppData\Roaming\Babylon

 

Folder Deleted : C:\Users\Whitney\AppData\Roaming\ExpressFiles

 

Folder Deleted : C:\Users\Whitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard

 

File Deleted : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\bProtector_extensions.rdf

 

File Deleted : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\bprotector_extensions.sqlite

 

File Deleted : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\bprotector_prefs.js

 

[x] Not Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml

 

File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml

 

File Deleted : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\searchplugins\BrowserProtect.xml

 

File Deleted : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\user.js

 

File Deleted : C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job

 

File Deleted : C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineCore

 

File Deleted : C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job

 

File Deleted : C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineUA

 

File Deleted : C:\Windows\System32\Tasks\Express FilesUpdate

 

 

***** [ Shortcuts ] *****

 

 

 

***** [ Registry ] *****

 

 

[x] Not Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

 

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ieadcoanfjloocmfafkebdnfefmohngj

 

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf

 

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FD3565ED-BD5B-43E1-8537-705FEC230D7A}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD3565ED-BD5B-43E1-8537-705FEC230D7A}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1820496-D0D0-4203-B26B-41A73010E110}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1820496-D0D0-4203-B26B-41A73010E110}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5A2AE19C-CFE2-40AB-BAA3-F1A10DD674C0}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A2AE19C-CFE2-40AB-BAA3-F1A10DD674C0}

 

[x] Not Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]

 

[x] Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\BonanzaDealsLive.exe

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL

 

Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickCtrl.9

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLive.Update3WebControl.3

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass.1

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass.1

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc

 

Key Deleted : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc.1.0

 

Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap

 

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho

 

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1

 

Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol

 

Key Deleted : HKLM\SOFTWARE\Classes\S

 

Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi

 

Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe

 

Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]

 

[x] Not Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin

 

Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3

 

Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9

 

[x] Not Deleted : HKCU\Software\f538fdcb63bbd13

 

[x] Not Deleted : HKLM\SOFTWARE\f538fdcb63bbd13

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AppID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\AppID\{D34F391D-4CB7-467F-A543-F583857C63B0}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{118E1BF6-6279-432F-A285-373A77B90C7A}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{14CEEA2F-3D21-46ED-A7D2-89056C520E5E}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{1CC8D970-F626-4F19-815F-890032BB6606}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{33BAF587-9647-4281-A34F-F4830CDC1B9F}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{5B5E5D0E-7C83-4A32-ADD2-E5F488DD6783}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{6802463D-636F-41FE-9924-4CAD56906590}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{806785D0-375F-4C2C-92E3-B8EE65D28E83}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{944661E7-67B9-4DF7-BFF2-05388C166D34}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7CF66EF-4F0D-46B1-AF71-A500378D6C34}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{B71934E5-6B93-448D-9D32-CBAA5150C5D8}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{C4BEF720-313C-420A-ACF6-77DD95D8F553}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{D34F391D-4CB7-467F-A543-F583857C63B0}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{E970727E-0508-4BEB-8B72-BBA9D0D047C7}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{EBF1F869-D2F0-4D31-A877-386C853A9C3D}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{F3CF4912-CF0A-451B-AF3B-C4F216C715E4}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{F904AC50-215C-42AB-A532-77E9FDBA9B19}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}

 

[x] Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063412-BEA4-4D76-8ED3-183BE6220D17}

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C4BEF720-313C-420A-ACF6-77DD95D8F553}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33BAF587-9647-4281-A34F-F4830CDC1B9F}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4BEF720-313C-420A-ACF6-77DD95D8F553}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

[x] Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

 

[x] Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

 

[x] Not Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]

 

Key Deleted : HKCU\Software\1ClickDownload

 

[x] Not Deleted : HKCU\Software\AVG Secure Search

 

Key Deleted : HKCU\Software\BabSolution

 

Key Deleted : HKCU\Software\BonanzaDealsLive

 

Key Deleted : HKCU\Software\Conduit

 

Key Deleted : HKCU\Software\DataMngr

 

[#] Key Deleted : HKCU\Software\DataMngr_Toolbar

 

Key Deleted : HKCU\Software\delta LTD

 

Key Deleted : HKCU\Software\Delta

 

Key Deleted : HKCU\Software\ExpressFiles

 

Key Deleted : HKCU\Software\ilivid

 

Key Deleted : HKCU\Software\InstallCore

 

