Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Infected on the Deep Web, might have Skynet Virus or something


  • Please log in to reply
17 replies to this topic

#1 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 03:25 AM

So I attempted to use the Deep Web (not for anything immoral or illegal, don't worry) and ended up doing something incredibly dumb. I opened a .pdf file. I know, that's a major mistake. I didn't know at the time. Please ignore my stupidity for now.

 

Anyway, nothing happened immediately, but a few minutes after I left Tor and went on using Google Chrome for random stuff, Firefox started and opened by itself and AVG popped up saying my computer was threatened by some adware or malware (I honestly forget what it said). So I pressed the "remove threats" button until AVG said all of the threats were removed.

 

But then I talked to some more computer literate people about this, and they said it probably wasn't just adware and it probably wasn't actually removed from my computer. Someone said it's probably a keylogger and someone else even said it could be the Skynet Virus. I downloaded Malwarebytes Anti-malware to scan for serious viruses but someone else said that Skynet is invisible to that program and I'm basically screwed.

 

So I ended up discovering this website (you people seem amazing and helpful) and I followed a thread from a few years ago where basically someone else was instructed to download Root Repeal and read the report. But Root Repeal doesn't work on my computer because Root Repeal doesn't support 64-bit OS.

 

I don't see anything wrong with my computer. No pop ups, no messages, etc. None of my accounts have been hacked as far as I know.

 

I'm currently running a Malwarebytes Anti-Malware scan, it has detected 57 threats so far (and I thought my computer was clean, lol) but I looked at the list and none of them seem to be Skynet or anything new.

 

So, what do I do? I'm good with basic computer stuff but pretty computer illiterate with stuff like this, so any help is appreciated!

 

Thanks so much, guys!

 

-Victoria 

 

PS I have learned my lesson, I'm not gonna go on the Deep Web again. That really isn't a place for computer illiterate people like me... I feel dumb but whatever.



BC AdBot (Login to Remove)

 


#2 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 03:34 AM

I ran a full computer scan with AVG and it said it removed a high risk Trojan Horse (EDIT: Hider?) or something, along with a few other things.


Edited by Vimm3l, 04 July 2014 - 03:35 AM.


#3 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 03:41 AM

Also I did an anti-rootkit scan with AVG, nothing came up.



#4 buddy215

buddy215

  • Moderator
  • 13,312 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee

Posted 04 July 2014 - 05:01 AM

When the MBAM scan is finished, post the log back here.

Open up AVG and post the log of what it found and removed.

 

Download TDSSKiller and save it to your desktop.

  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 06:03 AM

 

When the MBAM scan is finished, post the log back here.

Open up AVG and post the log of what it found and removed.

 

Download TDSSKiller and save it to your desktop.

  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

 

I don't know how to get the log for AVG, sorry. I Googled it but nothing came up. If you can tell me how I will of course post it. The AVG scan removed Adware Generic_r.PO and Adware Generic_r.ME and Adware Generic_r.ME and Adware Generic5.AOJM and Trojan horse Hider.ZPT

 

I tried my best to get the AVG information:
 
"";"Adware Generic_r.PO, C:\Windows\SysWOW64\installd.exe";"Secured"
"";"Adware Generic_r.ME, C:\Users\Victoria\AppData\Local\Temp\appinstal1.exe";"Secured"
"";"Adware Generic_r.ME, C:\Users\Victoria\AppData\Local\Temp\applinstall.exe";"Secured"
"";"Adware Generic5.AOJM, C:\Users\Victoria\AppData\Local\genienext\nengine.dll";"Secured"
"";"Trojan horse Hider.ZPT, C:\Users\Victoria\AppData\Local\Temp\drvinstal.exe";"Secured"
 
 
MBAM:
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 04/07/2014
Scan Time: 3:49:33 AM
Logfile: 
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Victoria
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 250827
Time Elapsed: 39 min, 21 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 44
PUP.Optional.Wajam.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WajamUpdater, Quarantined, [f950857ab3c7c3730a4372fa4db329d7], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\APPID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}, Quarantined, [99b07f80df9bb086bd1fe98b986a8b75], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}, Quarantined, [99b07f80df9bb086bd1fe98b986a8b75], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}, Quarantined, [7ecb17e8c3b79a9cae2f84f090726f91], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}, Quarantined, [7ecb17e8c3b79a9cae2f84f090726f91], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\wajam.WajamBHO.1, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\wajam.WajamBHO, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wajam.WajamBHO, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wajam.WajamBHO.1, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\wajam.WajamDownloader.1, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\wajam.WajamDownloader, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wajam.WajamDownloader, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wajam.WajamDownloader.1, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\TYPELIB\{A0EE0278-2986-4E5A-884E-A3BF0357E476}, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\INTERFACE\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A0EE0278-2986-4E5A-884E-A3BF0357E476}, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\Updater.AmiUpd.1, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\Updater.AmiUpd, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Updater.AmiUpd, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Updater.AmiUpd.1, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\CLASSES\APPID\priam_bho.DLL, Quarantined, [2524718eeb8fb086d8526c423bc8a957], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\priam_bho.DLL, Quarantined, [4504db2415652a0cbd6d8f1fae55d030], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\jpmbfleldcgkldadpdinhjjopdfpjfjp, Quarantined, [0544e11eccaef541580e0c81877b54ac], 
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, Quarantined, [4702f609cdada78f59d058540ef5fe02], 
PUP.Optional.SProtector.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SProtector, Quarantined, [e1681ce3522858def85fc9e438cbab55], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [db6e7f80b8c27abccbab2f90a360c739], 
PUP.Optional.Conduit.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\FF, Quarantined, [3712a75899e13ff7bd9bd4dc887b1ee2], 
PUP.Optional.ValueApps.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\ValueApps, Quarantined, [be8b68973842ad8920d0e6ae5fa36f91], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Quarantined, [1f2a8976a3d794a2ba14783247bc7e82], 
PUP.Optional.Wajam.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WAJAM, Quarantined, [d871b34cc3b70d29a08cb0fe01026d93], 
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Wajam, Quarantined, [e069996628523600df7b0a7cce34ab55], 
 
Registry Values: 3
PUP.Optional.InstallCore.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0C1C2Y1E1P1M1I1TtG1QtH1D, Quarantined, [1f2a8976a3d794a2ba14783247bc7e82]
PUP.Optional.NextLive.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|NextLive, C:\Windows\SysWOW64\rundll32.exe "C:\Users\Victoria\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l, Quarantined, [d871926de496340286871e7726dc13ed]
PUP.Optional.Wajam.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WAJAM|affiliate_id, 5921, Quarantined, [d871b34cc3b70d29a08cb0fe01026d93]
 
Registry Data: 1
PUP.Optional.Conduit.A, HKU\S-1-5-21-2364955730-3949261027-1517011092-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.conduit.com/?ctid=CT3321521&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPDF702383-9C31-4550-8E88-9DD656FE2BDA&SSPV=, Good: (http://www.google.com), Bad: (http://search.conduit.com/?ctid=CT3321521&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPDF702383-9C31-4550-8E88-9DD656FE2BDA&SSPV=),Replaced,[014844bbdaa0f541ab00a58083810000]
 
Folders: 13
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\Firefox, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\IE, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\Updater, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Conduit.A, C:\Users\Victoria\AppData\Local\Temp\ct2704262, Quarantined, [1237956aa7d3b87e966eb8cf0ff3c739], 
PUP.Optional.Conduit.A, C:\Users\Victoria\AppData\Local\Temp\ct2704262\xpi, Quarantined, [1237956aa7d3b87e966eb8cf0ff3c739], 
PUP.Optional.Wajam.A, C:\Users\Victoria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam, Quarantined, [d6733ac51763b1852ee26b1d857d5fa1], 
PUP.Optional.NextLive.A, C:\Users\Victoria\AppData\Roaming\newnext.me, Quarantined, [a8a1b44badcd78bea2a3246409f9ba46], 
PUP.Optional.NextLive.A, C:\Users\Victoria\AppData\Roaming\newnext.me\cache, Quarantined, [a8a1b44badcd78bea2a3246409f9ba46], 
PUP.Optional.Multiplug, C:\Program Files (x86)\YoutubeAdblocker, Quarantined, [49002dd2f08a2313caf7bace4fb3fa06], 
PUP.Optional.Wajam.A, C:\Users\Victoria\AppData\Local\Wajam, Quarantined, [61e8fa054e2c33030445b4d64fb312ee], 
PUP.Optional.Wajam.A, C:\Users\Victoria\AppData\Local\Wajam\Chrome, Quarantined, [61e8fa054e2c33030445b4d64fb312ee], 
PUP.Optional.YoutubeAdblocker.A, C:\ProgramData\YoutubeAdblocker, Quarantined, [3a0fe41b403aa294e6fef397c2401ee2], 
 