Key Deleted : HKCU\Software\Softonic

 

Key Deleted : HKCU\Software\YahooPartnerToolbar

 

[x] Not Deleted : HKCU\Software\AppDataLow\Software\AVG Security Toolbar

 

[x] Not Deleted : HKLM\Software\AVG Secure Search

 

[x] Not Deleted : HKLM\Software\AVG Security Toolbar

 

Key Deleted : HKLM\Software\Babylon

 

Key Deleted : HKLM\Software\BabylonToolbar

 

Key Deleted : HKLM\Software\BonanzaDealsLive

 

Key Deleted : HKLM\Software\DataMngr

 

Key Deleted : HKLM\Software\Delta

 

Key Deleted : HKLM\Software\ExpressFiles

 

Key Deleted : HKLM\Software\Freeze.com

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}

 

[x] Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search

 

[x] Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search

 

# AdwCleaner v3.023 - Report created 14/04/2014 at 15:47:19

 

# Updated 01/04/2014 by Xplode

 

# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)

 

# Username : Whitney - WHITNEY-PC

 

# Running from : C:\Users\Whitney\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FFAGC01Q\AdwCleaner.exe

 

# Option : Clean

 

 

***** [ Services ] *****

 

 

 

***** [ Files / Folders ] *****

 

 

Folder Deleted : C:\ProgramData\AVG Secure Search

 

Folder Deleted : C:\ProgramData\AVG Security Toolbar

 

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalMediaPlayer

 

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TornTV.com

 

Folder Deleted : C:\Program Files\AVG Secure Search

 

Folder Deleted : C:\Program Files\FinalMediaPlayer

 

Folder Deleted : C:\Program Files\Common Files\AVG Secure Search

 

Folder Deleted : C:\Users\Whitney\AppData\Local\AVG Secure Search

 

Folder Deleted : C:\Users\Whitney\AppData\Local\AVG Security Toolbar

 

Folder Deleted : C:\Users\Whitney\AppData\Local\FinalMediaPlayer

 

Folder Deleted : C:\Users\Whitney\AppData\LocalLow\AVG Secure Search

 

Folder Deleted : C:\Users\Whitney\AppData\LocalLow\AVG Security Toolbar

 

Folder Deleted : C:\Users\Whitney\AppData\Roaming\FinalMediaPlayer

 

File Deleted : C:\Users\Whitney\Desktop\FinalMediaPlayer.lnk

 

File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml

 

File Deleted : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\searchplugins\conduit-search.xml

 

File Deleted : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\user.js

 

 

***** [ Shortcuts ] *****

 

 

 

***** [ Registry ] *****

 

 

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

 

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FD3565ED-BD5B-43E1-8537-705FEC230D7A}

 

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD3565ED-BD5B-43E1-8537-705FEC230D7A}

 

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1820496-D0D0-4203-B26B-41A73010E110}

 

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1820496-D0D0-4203-B26B-41A73010E110}

 

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5A2AE19C-CFE2-40AB-BAA3-F1A10DD674C0}

 

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A2AE19C-CFE2-40AB-BAA3-F1A10DD674C0}

 

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]

 

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings

 

Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI

 

Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1

 

Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj

 

Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1

 

Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE

 

Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1

 

Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin

 

Key Deleted : HKCU\Software\f538fdcb63bbd13

 

Key Deleted : HKLM\SOFTWARE\f538fdcb63bbd13

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D34F391D-4CB7-467F-A543-F583857C63B0}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{118E1BF6-6279-432F-A285-373A77B90C7A}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{14CEEA2F-3D21-46ED-A7D2-89056C520E5E}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1CC8D970-F626-4F19-815F-890032BB6606}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{33BAF587-9647-4281-A34F-F4830CDC1B9F}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5B5E5D0E-7C83-4A32-ADD2-E5F488DD6783}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6802463D-636F-41FE-9924-4CAD56906590}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{806785D0-375F-4C2C-92E3-B8EE65D28E83}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{944661E7-67B9-4DF7-BFF2-05388C166D34}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7CF66EF-4F0D-46B1-AF71-A500378D6C34}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B71934E5-6B93-448D-9D32-CBAA5150C5D8}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C4BEF720-313C-420A-ACF6-77DD95D8F553}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D34F391D-4CB7-467F-A543-F583857C63B0}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E970727E-0508-4BEB-8B72-BBA9D0D047C7}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EBF1F869-D2F0-4D31-A877-386C853A9C3D}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F3CF4912-CF0A-451B-AF3B-C4F216C715E4}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F904AC50-215C-42AB-A532-77E9FDBA9B19}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

 

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}

 

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}

 

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}

 

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}

 

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C4BEF720-313C-420A-ACF6-77DD95D8F553}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33BAF587-9647-4281-A34F-F4830CDC1B9F}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4BEF720-313C-420A-ACF6-77DD95D8F553}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}

 

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}

 

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

 

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

 

Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

 

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]

 

Key Deleted : HKCU\Software\1ClickDownload

 

Key Deleted : HKCU\Software\AVG Secure Search

 

Key Deleted : HKCU\Software\installedbrowserextensions

 

Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

 

Key Deleted : HKCU\Software\AppDataLow\Software\AVG Security Toolbar

 

Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider

 

Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}

 

Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}

 

Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}

 

Key Deleted : HKLM\Software\AVG Secure Search

 

Key Deleted : HKLM\Software\AVG Security Toolbar

 

Key Deleted : HKLM\Software\DealPlyLive

 

Key Deleted : HKLM\Software\installedbrowserextensions

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search

 

Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

 

 

***** [ Browsers ] *****

 

 

-\\ Internet Explorer v9.0.8112.16545

 

 

 

-\\ Mozilla Firefox v28.0 (en-US)

 

 

[ File : C:\Users\Whitney\AppData\Roaming\Mozilla\Firefox\Profiles\gwsxbjuq.default\prefs.js ]

 

 

Line Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\FireFoxExt\\17.0.1.12");

 

Line Deleted : user_pref("avg.userPreferences.URLBarFocus.whiteList", "bing\\.com|google\\.\\w+|yahoo\\.\\w+|gmail\\.\\w+|hotmail\\.\\w+|live\\.\\w+|isearch\\.avg\\.com|mysearch\\.avg\\.com");

 

Line Deleted : user_pref("browser.search.defaultenginename", "Conduit Search");

 

Line Deleted : user_pref("browser.search.selectedEngine", "Conduit Search");

 

Line Deleted : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?gd=&ctid=CT3321733&octid=EB_ORIGINAL_CTID&ISID=M07152A47-010A-4914-87A1-D245DA775774&SearchSource=55&CUI=&UM=2&UP=SPC2207148-1880-43E0[...]

 

Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", true);

 

Line Deleted : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://www.yhs.delta-search.com/?affID=119842&tt=210213_yh&babsrc=NT_ss&mntrId=dea527ab000000000000001fe15e01d1");

 

Line Deleted : user_pref("extensions.crossrider.bic", "1451e992d46bab88fa202eb973dff0a8");

 

Line Deleted : user_pref("extensions.delta.admin", false);

 

Line Deleted : user_pref("extensions.delta.aflt", "babsst");

 

Line Deleted : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");

 

Line Deleted : user_pref("extensions.delta.autoRvrt", "false");

 

Line Deleted : user_pref("extensions.delta.bbDpng", "27");

 

Line Deleted : user_pref("extensions.delta.cntry", "US");

 

Line Deleted : user_pref("extensions.delta.dfltLng", "en");

 

Line Deleted : user_pref("extensions.delta.excTlbr", false);

 

Line Deleted : user_pref("extensions.delta.ffxUnstlRst", true);

 

Line Deleted : user_pref("extensions.delta.hdrMd5", "C23B30C65A7547ACFE0DE3F1D8FCD174");

 

Line Deleted : user_pref("extensions.delta.id", "dea527ab000000000000001fe15e01d1");

 

Line Deleted : user_pref("extensions.delta.instlDay", "15975");

 

Line Deleted : user_pref("extensions.delta.instlRef", "sst");

 

Line Deleted : user_pref("extensions.delta.lastVrsnTs", "1.8.24.623:46:12");

 

Line Deleted : user_pref("extensions.delta.newTab", false);

 

Line Deleted : user_pref("extensions.delta.prdct", "delta");

 

Line Deleted : user_pref("extensions.delta.prtnrId", "delta");

 

Line Deleted : user_pref("extensions.delta.rvrt", "false");

 

Line Deleted : user_pref("extensions.delta.sg", "azb");

 