Files: 26
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe, Quarantined, [f950857ab3c7c3730a4372fa4db329d7], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\IE\priam_bho.dll, Quarantined, [f257629d453577bfe9f486edb34fa65a], 
PUP.Optional.SoftwareUpdater, C:\Users\Victoria\AppData\Local\SwvUpdater\Updater.exe, Quarantined, [59f0b8474139082ebdfc4ef802008b75], 
PUP.Optional.Installex, C:\$Recycle.Bin\S-1-5-21-2364955730-3949261027-1517011092-1001\$RU2OF4J.exe, Quarantined, [b495857af08a54e26b20ae99bb46dd23], 
PUP.Optional.MediaView.A, C:\Users\Victoria\AppData\Local\Temp\setapp.exe, Quarantined, [f5547c8334462c0a15b4e47342c231cf], 
PUP.Optional.Amonetize.A, C:\Users\Victoria\AppData\Local\Temp\Setup-a.exe, Quarantined, [78d13bc492e8270f792e3be62fd5a060], 
PUP.Optional.MediaPlayerAlpha.A, C:\Users\Victoria\AppData\Local\Temp\Setup2.exe, Quarantined, [d574e11e8bef94a25214692de91809f7], 
PUP.Optional.InstalleRex, C:\Users\Victoria\Downloads\Sarah B. Pomeroy - Spartan Women.exe, Quarantined, [a3a60af56b0f44f2ac4cb3c1ca37be42], 
PUP.Optional.OneClickDownloader.A, C:\Users\Victoria\Downloads\firstrow_download (1).exe, Quarantined, [05441de2d2a8a4921bdc85ce679a669a], 
PUP.Optional.OneClickDownloader.A, C:\Users\Victoria\Downloads\firstrow_download.exe, Quarantined, [7ccd26d9a6d493a3e1167cd717eaf010], 
PUP.Software.Updater, C:\Windows\Tasks\AmiUpdXp.job, Quarantined, [c188916ebcbe3df9bd58dcc05ea4c63a], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\uninstall.exe, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\Firefox\firefox_trigger_extension.htm, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\IE\favicon.ico, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\IE\wajamLogo.bmp, Quarantined, [e069996628523600df7b0a7cce34ab55], 
PUP.Optional.Conduit.A, C:\Users\Victoria\AppData\Local\Temp\ct2704262\CT2704262.txt, Quarantined, [1237956aa7d3b87e966eb8cf0ff3c739], 
PUP.Optional.Conduit.A, C:\Users\Victoria\AppData\Local\Temp\ct2704262\initData.json, Quarantined, [1237956aa7d3b87e966eb8cf0ff3c739], 
PUP.Optional.Conduit.A, C:\Users\Victoria\AppData\Local\Temp\ct2704262\manifest.json, Quarantined, [1237956aa7d3b87e966eb8cf0ff3c739], 
PUP.Optional.Wajam.A, C:\Users\Victoria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam\uninstall.lnk, Quarantined, [d6733ac51763b1852ee26b1d857d5fa1], 
PUP.Optional.NextLive.A, C:\Users\Victoria\AppData\Roaming\newnext.me\nengine.cookie, Quarantined, [a8a1b44badcd78bea2a3246409f9ba46], 
PUP.Optional.NextLive.A, C:\Users\Victoria\AppData\Roaming\newnext.me\cache\spark.bin, Quarantined, [a8a1b44badcd78bea2a3246409f9ba46], 
PUP.Optional.Multiplug, C:\Program Files (x86)\YoutubeAdblocker\aweqMdpSZ.dat, Quarantined, [49002dd2f08a2313caf7bace4fb3fa06], 
PUP.Optional.Multiplug, C:\Program Files (x86)\YoutubeAdblocker\aweqMdpSZ.tlb, Quarantined, [49002dd2f08a2313caf7bace4fb3fa06], 
PUP.Optional.Wajam.A, C:\Users\Victoria\AppData\Local\Wajam\Chrome\wajam.crx, Quarantined, [61e8fa054e2c33030445b4d64fb312ee], 
PUP.Optional.YoutubeAdblocker.A, C:\ProgramData\YoutubeAdblocker\DyJRHwaQWa.dat, Quarantined, [3a0fe41b403aa294e6fef397c2401ee2], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#6 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 06:19 AM