Line Deleted : user_pref("extensions.delta.smplGrp", "none");

 

Line Deleted : user_pref("extensions.delta.tlbrId", "coupon2");

 

Line Deleted : user_pref("extensions.delta.tlbrSrchUrl", "");

 

Line Deleted : user_pref("extensions.delta.vrsn", "1.8.24.6");

 

Line Deleted : user_pref("extensions.delta.vrsnTs", "1.8.24.623:46:12");

 

Line Deleted : user_pref("extensions.delta.vrsni", "1.8.24.6");

 

Line Deleted : user_pref("extensions.delta_i.babExt", "");

 

Line Deleted : user_pref("extensions.delta_i.babTrack", "affID=119351&tt=250913_cpn2&tsp=5018");

 

Line Deleted : user_pref("extensions.delta_i.srcExt", "ss");

 

 

*************************

 

 

AdwCleaner[R0].txt - [32760 octets] - [05/11/2013 20:20:09]

 

AdwCleaner[S0].txt - [30556 octets] - [05/11/2013 20:44:05]

 

 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [30617 octets] ##########

 



#9 whitsouth

whitsouth
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 03:13 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Junkware Removal Tool (JRT) by Thisisu

 

Version: 6.1.4 (04.06.2014:1)

 

OS: Windows Vista ™ Home Premium x86

 

Ran by Whitney on Mon 04/14/2014 at 16:00:48.02

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

 

~~~ Services

 

 

 

 

~~~ Registry Values

 

 

 

 

~~~ Registry Keys

 

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1552676105-1670047857-989621030-1000\Software\sweetim

 

 

 

 

~~~ Files

 

 

 

 

~~~ Folders

 

 

Successfully deleted: [Folder] "C:\ProgramData\pc1data"

 

Successfully deleted: [Folder] "C:\Users\Whitney\AppData\Roaming\pc cleaners"

 

Successfully deleted: [Empty Folder] C:\Users\Whitney\appdata\local\{F32CFCE8-C59C-402F-BEFB-CBF884EBD946}

 

 

 

 

~~~ FireFox

 

 

Successfully deleted: [File] C:\Users\Whitney\AppData\Roaming\mozilla\firefox\profiles\gwsxbjuq.default\extensions\blsqbzatiw@blsqbzatiw.org.xpi [Tracur]

 

Successfully deleted the following from C:\Users\Whitney\AppData\Roaming\mozilla\firefox\profiles\gwsxbjuq.default\prefs.js

 

 

user_pref("extensions.a5a6bf058b9784b84a2ec6f5462cfccb210120365d3c04ec986245fac2592d0dfcom51390.51390.cookie.testingGaq.value", "%22hxxps%3A//extclickmedia-maynemyltf.netdna-s

 

user_pref("extensions.a5a6bf058b9784b84a2ec6f5462cfccb210120365d3c04ec986245fac2592d0dfcom51390.51390.name", "Torntv V9.0");

 

Emptied folder: C:\Users\Whitney\AppData\Roaming\mozilla\firefox\profiles\gwsxbjuq.default\minidumps [79 files]

 

 

 

 

~~~ Event Viewer Logs were cleared

 

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Scan was completed on Mon 04/14/2014 at 16:07:25.81

 

End of JRT log

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:20 PM

Posted 14 April 2014 - 03:33 PM

Good, a lot of adware related items removed.. The ESET will take an hour or more.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 whitsouth

whitsouth
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:20 PM

Posted 14 April 2014 - 04:45 PM

C:\Users\Whitney\AppData\Local\Temp\0.22742400535994867 multiple threats cleaned by deleting - quarantined

 

C:\Users\Whitney\AppData\Local\Temp\{0B684916-217D-440B-B96D-E9225AD78460}\setup.exe multiple threats cleaned by deleting - quarantined

 

C:\Windows\Temp\DeaD38A.tmp Win32/Adware.1ClickDownload.W application cleaned by deleting - quarantined

 

 

 

So what do you think?



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:20 PM

Posted 14 April 2014 - 05:25 PM

Good..

Now check for and disable or remove any unwanted add-ons from your browser:
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:20 PM

Posted 15 April 2014 - 09:17 AM

Why did you not delete some items like. Trojan bpprotector and the outdated AVG items.
http://secure-computer-solutions.com/blog/2012/07/bprotector_for_windows_should.html
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users