And I'm working on that TDSS Killer scan now



#7 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 06:22 AM

07:19:04.0870 0x1f64  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
07:19:09.0659 0x1f64  ============================================================
07:19:09.0660 0x1f64  Current date / time: 2014/07/04 07:19:09.0659
07:19:09.0660 0x1f64  SystemInfo:
07:19:09.0660 0x1f64  
07:19:09.0660 0x1f64  OS Version: 6.1.7601 ServicePack: 1.0
07:19:09.0660 0x1f64  Product type: Workstation
07:19:09.0660 0x1f64  ComputerName: VICTORIA-PC
07:19:09.0660 0x1f64  UserName: Victoria
07:19:09.0660 0x1f64  Windows directory: C:\Windows
07:19:09.0660 0x1f64  System windows directory: C:\Windows
07:19:09.0660 0x1f64  Running under WOW64
07:19:09.0660 0x1f64  Processor architecture: Intel x64
07:19:09.0660 0x1f64  Number of processors: 2
07:19:09.0660 0x1f64  Page size: 0x1000
07:19:09.0660 0x1f64  Boot type: Normal boot
07:19:09.0660 0x1f64  ============================================================
07:19:10.0326 0x1f64  KLMD registered as C:\Windows\system32\drivers\10792112.sys
07:19:13.0028 0x1f64  System UUID: {DDA05BE4-11AC-6855-C1A6-30EC71670FE6}
07:19:17.0212 0x1f64  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:19:17.0221 0x1f64  ============================================================
07:19:17.0221 0x1f64  \Device\Harddisk0\DR0:
07:19:17.0221 0x1f64  MBR partitions:
07:19:17.0221 0x1f64  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1801F5F, BlocksNum 0x32FCD
07:19:17.0221 0x1f64  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1834F2C, BlocksNum 0x23BF9384
07:19:17.0221 0x1f64  ============================================================
07:19:17.0266 0x1f64  C: <-> \Device\Harddisk0\DR0\Partition2
07:19:17.0267 0x1f64  ============================================================
07:19:17.0267 0x1f64  Initialize success
07:19:17.0267 0x1f64  ============================================================
07:19:20.0261 0x09f4  ============================================================
07:19:20.0266 0x09f4  Scan started
07:19:20.0266 0x09f4  Mode: Manual; 
07:19:20.0266 0x09f4  ============================================================
07:19:20.0266 0x09f4  KSN ping started
07:19:30.0291 0x09f4  KSN ping finished: true
07:19:34.0504 0x09f4  ================ Scan system memory ========================
07:19:34.0504 0x09f4  System memory - ok
07:19:34.0505 0x09f4  ================ Scan services =============================
07:19:35.0682 0x09f4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
07:19:35.0700 0x09f4  1394ohci - ok
07:19:35.0789 0x09f4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
07:19:35.0805 0x09f4  ACPI - ok
07:19:35.0876 0x09f4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
07:19:35.0902 0x09f4  AcpiPmi - ok
07:19:36.0299 0x09f4  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:19:36.0309 0x09f4  AdobeFlashPlayerUpdateSvc - ok
07:19:36.0514 0x09f4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
07:19:36.0535 0x09f4  adp94xx - ok
07:19:36.0948 0x09f4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
07:19:36.0978 0x09f4  adpahci - ok
07:19:37.0053 0x09f4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
07:19:37.0078 0x09f4  adpu320 - ok
07:19:37.0132 0x09f4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
07:19:37.0139 0x09f4  AeLookupSvc - ok
07:19:37.0261 0x09f4  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
07:19:37.0277 0x09f4  AFD - ok
07:19:37.0334 0x09f4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
07:19:37.0359 0x09f4  agp440 - ok
07:19:37.0445 0x09f4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
07:19:37.0449 0x09f4  ALG - ok
07:19:37.0529 0x09f4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
07:19:37.0541 0x09f4  aliide - ok
07:19:37.0594 0x09f4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
07:19:37.0676 0x09f4  amdide - ok
07:19:37.0779 0x09f4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
07:19:37.0802 0x09f4  AmdK8 - ok
07:19:37.0861 0x09f4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
07:19:37.0889 0x09f4  AmdPPM - ok
07:19:37.0989 0x09f4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
07:19:38.0008 0x09f4  amdsata - ok
07:19:38.0114 0x09f4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
07:19:38.0125 0x09f4  amdsbs - ok
07:19:38.0209 0x09f4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
07:19:38.0223 0x09f4  amdxata - ok
07:19:38.0477 0x09f4  [ B342CD9AA44E4AE99E2368EBDBC2E17A, C3081358313A982F53CAD54C214AFECAD9660A59FB4A3DDFE068724E83041AF8 ] APNMCP          C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
07:19:38.0490 0x09f4  APNMCP - ok
07:19:38.0551 0x09f4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
07:19:38.0567 0x09f4  AppID - ok
07:19:38.0875 0x09f4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
07:19:38.0886 0x09f4  AppIDSvc - ok
07:19:38.0934 0x09f4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
07:19:38.0948 0x09f4  Appinfo - ok
07:19:39.0119 0x09f4  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:19:39.0133 0x09f4  Apple Mobile Device - ok
07:19:39.0185 0x09f4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
07:19:39.0215 0x09f4  arc - ok
07:19:39.0244 0x09f4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
07:19:39.0263 0x09f4  arcsas - ok
07:19:39.0787 0x09f4  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
07:19:39.0895 0x09f4  aspnet_state - ok
07:19:40.0039 0x09f4  [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
07:19:40.0058 0x09f4  aswHwid - ok
07:19:40.0168 0x09f4  [ FF1E537A3632CBB9A0BF72B9FD0878D5, B26E6A1F6E6FA5280A12861EFAD44D8F49353F47B21843EBA73E149CF613DCBC ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
07:19:40.0187 0x09f4  aswMonFlt - ok
07:19:40.0249 0x09f4  [ A5757DE5F9C83AB40667A53D5126EA40, 58B72B1B126CF641188703CE82E26BEB0C41AD7587CFFCCCE9E3C64CC7AACC90 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
07:19:40.0263 0x09f4  aswRdr - ok
07:19:40.0356 0x09f4  [ 645D97385F3F284FB5604F9B970F4D24, 15A9D7F0F4C1062210E4E744A9069B8645177D19F35B8740D74022639DC05F2E ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
07:19:40.0377 0x09f4  aswRvrt - ok
07:19:40.0810 0x09f4  [ B8FDEDE963B82CFD23B3A53A3084666D, 3537E5B684FB6F0AA589A5FA7CD111E1744DF384AB1A266D4114100F104ED11B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
07:19:40.0839 0x09f4  aswSnx - ok
07:19:40.0992 0x09f4  [ 0DEDC041DF594AEC2C3BD00417CFAF60, 0D3A8924503986546EE256D185225C0B080FDB6B0C8B0BED7516B07A7334371B ] aswSP           C:\Windows\system32\drivers\aswSP.sys
07:19:41.0009 0x09f4  aswSP - ok
07:19:41.0062 0x09f4  [ 48DED912CDE54FC0923B9858512366E1, 9B216B934408A7CB3CE2B41240B7EF01EAA3BC066211B784064FF8AC97A29B4E ] aswStm          C:\Windows\system32\drivers\aswStm.sys
07:19:41.0082 0x09f4  aswStm - ok
07:19:41.0201 0x09f4  [ 471A311745848B80339436688A8286E6, E51C57236CEC19AC38E85D115DB97875517D837811188AD2E53FA49055B53890 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
07:19:41.0240 0x09f4  aswVmm - ok
07:19:41.0302 0x09f4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
07:19:41.0324 0x09f4  AsyncMac - ok
07:19:41.0414 0x09f4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
07:19:41.0419 0x09f4  atapi - ok
07:19:41.0831 0x09f4  [ 5074CCA8927D5ED5D102EC48BB771E3F, 366E7B5078FD0B2DD20C9E5E4B08C7D412AA83CF7102DF1A992CAF19603EC573 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
07:19:42.0029 0x09f4  athr - ok
07:19:42.0192 0x09f4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:19:42.0215 0x09f4  AudioEndpointBuilder - ok
07:19:42.0250 0x09f4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
07:19:42.0268 0x09f4  AudioSrv - ok
07:19:42.0559 0x09f4  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
07:19:42.0561 0x09f4  avast! Antivirus - ok
07:19:42.0764 0x09f4  [ 946C038A7274D689A004785E581FAD5F, CC1C0C88C4A1DD848B8D35250FDA2BA9A234321BDFF64A52B0A864D9EDAFE569 ] Avgdiska        C:\Windows\system32\DRIVERS\avgdiska.sys
07:19:42.0776 0x09f4  Avgdiska - ok
07:19:44.0144 0x09f4  [ 20B2C28E3914C6837B30D44D31D2A294, CB10530525CD36146391ECFB8875A284B7EF71A84EBC96D078FB3D637E29A504 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
07:19:44.0376 0x09f4  AVGIDSAgent - ok
07:19:44.0504 0x09f4  [ 50E7E80BB5F3E2BB0B48F3F7E17ED6B1, 4E254506E03C9DC7376D47267CC987B0D4D93C064310CC8BA6FB679542638298 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
07:19:44.0531 0x09f4  AVGIDSDriver - ok
07:19:44.0646 0x09f4  [ B0E4A1F342A3F8B75C4A4ADB044761C9, 208D033EE04206FEDFC99102025A53D53EF2D3FB373882776DE43D663BE9A01B ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
07:19:44.0662 0x09f4  AVGIDSHA - ok
07:19:44.0772 0x09f4  [ 5D115BF49AE159D4D7D1EBC640CB138F, F529FB749AB8098B657DEB4637B9B87FA2DE4806F37AC9257542B7E522BA487E ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
07:19:44.0787 0x09f4  Avgldx64 - ok
07:19:44.0943 0x09f4  [ 197F28711B4B71E6575E5298CCEDC737, 16B7A9E59CA5EF8241029E16408CC1DD77004B195C9FE0677DE35A723FCA3DB4 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
07:19:44.0958 0x09f4  Avgloga - ok
07:19:45.0009 0x09f4  [ D9CED15E158573DE1BB67330C4206763, 6EEA9932318434448E167600A10FCD4C9DC8225A958708484E3A6EC5EF570012 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
07:19:45.0026 0x09f4  Avgmfx64 - ok
07:19:45.0095 0x09f4  [ C4F9056928B26BCAF15872E46B29184F, 0A1574937D120B8872947C4C68F1706BB9713B0D00AD62BE8082499C944114BA ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
07:19:45.0117 0x09f4  Avgrkx64 - ok
07:19:45.0224 0x09f4  [ 0971913995F5FAFD711B0B2426A175E9, 1009E628997B56697BA976E376A9E9D39082E7057D6EFF37D57FDCA2057B9498 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
07:19:45.0250 0x09f4  Avgtdia - ok
07:19:45.0356 0x09f4  [ 7688C67BDF55500C1FDC8291230C397D, 68A4C3D7F7043C73113B1EE7A3DD8E98BC1D6F54CA7E4E1BFB2333A75CDE2DE0 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
07:19:45.0368 0x09f4  avgtp - ok
07:19:45.0502 0x09f4  [ 13BB5F8819F90CE30A967FD94823E21B, 01E4AE673D0E48EAFAE6D879AE1A5D7E385848CBC0FDE45BA0AE1F96D02BC65B ] avgwd           C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
07:19:45.0533 0x09f4  avgwd - ok
07:19:45.0633 0x09f4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
07:19:45.0639 0x09f4  AxInstSV - ok
07:19:45.0799 0x09f4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
07:19:45.0820 0x09f4  b06bdrv - ok
07:19:45.0903 0x09f4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
07:19:45.0916 0x09f4  b57nd60a - ok
07:19:46.0268 0x09f4  [ 5B5C36B2EC500462A715DB6BCBAF5DA7, E90EB94C89CDA0D7D6569316BFB4015CC42961076BF837ED0C931E7CBAA2BFE5 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
07:19:46.0455 0x09f4  BCM43XX - ok
07:19:46.0518 0x09f4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
07:19:46.0530 0x09f4  BDESVC - ok
07:19:46.0583 0x09f4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
07:19:46.0590 0x09f4  Beep - ok
07:19:46.0927 0x09f4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
07:19:46.0950 0x09f4  BFE - ok
07:19:47.0111 0x09f4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
07:19:47.0213 0x09f4  BITS - ok
07:19:47.0259 0x09f4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
07:19:47.0262 0x09f4  blbdrive - ok
07:19:47.0392 0x09f4  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:19:47.0444 0x09f4  Bonjour Service - ok
07:19:47.0505 0x09f4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
07:19:47.0554 0x09f4  bowser - ok
07:19:47.0648 0x09f4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:19:47.0675 0x09f4  BrFiltLo - ok
07:19:47.0713 0x09f4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:19:47.0740 0x09f4  BrFiltUp - ok
07:19:47.0809 0x09f4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
07:19:47.0822 0x09f4  Browser - ok
07:19:47.0895 0x09f4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
07:19:47.0981 0x09f4  Brserid - ok
07:19:48.0067 0x09f4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
07:19:48.0090 0x09f4  BrSerWdm - ok
07:19:48.0138 0x09f4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
07:19:48.0165 0x09f4  BrUsbMdm - ok
07:19:48.0235 0x09f4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
07:19:48.0260 0x09f4  BrUsbSer - ok
07:19:48.0318 0x09f4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
07:19:48.0338 0x09f4  BTHMODEM - ok
07:19:48.0408 0x09f4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
07:19:48.0422 0x09f4  bthserv - ok
07:19:48.0531 0x09f4  [ 09E6AFFAE6C0E9158BF05C7D08D0107A, 05524526EBD5F42F58404A698F397CD7CBC2CBB5F7211AB6B5C2691A87983A24 ] BUNAgentSvc     C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
07:19:48.0540 0x09f4  BUNAgentSvc - ok
07:19:48.0588 0x09f4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
07:19:48.0825 0x09f4  cdfs - ok
07:19:48.0928 0x09f4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
07:19:48.0944 0x09f4  cdrom - ok
07:19:49.0019 0x09f4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
07:19:49.0027 0x09f4  CertPropSvc - ok
07:19:49.0120 0x09f4  [ ED0263B2EB24F0F4E3898036FA1D28A1, 096F50891302F84E2543F32F2D5A51E0183A12900B920A2DD8976459B4B2C051 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
07:19:49.0166 0x09f4  cfwids - ok
07:19:49.0231 0x09f4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
07:19:49.0257 0x09f4  circlass - ok
07:19:49.0368 0x09f4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
07:19:49.0381 0x09f4  CLFS - ok
07:19:49.0543 0x09f4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:19:49.0566 0x09f4  clr_optimization_v2.0.50727_32 - ok
07:19:49.0775 0x09f4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:19:49.0836 0x09f4  clr_optimization_v2.0.50727_64 - ok
07:19:49.0951 0x09f4  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:19:50.0396 0x09f4  clr_optimization_v4.0.30319_32 - ok
07:19:50.0439 0x09f4  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:19:50.0520 0x09f4  clr_optimization_v4.0.30319_64 - ok
07:19:50.0556 0x09f4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
07:19:50.0564 0x09f4  CmBatt - ok
07:19:50.0614 0x09f4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
07:19:50.0837 0x09f4  cmdide - ok
07:19:50.0991 0x09f4  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
07:19:51.0006 0x09f4  CNG - ok
07:19:51.0072 0x09f4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
07:19:51.0089 0x09f4  Compbatt - ok
07:19:51.0169 0x09f4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
07:19:51.0178 0x09f4  CompositeBus - ok
07:19:51.0202 0x09f4  COMSysApp - ok
07:19:51.0278 0x09f4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
07:19:51.0305 0x09f4  crcdisk - ok
07:19:51.0499 0x09f4  [ 2C53AB51F07EF7B58D32C36D8F2F8C16, BC5284C83CD6FAAF26794EBD2E861B5B1239BE319F3FC1C7393B53D3846CA2B3 ] CronService     C:\Prey\platform\windows\cronsvc.exe
07:19:51.0509 0x09f4  CronService - ok
07:19:51.0622 0x09f4  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
07:19:51.0642 0x09f4  CryptSvc - ok
07:19:51.0709 0x09f4  [ 1CA90212A99DB6975C344826D11055C9, 8C430087C36A9E38B9A3D789990C1122E40CA847B395DF7D1537EE769E1FFEE7 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
07:19:51.0719 0x09f4  dc3d - ok
07:19:51.0844 0x09f4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
07:19:51.0867 0x09f4  DcomLaunch - ok
07:19:51.0974 0x09f4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
07:19:51.0989 0x09f4  defragsvc - ok
07:19:52.0057 0x09f4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
07:19:52.0067 0x09f4  DfsC - ok
07:19:52.0131 0x09f4  [ B9430166FEB246F6070A62B3554932C9, 677DE435AA5C1FBFC0171384D4B7CED2EA6B0F8567540DB9DE454AC6D4A7C1D7 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
07:19:52.0152 0x09f4  dg_ssudbus - ok
07:19:52.0239 0x09f4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
07:19:52.0252 0x09f4  Dhcp - ok
07:19:52.0291 0x09f4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
07:19:52.0296 0x09f4  discache - ok
07:19:52.0336 0x09f4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
07:19:52.0345 0x09f4  Disk - ok
07:19:52.0421 0x09f4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
07:19:52.0467 0x09f4  Dnscache - ok
07:19:52.0559 0x09f4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
07:19:52.0573 0x09f4  dot3svc - ok
07:19:52.0651 0x09f4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
07:19:52.0944 0x09f4  DPS - ok
07:19:53.0015 0x09f4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
07:19:53.0031 0x09f4  drmkaud - ok
07:19:53.0205 0x09f4  [ 61E894FE1E9CC720C909E6E343351794, 2C8540ED0A2C7028B242289078B4C2D8678D26FB7429AB3B33C136BB47B178C3 ] DsiWMIService   C:\Program Files (x86)\Launch Manager\dsiwmis.exe
07:19:53.0214 0x09f4  DsiWMIService - ok
07:19:53.0401 0x09f4  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
07:19:53.0429 0x09f4  DXGKrnl - ok
07:19:53.0478 0x09f4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
07:19:53.0489 0x09f4  EapHost - ok
07:19:54.0053 0x09f4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
07:19:54.0361 0x09f4  ebdrv - ok
07:19:54.0465 0x09f4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
07:19:54.0479 0x09f4  EFS - ok
07:19:54.0598 0x09f4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
07:19:54.0763 0x09f4  ehRecvr - ok
07:19:54.0804 0x09f4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
07:19:54.0814 0x09f4  ehSched - ok
07:19:54.0943 0x09f4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
07:19:54.0963 0x09f4  elxstor - ok
07:19:55.0192 0x09f4  [ 49EEF52BFB986A2B5D70F4EC12637D7B, C42C93EC36B4BD0AFF4248AD571F56FB5F39D5C57B93C01EBB34997A262E41A9 ] ePowerSvc       C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
07:19:55.0251 0x09f4  ePowerSvc - ok
07:19:55.0310 0x09f4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
07:19:55.0337 0x09f4  ErrDev - ok
07:19:55.0487 0x09f4  [ 3BE1C5810E4873962CE0FEADEA9F32C5, AB3DF7A7CA55AF7EC33112A285975A72FD885B32EDB25EDCB683C04614747A75 ] ESProtectionDriver C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
07:19:55.0502 0x09f4  ESProtectionDriver - ok
07:19:55.0571 0x09f4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
07:19:55.0587 0x09f4  EventSystem - ok
07:19:55.0648 0x09f4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
07:19:55.0660 0x09f4  exfat - ok
07:19:55.0761 0x09f4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
07:19:55.0790 0x09f4  fastfat - ok
07:19:55.0957 0x09f4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
07:19:55.0989 0x09f4  Fax - ok
07:19:56.0046 0x09f4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
07:19:56.0067 0x09f4  fdc - ok
07:19:56.0142 0x09f4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
07:19:56.0151 0x09f4  fdPHost - ok
07:19:56.0220 0x09f4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
07:19:56.0232 0x09f4  FDResPub - ok
07:19:56.0272 0x09f4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
07:19:56.0281 0x09f4  FileInfo - ok
07:19:56.0310 0x09f4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
07:19:56.0317 0x09f4  Filetrace - ok
07:19:56.0369 0x09f4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
07:19:56.0374 0x09f4  flpydisk - ok
07:19:56.0462 0x09f4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
07:19:56.0492 0x09f4  FltMgr - ok
07:19:56.0741 0x09f4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
07:19:56.0773 0x09f4  FontCache - ok
07:19:56.0852 0x09f4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:19:56.0871 0x09f4  FontCache3.0.0.0 - ok
07:19:56.0918 0x09f4  [ 72B73ACD5F7F3A368A80FEC70D5B0D8C, 782F15CCAE3A077D741FD15051C88650F0EA8BF06D32F02AE67C6B999E713B87 ] FreeOTFE        C:\Windows\System32\FreeOTFE.sys
07:19:56.0935 0x09f4  FreeOTFE - ok
07:19:57.0056 0x09f4  [ 63B156E752252742F291C15E46575A28, D23A4089478F08330F2B1EB0FC4657694572257074975E06BBEBD4F89555E2BB ] FreeOTFECypherAES_ltc C:\Windows\System32\FreeOTFECypherAES_ltc.sys
07:19:57.0085 0x09f4  FreeOTFECypherAES_ltc - ok
07:19:57.0128 0x09f4  [ 7E3D01E3B16ED8AAD2DFE75FA01EFAB2, 7517764F7B584886FCC1633CF626A43749462E1129495B290EB6D314B00AF415 ] FreeOTFECypherBlowfish C:\Windows\System32\FreeOTFECypherBlowfish.sys
07:19:57.0148 0x09f4  FreeOTFECypherBlowfish - ok
07:19:57.0188 0x09f4  [ C3984A51BBD900DD745DDFD520A44CE4, D9439F95630EA89079CFBC1335217741846DDC8B1BD0E4F865A9A6E9B7926FCD ] FreeOTFECypherCAST5 C:\Windows\System32\FreeOTFECypherCAST5.sys
07:19:57.0293 0x09f4  FreeOTFECypherCAST5 - ok
07:19:57.0360 0x09f4  [ 3859D1952FAB7CA303FB1E1DFB2C72E5, 69C8BC113ABE8C0E3BDB0299E74614B4902D31BC72A4515BBD34F115F532A089 ] FreeOTFECypherCAST6_Gladman C:\Windows\System32\FreeOTFECypherCAST6_Gladman.sys
07:19:57.0383 0x09f4  FreeOTFECypherCAST6_Gladman - ok
07:19:57.0445 0x09f4  [ 9B560D25AD5B12E0C23C7AB0C6C6FE65, FC89EB585D9EDD96EB137C81F1847B5F7B45E1D415EB075BDA9E1C21354037A5 ] FreeOTFECypherDES C:\Windows\System32\FreeOTFECypherDES.sys
07:19:57.0520 0x09f4  FreeOTFECypherDES - ok
07:19:57.0653 0x09f4  [ 21FD0076ACBE45CF5F2F6ACE47F2911B, AB029ED70484ED8D8FAA24089BE052D75150161E54C0CAB4C012C0C180C13F6D ] FreeOTFECypherMARS_Gladman C:\Windows\System32\FreeOTFECypherMARS_Gladman.sys
07:19:57.0665 0x09f4  FreeOTFECypherMARS_Gladman - ok
07:19:57.0750 0x09f4  [ 2430E45EF1439AAB0E896437AAA1C685, A3AA87B3CFF07E85868856EFAB74AF6BCB4E9298CF3D14A4103941CFE399B673 ] FreeOTFECypherRC6_ltc C:\Windows\System32\FreeOTFECypherRC6_ltc.sys
07:19:57.0945 0x09f4  FreeOTFECypherRC6_ltc - ok
07:19:57.0971 0x09f4  [ ED7382FD681CA9EA81494595527DE21D, B43F6746E4FBE565A7EB082915D3B1D4E552B3BAB700DE75D0FE64E73C0A9710 ] FreeOTFECypherSerpent_Gladman C:\Windows\System32\FreeOTFECypherSerpent_Gladman.sys
07:19:58.0027 0x09f4  FreeOTFECypherSerpent_Gladman - ok
07:19:58.0092 0x09f4  [ 1B00B0D5CCD4E7270D145B53612584C3, 951AD97D00D7C2B37F7EDDAC820D1AAB409B515EB18C37111FED22DDAD11B9FF ] FreeOTFECypherTwofish_ltc C:\Windows\System32\FreeOTFECypherTwofish_ltc.sys
07:19:58.0128 0x09f4  FreeOTFECypherTwofish_ltc - ok
07:19:58.0162 0x09f4  [ 6CE7F52FC992F747AB9D68611198AF1D, FCC6AF806C7A5FC6A5A2BABBD3E070F4BC82F0C29BD3751C3F012FF653C1AAEA ] FreeOTFEHashMD  C:\Windows\System32\FreeOTFEHashMD.sys
07:19:58.0166 0x09f4  FreeOTFEHashMD - ok
07:19:58.0213 0x09f4  [ 4D5026914BB47A035FB552511B9CDA59, 46565C1A17995CF404B863CBCE97135655DA2346861A4278F19D75C4279D021B ] FreeOTFEHashRIPEMD C:\Windows\System32\FreeOTFEHashRIPEMD.sys
07:19:58.0217 0x09f4  FreeOTFEHashRIPEMD - ok
07:19:58.0270 0x09f4  [ E560A1733F4CF2D626F46DAE71522DF9, F93D7CF4FE988EDD54CA6F414D59809F483E54BDC6BA6EA8B34CA75CEF25D099 ] FreeOTFEHashSHA C:\Windows\System32\FreeOTFEHashSHA.sys
07:19:58.0293 0x09f4  FreeOTFEHashSHA - ok
07:19:58.0377 0x09f4  [ C28CCCC8556F5A675F186565946B27CA, EDB5BEFCBBDC8A11033ED2E0B2B0935026ECE79CABC96A41BAFDE76E8C9028BB ] FreeOTFEHashTiger C:\Windows\System32\FreeOTFEHashTiger.sys
07:19:58.0414 0x09f4  FreeOTFEHashTiger - ok
07:19:58.0441 0x09f4  [ 590531108E8CC5AC5B23A1ACF0247A14, 1A2EEA7B023FBF1B1816786F03AB658414F3B07375375CE26D75538B13F4DD00 ] FreeOTFEHashWhirlpool C:\Windows\System32\FreeOTFEHashWhirlpool.sys
07:19:58.0445 0x09f4  FreeOTFEHashWhirlpool - ok
07:19:58.0494 0x09f4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
07:19:58.0497 0x09f4  FsDepends - ok
07:19:58.0554 0x09f4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
07:19:58.0599 0x09f4  Fs_Rec - ok
07:19:58.0717 0x09f4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
07:19:58.0732 0x09f4  fvevol - ok
07:19:58.0780 0x09f4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
07:19:58.0784 0x09f4  gagp30kx - ok
07:19:58.0926 0x09f4  [ 6858C318E8DAA40E747E6FB9B214E104, B9EAA473FE9FDB1E3BFE3A3A98B6E1999E315DBCB028BB0771F1AA1D6C72F75A ] GameConsoleService C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe
07:19:58.0935 0x09f4  GameConsoleService - ok
07:19:59.0040 0x09f4  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:19:59.0042 0x09f4  GEARAspiWDM - ok
07:19:59.0318 0x09f4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
07:19:59.0637 0x09f4  gpsvc - ok
07:19:59.0907 0x09f4  [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] GREGService     C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
07:19:59.0909 0x09f4  GREGService - ok
07:20:00.0041 0x09f4  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:20:00.0051 0x09f4  gupdate - ok
07:20:00.0121 0x09f4  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:20:00.0125 0x09f4  gupdatem - ok
07:20:00.0269 0x09f4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
07:20:00.0299 0x09f4  hcw85cir - ok
07:20:00.0463 0x09f4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:20:00.0475 0x09f4  HdAudAddService - ok
07:20:00.0550 0x09f4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
07:20:00.0556 0x09f4  HDAudBus - ok
07:20:00.0881 0x09f4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
07:20:00.0884 0x09f4  HidBatt - ok
07:20:00.0922 0x09f4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
07:20:00.0945 0x09f4  HidBth - ok
07:20:00.0982 0x09f4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
07:20:01.0010 0x09f4  HidIr - ok
07:20:01.0069 0x09f4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
07:20:01.0076 0x09f4  hidserv - ok
07:20:01.0142 0x09f4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
07:20:01.0145 0x09f4  HidUsb - ok
07:20:01.0236 0x09f4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
07:20:01.0257 0x09f4  hkmsvc - ok
07:20:01.0324 0x09f4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:20:01.0333 0x09f4  HomeGroupListener - ok
07:20:01.0399 0x09f4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:20:01.0410 0x09f4  HomeGroupProvider - ok
07:20:01.0470 0x09f4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
07:20:01.0500 0x09f4  HpSAMD - ok
07:20:01.0660 0x09f4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
07:20:01.0687 0x09f4  HTTP - ok
07:20:01.0729 0x09f4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
07:20:01.0740 0x09f4  hwpolicy - ok
07:20:01.0809 0x09f4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
07:20:01.0824 0x09f4  i8042prt - ok
07:20:02.0043 0x09f4  [ 42E00996DFC13C46366689C0EA8ABC5E, 1C73B7FADB3209D7C1CAA75531F789B47907129E418F91F23CBE9FC68B3056E4 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
07:20:02.0058 0x09f4  iaStor - ok
07:20:02.0164 0x09f4  [ 48362E5DB5CB2C000C514EE1F3890ACD, 561FB7BE085A624770832B0138DA1B9859981BCC66540A8F98D9F7D5B8EE6707 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
07:20:02.0186 0x09f4  IAStorDataMgrSvc - ok
07:20:02.0260 0x09f4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
07:20:02.0287 0x09f4  iaStorV - ok
07:20:02.0575 0x09f4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:20:02.0996 0x09f4  idsvc - ok
07:20:03.0046 0x09f4  IEEtwCollectorService - ok
07:20:03.0953 0x09f4  [ 2D18C9E1F23970DE32D78D3B1CDDA0A7, 4AC6425F6D1921ED7975A0450D536B2675964574E40D86099410423E72D70D88 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
07:20:04.0591 0x09f4  igfx - ok
07:20:04.0708 0x09f4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
07:20:04.0726 0x09f4  iirsp - ok
07:20:04.0850 0x09f4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
07:20:04.0878 0x09f4  IKEEXT - ok
07:20:05.0116 0x09f4  [ 1768CCC0CCDA73A5B3D7A17A3C52E870, 0C9D40FD1AB6F323119937E612E4070A8F61D679DB0C106B03EBD538F3861734 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
07:20:05.0251 0x09f4  IntcAzAudAddService - ok
07:20:05.0322 0x09f4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
07:20:05.0343 0x09f4  intelide - ok
07:20:05.0385 0x09f4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
07:20:05.0411 0x09f4  intelppm - ok
07:20:05.0564 0x09f4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
07:20:05.0577 0x09f4  IPBusEnum - ok
07:20:05.0871 0x09f4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:20:05.0876 0x09f4  IpFilterDriver - ok
07:20:06.0210 0x09f4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
07:20:06.0232 0x09f4  iphlpsvc - ok
07:20:06.0291 0x09f4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
07:20:06.0349 0x09f4  IPMIDRV - ok
07:20:06.0393 0x09f4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
07:20:06.0402 0x09f4  IPNAT - ok
07:20:06.0496 0x09f4  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
07:20:06.0515 0x09f4  iPod Service - ok
07:20:06.0541 0x09f4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
07:20:06.0543 0x09f4  IRENUM - ok
07:20:06.0588 0x09f4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
07:20:06.0593 0x09f4  isapnp - ok
07:20:06.0678 0x09f4  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
07:20:06.0701 0x09f4  iScsiPrt - ok
07:20:06.0791 0x09f4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
07:20:06.0794 0x09f4  kbdclass - ok
07:20:06.0837 0x09f4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
07:20:06.0841 0x09f4  kbdhid - ok
07:20:06.0852 0x09f4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
07:20:06.0859 0x09f4  KeyIso - ok
07:20:07.0811 0x09f4  [ 1C6256096A341051509D36AD724830BE, 025F7E1E979DC8C4794FC7D3581D6BCF6E0F6DC327C6FCB925B6A8EDBE999A68 ] KL1             C:\Windows\system32\DRIVERS\kl1.sys
07:20:08.0389 0x09f4  KL1 - ok
07:20:08.0552 0x09f4  [ 33730023A37E259AB26F25C164BC2471, D9CE760D633821D7A7C06EFA76A95ECDA82ACABA44B4855610F77B63CC76473D ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
07:20:08.0571 0x09f4  KLIF - ok
07:20:08.0633 0x09f4  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
07:20:08.0644 0x09f4  KSecDD - ok
07:20:08.0709 0x09f4  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
07:20:08.0722 0x09f4  KSecPkg - ok
07:20:08.0778 0x09f4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
07:20:08.0794 0x09f4  ksthunk - ok
07:20:08.0910 0x09f4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
07:20:08.0938 0x09f4  KtmRm - ok
07:20:09.0017 0x09f4  [ 55480B9C63F3F91A8EBBADCBF28FE581, 5B4BC3F0307B0697DD08DD8AAD4B9EAE99EDD3B33B85D9293D183684D5057293 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
07:20:09.0020 0x09f4  L1C - ok
07:20:09.0084 0x09f4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
07:20:09.0095 0x09f4  LanmanServer - ok
07:20:09.0191 0x09f4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:20:09.0269 0x09f4  LanmanWorkstation - ok
07:20:09.0459 0x09f4  [ ACEC35F181075B20A5EF4A71958B13DF, E7C471C08241CE1941B2B5CF6C8726AA07DC972846F80E2DF5A11FA515003A33 ] libusb0         C:\Windows\system32\drivers\libusb0.sys
07:20:09.0485 0x09f4  libusb0 - ok
07:20:09.0534 0x09f4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
07:20:09.0538 0x09f4  lltdio - ok
07:20:09.0723 0x09f4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
07:20:09.0779 0x09f4  lltdsvc - ok
07:20:09.0817 0x09f4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
07:20:09.0856 0x09f4  lmhosts - ok
07:20:09.0918 0x09f4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
07:20:09.0949 0x09f4  LSI_FC - ok
07:20:10.0001 0x09f4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
07:20:10.0028 0x09f4  LSI_SAS - ok
07:20:10.0089 0x09f4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:20:10.0093 0x09f4  LSI_SAS2 - ok
07:20:10.0202 0x09f4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:20:10.0293 0x09f4  LSI_SCSI - ok
07:20:10.0347 0x09f4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
07:20:10.0361 0x09f4  luafv - ok
07:20:10.0452 0x09f4  [ 922CBAC7B992B9614CAB7122F4BF9406, CD6FFA2DE518DFD92604F1C6E3D274566410BEE02B6F3D575F2218EA4E165321 ] ManyCam         C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
07:20:10.0488 0x09f4  ManyCam - ok
07:20:11.0048 0x09f4  [ 4BC55ED4E547AD01F692853AE208461A, 1615A10AC09D6627FC2705D6301553E1991E80A864A87E38611B1357C78599BA ] MbaeSvc         C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
07:20:11.0080 0x09f4  MbaeSvc - ok
07:20:11.0320 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
07:20:11.0343 0x09f4  McAfee SiteAdvisor Service - ok
07:20:11.0525 0x09f4  [ 34A42DD7CF525D0D2C5232916496E4B8, FC703E247FB5D88470F57BCC10890F830BDE782BF7D24B12B2EAAB2C5EC23223 ] mcaudrv_simple  C:\Windows\system32\drivers\mcaudrv_x64.sys
07:20:11.0588 0x09f4  mcaudrv_simple - ok
07:20:11.0676 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McMPFSvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
07:20:11.0682 0x09f4  McMPFSvc - ok
07:20:11.0717 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] mcmscsvc        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
07:20:11.0723 0x09f4  mcmscsvc - ok
07:20:11.0757 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McNaiAnn        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
07:20:11.0763 0x09f4  McNaiAnn - ok
07:20:11.0876 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McNASvc         C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
07:20:11.0882 0x09f4  McNASvc - ok
07:20:12.0251 0x09f4  [ B3914A7C97A81ACB1E9BEFE07E4C387F, 70FB6F8FD55B2CC3ED1C6D41C978FF949C99709A071C4F330FE4DB8ECB69C5E1 ] McODS           C:\Program Files\mcafee\VirusScan\mcods.exe
07:20:12.0300 0x09f4  McODS - ok
07:20:12.0354 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McOobeSv        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
07:20:12.0360 0x09f4  McOobeSv - ok
07:20:12.0397 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McProxy         C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
07:20:12.0403 0x09f4  McProxy - ok
07:20:12.0564 0x09f4  [ 325B166BF78D8A8AD93E44CA7A6FC332, FB8841B7355F487B9E2ABE9B2B9E70833F64731870CE1AB9B6AAED6EE2A4FCE7 ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
07:20:12.0569 0x09f4  McShield - ok
07:20:13.0093 0x09f4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
07:20:13.0160 0x09f4  Mcx2Svc - ok
07:20:13.0242 0x09f4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
07:20:13.0609 0x09f4  megasas - ok
07:20:13.0823 0x09f4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
07:20:13.0927 0x09f4  MegaSR - ok
07:20:14.0224 0x09f4  [ EF3ACFB7E3F82D5F7CDE9EF5F0A4E2E2, C7728392FADE8AE792458224C40E9AED4789F9DA4233C34E0A0B303DE33ABE86 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
07:20:14.0285 0x09f4  mfeapfk - ok
07:20:14.0472 0x09f4  [ E7A60BDB4365B561D896019B82FB7DD0, 986EBE286B34AC6E39F70E069AD6D1069538C23B0F2D47771C5A8FB8B1C5B5BB ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
07:20:14.0531 0x09f4  mfeavfk - ok
07:20:14.0663 0x09f4  [ 7D8FDC43972D059907E09EE4022F77E8, 69C1BB7C2C64D0793F9707126AC825DDE9334E1D152D20FD56DEBEB8224D2083 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
07:20:14.0685 0x09f4  mfefire - ok
07:20:14.0894 0x09f4  [ 670DFFE55E2F9AB99D9169C428BCECE9, C3CBFD0FABA4E165C2485A21D61A2B7E39083E6DBFB62423DAF1C2CDB1817164 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
07:20:14.0960 0x09f4  mfefirek - ok
07:20:15.0165 0x09f4  [ 1892616B7F9291FD77C3FA0A5811FE9F, 7EFFD9D649799A47C2A0703881DB24AC42572F9DC894A68AA9F9F303338981DA ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
07:20:15.0234 0x09f4  mfehidk - ok
07:20:15.0303 0x09f4  [ 1721261C77F6E7A9E0CB51B7D9F31B60, 505EE789B4BC47721B6224B48C0FFA9B2BB002FAC8E451F2612428430596A2C9 ] mfenlfk         C:\Windows\system32\DRIVERS\mfenlfk.sys
07:20:15.0394 0x09f4  mfenlfk - ok
07:20:15.0578 0x09f4  [ 65776BD8029E409935B90DE30BF99526, E16D442E51D37F4024FA4B1573167BA3C13A5F22FEC86B32021F7A2C8A749C71 ] mferkdet        C:\Windows\system32\drivers\mferkdet.sys
07:20:15.0631 0x09f4  mferkdet - ok
07:20:15.0715 0x09f4  [ 8A78905057308B084EAA29A9FE1B4F58, 4E654D501EC8C8596EBF2C7DBCAAC2FA71695313E23F4765E41FCF5C7FF06785 ] mfevtp          C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
07:20:15.0760 0x09f4  mfevtp - ok
07:20:15.0859 0x09f4  [ 4F17D8B85B903D96EF7033BB6EF50516, A7063A7626C425094CD1E223E664B35786090E150A877475E835E21EDAC5C0A7 ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
07:20:15.0907 0x09f4  mfewfpk - ok
07:20:16.0000 0x09f4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
07:20:16.0009 0x09f4  MMCSS - ok
07:20:16.0058 0x09f4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
07:20:16.0086 0x09f4  Modem - ok
07:20:16.0161 0x09f4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
07:20:16.0202 0x09f4  monitor - ok
07:20:16.0276 0x09f4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
07:20:16.0301 0x09f4  mouclass - ok
07:20:16.0395 0x09f4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
07:20:16.0446 0x09f4  mouhid - ok
07:20:16.0513 0x09f4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
07:20:16.0606 0x09f4  mountmgr - ok
07:20:16.0708 0x09f4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
07:20:16.0767 0x09f4  mpio - ok
07:20:16.0843 0x09f4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
07:20:16.0885 0x09f4  mpsdrv - ok
07:20:17.0228 0x09f4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
07:20:17.0402 0x09f4  MpsSvc - ok
07:20:17.0651 0x09f4  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
07:20:17.0715 0x09f4  MRxDAV - ok
07:20:17.0784 0x09f4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
07:20:17.0851 0x09f4  mrxsmb - ok
07:20:17.0965 0x09f4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:20:18.0004 0x09f4  mrxsmb10 - ok
07:20:18.0083 0x09f4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:20:18.0113 0x09f4  mrxsmb20 - ok
07:20:18.0173 0x09f4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
07:20:18.0234 0x09f4  msahci - ok
07:20:18.0324 0x09f4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
07:20:18.0366 0x09f4  msdsm - ok
07:20:18.0436 0x09f4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
07:20:18.0475 0x09f4  MSDTC - ok
07:20:18.0551 0x09f4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
07:20:18.0625 0x09f4  Msfs - ok
07:20:18.0689 0x09f4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
07:20:18.0766 0x09f4  mshidkmdf - ok
07:20:18.0838 0x09f4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
07:20:18.0883 0x09f4  msisadrv - ok
07:20:19.0059 0x09f4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
07:20:19.0090 0x09f4  MSiSCSI - ok
07:20:19.0098 0x09f4  msiserver - ok
07:20:19.0156 0x09f4  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] MSK80Service    C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
07:20:19.0163 0x09f4  MSK80Service - ok
07:20:19.0340 0x09f4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
07:20:19.0385 0x09f4  MSKSSRV - ok
07:20:19.0439 0x09f4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
07:20:19.0475 0x09f4  MSPCLOCK - ok
07:20:19.0534 0x09f4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
07:20:19.0588 0x09f4  MSPQM - ok
07:20:19.0716 0x09f4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
07:20:19.0762 0x09f4  MsRPC - ok
07:20:19.0839 0x09f4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
07:20:19.0883 0x09f4  mssmbios - ok
07:20:19.0956 0x09f4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
07:20:20.0003 0x09f4  MSTEE - ok
07:20:20.0057 0x09f4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
07:20:20.0092 0x09f4  MTConfig - ok
07:20:20.0133 0x09f4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
07:20:20.0167 0x09f4  Mup - ok
07:20:20.0258 0x09f4  [ 6FFECC25B39DC7652A0CEC0ADA9DB589, 927EF066CBBA8353149F8C3B7C4299AC06FED439DA874D25CFB583E5912611A2 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
07:20:20.0296 0x09f4  mwlPSDFilter - ok
07:20:20.0319 0x09f4  [ 0BEFE32CA56D6EE89D58175725596A85, E36B9E6159AF7F67D549F7178896CCCB8FC3964531B1DA20CBDD465E632D8FCF ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
07:20:20.0356 0x09f4  mwlPSDNServ - ok
07:20:20.0409 0x09f4  [ D43BC633B8660463E446E28E14A51262, C55F235B5E08FAC6D70B0FAC737D714E318A93F8E43FF8095B86A76559AF211D ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
07:20:20.0412 0x09f4  mwlPSDVDisk - ok
07:20:20.0714 0x09f4  [ 22A4905C958BEB68D78385B633C1351B, FFF03DB9F0A7DCFFF221FA1EAEBF9EA04732F4D0562EA02412D178B887773574 ] MWLService      C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
07:20:20.0733 0x09f4  MWLService - ok
07:20:20.0937 0x09f4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
07:20:20.0988 0x09f4  napagent - ok
07:20:21.0205 0x09f4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
07:20:21.0324 0x09f4  NativeWifiP - ok
07:20:21.0543 0x09f4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
07:20:21.0567 0x09f4  NDIS - ok
07:20:21.0682 0x09f4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
07:20:21.0734 0x09f4  NdisCap - ok
07:20:21.0785 0x09f4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
07:20:21.0823 0x09f4  NdisTapi - ok
07:20:21.0914 0x09f4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
07:20:21.0959 0x09f4  Ndisuio - ok
07:20:22.0052 0x09f4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
07:20:22.0106 0x09f4  NdisWan - ok
07:20:22.0168 0x09f4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
07:20:22.0212 0x09f4  NDProxy - ok
07:20:22.0291 0x09f4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
07:20:22.0306 0x09f4  NetBIOS - ok
07:20:22.0411 0x09f4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
07:20:22.0452 0x09f4  NetBT - ok
07:20:22.0521 0x09f4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
07:20:22.0525 0x09f4  Netlogon - ok
07:20:22.0613 0x09f4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
07:20:22.0640 0x09f4  Netman - ok
07:20:22.0759 0x09f4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:20:22.0782 0x09f4  NetMsmqActivator - ok
07:20:22.0867 0x09f4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:20:22.0871 0x09f4  NetPipeActivator - ok
07:20:23.0013 0x09f4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
07:20:23.0046 0x09f4  netprofm - ok
07:20:23.0133 0x09f4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:20:23.0137 0x09f4  NetTcpActivator - ok
07:20:23.0182 0x09f4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:20:23.0186 0x09f4  NetTcpPortSharing - ok
07:20:23.0260 0x09f4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
07:20:23.0303 0x09f4  nfrd960 - ok
07:20:23.0353 0x09f4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
07:20:23.0394 0x09f4  NlaSvc - ok
07:20:23.0433 0x09f4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
07:20:23.0484 0x09f4  Npfs - ok
07:20:23.0544 0x09f4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
07:20:23.0594 0x09f4  nsi - ok
07:20:23.0642 0x09f4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
07:20:23.0680 0x09f4  nsiproxy - ok
07:20:24.0144 0x09f4  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
07:20:24.0284 0x09f4  Ntfs - ok
07:20:24.0499 0x09f4  [ 5B3CE960C62DBE864BE9A0BD043A3E30, 8474C68B0A8F94945C3278C682143F289245FC31C28DBB4609E993F90F7AD309 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
07:20:24.0527 0x09f4  NTI IScheduleSvc - ok
07:20:24.0620 0x09f4  [ CB76F68BA0D57C5D25B538981B1C611C, D078ADEFCF1559EA86AFBD3F6766065EE12B85CF44736A87D4140FB0C480215E ] NTIBackupSvc    C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
07:20:24.0645 0x09f4  NTIBackupSvc - ok
07:20:24.0722 0x09f4  [ 64DDD0DEE976302F4BD93E5EFCC2F013, 19F54B4549999EF96FAE1B2B97973F281304843ADE0CF5823574453AB41E3E9C ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
07:20:24.0725 0x09f4  NTIDrvr - ok
07:20:24.0803 0x09f4  [ DF1C10A75DF7E50195FC417F88A33227, 1551A6243236FD46F34C6F2443A3CC78D5424D9BCECB8576227A9E0AC91EC804 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
07:20:24.0829 0x09f4  NTISchedulerSvc - ok
07:20:24.0881 0x09f4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
07:20:24.0891 0x09f4  Null - ok
07:20:25.0063 0x09f4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
07:20:25.0108 0x09f4  nvraid - ok
07:20:25.0212 0x09f4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
07:20:25.0367 0x09f4  nvstor - ok
07:20:25.0555 0x09f4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
07:20:25.0582 0x09f4  nv_agp - ok
07:20:25.0927 0x09f4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
07:20:25.0957 0x09f4  odserv - ok
07:20:26.0053 0x09f4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
07:20:26.0066 0x09f4  ohci1394 - ok
07:20:26.0258 0x09f4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:20:26.0277 0x09f4  ose - ok
07:20:26.0343 0x09f4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
07:20:26.0372 0x09f4  p2pimsvc - ok
07:20:26.0442 0x09f4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
07:20:26.0458 0x09f4  p2psvc - ok
07:20:26.0511 0x09f4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
07:20:26.0556 0x09f4  Parport - ok
07:20:26.0620 0x09f4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
07:20:26.0626 0x09f4  partmgr - ok
07:20:26.0724 0x09f4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
07:20:26.0742 0x09f4  PcaSvc - ok
07:20:26.0831 0x09f4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
07:20:26.0869 0x09f4  pci - ok
07:20:26.0922 0x09f4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
07:20:26.0967 0x09f4  pciide - ok
07:20:27.0069 0x09f4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
07:20:27.0139 0x09f4  pcmcia - ok
07:20:27.0179 0x09f4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
07:20:27.0220 0x09f4  pcw - ok
07:20:27.0386 0x09f4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
07:20:27.0445 0x09f4  PEAUTH - ok
07:20:28.0262 0x09f4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
07:20:28.0295 0x09f4  PerfHost - ok
07:20:28.0696 0x09f4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
07:20:28.0829 0x09f4  pla - ok
07:20:28.0979 0x09f4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
07:20:29.0009 0x09f4  PlugPlay - ok
07:20:29.0063 0x09f4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
07:20:29.0078 0x09f4  PNRPAutoReg - ok
07:20:29.0176 0x09f4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
07:20:29.0187 0x09f4  PNRPsvc - ok
07:20:29.0365 0x09f4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
07:20:29.0397 0x09f4  PolicyAgent - ok
07:20:29.0499 0x09f4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
07:20:29.0526 0x09f4  Power - ok
07:20:29.0637 0x09f4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
07:20:29.0645 0x09f4  PptpMiniport - ok
07:20:29.0746 0x09f4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
07:20:29.0793 0x09f4  Processor - ok
07:20:29.0912 0x09f4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
07:20:29.0947 0x09f4  ProfSvc - ok
07:20:29.0988 0x09f4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:20:29.0992 0x09f4  ProtectedStorage - ok
07:20:30.0102 0x09f4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
07:20:30.0112 0x09f4  Psched - ok
07:20:30.0622 0x09f4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
07:20:30.0790 0x09f4  ql2300 - ok
07:20:30.0884 0x09f4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
07:20:30.0946 0x09f4  ql40xx - ok
07:20:31.0038 0x09f4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
07:20:31.0087 0x09f4  QWAVE - ok
07:20:31.0122 0x09f4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
07:20:31.0163 0x09f4  QWAVEdrv - ok
07:20:31.0205 0x09f4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
07:20:31.0225 0x09f4  RasAcd - ok
07:20:31.0359 0x09f4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
07:20:31.0392 0x09f4  RasAgileVpn - ok
07:20:31.0472 0x09f4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
07:20:31.0543 0x09f4  RasAuto - ok
07:20:31.0693 0x09f4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
07:20:31.0742 0x09f4  Rasl2tp - ok
07:20:31.0916 0x09f4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
07:20:31.0952 0x09f4  RasMan - ok
07:20:32.0040 0x09f4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
07:20:32.0054 0x09f4  RasPppoe - ok
07:20:32.0107 0x09f4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
07:20:32.0114 0x09f4  RasSstp - ok
07:20:32.0276 0x09f4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
07:20:32.0319 0x09f4  rdbss - ok
07:20:32.0394 0x09f4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
07:20:32.0434 0x09f4  rdpbus - ok
07:20:32.0489 0x09f4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
07:20:32.0544 0x09f4  RDPCDD - ok
07:20:32.0628 0x09f4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
07:20:32.0672 0x09f4  RDPENCDD - ok
07:20:32.0701 0x09f4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
07:20:32.0740 0x09f4  RDPREFMP - ok
07:20:32.0845 0x09f4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
07:20:32.0920 0x09f4  RDPWD - ok
07:20:33.0051 0x09f4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
07:20:33.0073 0x09f4  rdyboost - ok
07:20:33.0152 0x09f4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
07:20:33.0159 0x09f4  RemoteAccess - ok
07:20:33.0242 0x09f4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
07:20:33.0315 0x09f4  RemoteRegistry - ok
07:20:33.0413 0x09f4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
07:20:33.0458 0x09f4  RpcEptMapper - ok
07:20:33.0567 0x09f4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
07:20:33.0604 0x09f4  RpcLocator - ok
07:20:33.0793 0x09f4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
07:20:33.0807 0x09f4  RpcSs - ok
07:20:33.0853 0x09f4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
07:20:33.0890 0x09f4  rspndr - ok
07:20:34.0002 0x09f4  [ DB30AA4DAA0D492FA5D7717D8181FFA1, 1126AD4998D410918CFB7DBD9C74DA7F4066A4C0F90F0E7D689A6E65B2420817 ] RSUSBSTOR       C:\Windows\System32\Drivers\RtsUStor.sys
07:20:34.0051 0x09f4  RSUSBSTOR - ok
07:20:34.0067 0x09f4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
07:20:34.0071 0x09f4  SamSs - ok
07:20:34.0155 0x09f4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
07:20:34.0197 0x09f4  sbp2port - ok
07:20:34.0295 0x09f4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
07:20:34.0348 0x09f4  SCardSvr - ok
07:20:34.0419 0x09f4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
07:20:34.0454 0x09f4  scfilter - ok
07:20:34.0777 0x09f4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
07:20:34.0841 0x09f4  Schedule - ok
07:20:34.0881 0x09f4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
07:20:34.0884 0x09f4  SCPolicySvc - ok
07:20:35.0006 0x09f4  [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
07:20:35.0036 0x09f4  ScreamBAudioSvc - ok
07:20:35.0153 0x09f4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
07:20:35.0229 0x09f4  SDRSVC - ok
07:20:35.0310 0x09f4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
07:20:35.0338 0x09f4  secdrv - ok
07:20:35.0431 0x09f4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
07:20:35.0461 0x09f4  seclogon - ok
07:20:35.0517 0x09f4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
07:20:35.0564 0x09f4  SENS - ok
07:20:35.0647 0x09f4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
07:20:35.0692 0x09f4  SensrSvc - ok
07:20:35.0762 0x09f4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
07:20:35.0834 0x09f4  Serenum - ok
07:20:35.0911 0x09f4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
07:20:35.0950 0x09f4  Serial - ok
07:20:36.0034 0x09f4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
07:20:36.0075 0x09f4  sermouse - ok
07:20:36.0150 0x09f4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
07:20:36.0184 0x09f4  SessionEnv - ok
07:20:36.0264 0x09f4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
07:20:36.0291 0x09f4  sffdisk - ok
07:20:36.0352 0x09f4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
07:20:36.0392 0x09f4  sffp_mmc - ok
07:20:36.0485 0x09f4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
07:20:36.0510 0x09f4  sffp_sd - ok
07:20:36.0596 0x09f4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
07:20:36.0636 0x09f4  sfloppy - ok
07:20:36.0787 0x09f4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
07:20:36.0816 0x09f4  SharedAccess - ok
07:20:36.0961 0x09f4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:20:36.0997 0x09f4  ShellHWDetection - ok
07:20:37.0040 0x09f4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:20:37.0086 0x09f4  SiSRaid2 - ok
07:20:37.0172 0x09f4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
07:20:37.0336 0x09f4  SiSRaid4 - ok
07:20:37.0768 0x09f4  [ E77CB3736A702D46A6FB15FB4A9894E3, A341AD51825D4DB8A68ADDABE0FD17693DE387B0DA11800D427B8EA31577626C ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
07:20:37.0815 0x09f4  SmartDefragDriver - ok
07:20:37.0866 0x09f4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
07:20:37.0918 0x09f4  Smb - ok
07:20:38.0068 0x09f4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
07:20:38.0097 0x09f4  SNMPTRAP - ok
07:20:38.0167 0x09f4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
07:20:38.0195 0x09f4  spldr - ok
07:20:38.0315 0x09f4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
07:20:38.0375 0x09f4  Spooler - ok
07:20:39.0084 0x09f4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
07:20:39.0234 0x09f4  sppsvc - ok
07:20:39.0314 0x09f4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
07:20:39.0367 0x09f4  sppuinotify - ok
07:20:39.0449 0x09f4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
07:20:39.0465 0x09f4  srv - ok
07:20:39.0514 0x09f4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
07:20:39.0526 0x09f4  srv2 - ok
07:20:39.0575 0x09f4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
07:20:39.0586 0x09f4  srvnet - ok
07:20:39.0676 0x09f4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
07:20:39.0703 0x09f4  SSDPSRV - ok
07:20:39.0728 0x09f4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
07:20:39.0736 0x09f4  SstpSvc - ok
07:20:39.0865 0x09f4  [ C692C94FE55CAD0633440236022C27B3, 9A21E9B2EB96DC8C58DE060EEAFC2FD71AB9C539039DAAD5F7380556E2D1D69B ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
07:20:39.0953 0x09f4  ssudmdm - ok
07:20:40.0024 0x09f4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
07:20:40.0045 0x09f4  stexstor - ok
07:20:40.0198 0x09f4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
07:20:40.0221 0x09f4  stisvc - ok
07:20:40.0296 0x09f4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
07:20:40.0311 0x09f4  swenum - ok
07:20:40.0513 0x09f4  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
07:20:40.0534 0x09f4  SwitchBoard - ok
07:20:40.0772 0x09f4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
07:20:40.0808 0x09f4  swprv - ok
07:20:40.0977 0x09f4  [ BCF305959B53B200CEB2AD25AD22F8A7, 74F71313A87C1FDDE2B373EA8D30346D47669CAA7CCE83AB6F8452C268F65787 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
07:20:41.0024 0x09f4  SynTP - ok
07:20:41.0353 0x09f4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
07:20:41.0435 0x09f4  SysMain - ok
07:20:41.0507 0x09f4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:20:41.0532 0x09f4  TabletInputService - ok
07:20:41.0661 0x09f4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
07:20:41.0681 0x09f4  TapiSrv - ok
07:20:41.0758 0x09f4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
07:20:41.0796 0x09f4  TBS - ok
07:20:42.0212 0x09f4  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
07:20:42.0358 0x09f4  Tcpip - ok
07:20:42.0630 0x09f4  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
07:20:42.0668 0x09f4  TCPIP6 - ok
07:20:42.0727 0x09f4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
07:20:42.0735 0x09f4  tcpipreg - ok
07:20:42.0808 0x09f4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
07:20:42.0830 0x09f4  TDPIPE - ok
07:20:42.0890 0x09f4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
07:20:42.0931 0x09f4  TDTCP - ok
07:20:42.0998 0x09f4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
07:20:43.0017 0x09f4  tdx - ok
07:20:43.0067 0x09f4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
07:20:43.0087 0x09f4  TermDD - ok
07:20:43.0215 0x09f4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
07:20:43.0266 0x09f4  TermService - ok
07:20:43.0323 0x09f4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
07:20:43.0339 0x09f4  Themes - ok
07:20:43.0381 0x09f4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
07:20:43.0386 0x09f4  THREADORDER - ok
07:20:43.0486 0x09f4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
07:20:43.0496 0x09f4  TrkWks - ok
07:20:43.0589 0x09f4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:20:43.0594 0x09f4  TrustedInstaller - ok
07:20:43.0657 0x09f4  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
07:20:43.0669 0x09f4  tssecsrv - ok
07:20:43.0751 0x09f4  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
07:20:43.0755 0x09f4  TsUsbFlt - ok
07:20:43.0874 0x09f4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
07:20:43.0890 0x09f4  tunnel - ok
07:20:43.0956 0x09f4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
07:20:43.0977 0x09f4  uagp35 - ok
07:20:44.0006 0x09f4  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00, 4646712B3F3AF6188DBCE1A95D92261E8B15E9583FE5DD538EC884F48B51759D ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
07:20:44.0013 0x09f4  UBHelper - ok
07:20:44.0131 0x09f4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
07:20:44.0160 0x09f4  udfs - ok
07:20:44.0211 0x09f4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
07:20:44.0250 0x09f4  UI0Detect - ok
07:20:44.0291 0x09f4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
07:20:44.0311 0x09f4  uliagpkx - ok
07:20:44.0360 0x09f4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
07:20:44.0381 0x09f4  umbus - ok
07:20:44.0444 0x09f4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
07:20:44.0446 0x09f4  UmPass - ok
07:20:44.0634 0x09f4  [ F9EC9ACD504D823D9B9CA98A4F8D3CA2, 58DAD5111C598F14CB199FE6A61FA5918F29513B778A8664FD05EFAB3C665D4F ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
07:20:44.0649 0x09f4  Updater Service - ok
07:20:44.0752 0x09f4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
07:20:44.0765 0x09f4  upnphost - ok
07:20:44.0840 0x09f4  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
07:20:44.0854 0x09f4  USBAAPL64 - ok
07:20:45.0011 0x09f4  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
07:20:45.0019 0x09f4  usbaudio - ok
07:20:45.0083 0x09f4  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
07:20:45.0097 0x09f4  usbccgp - ok
07:20:45.0154 0x09f4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
07:20:45.0158 0x09f4  usbcir - ok
07:20:45.0193 0x09f4  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
07:20:45.0196 0x09f4  usbehci - ok
07:20:45.0266 0x09f4  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
07:20:45.0276 0x09f4  usbhub - ok
07:20:45.0319 0x09f4  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
07:20:45.0328 0x09f4  usbohci - ok
07:20:45.0379 0x09f4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
07:20:45.0398 0x09f4  usbprint - ok
07:20:45.0445 0x09f4  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
07:20:45.0448 0x09f4  usbscan - ok
07:20:45.0515 0x09f4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:20:45.0534 0x09f4  USBSTOR - ok
07:20:45.0592 0x09f4  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
07:20:45.0595 0x09f4  usbuhci - ok
07:20:45.0645 0x09f4  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
07:20:45.0651 0x09f4  usbvideo - ok
07:20:45.0699 0x09f4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
07:20:45.0716 0x09f4  UxSms - ok
07:20:45.0746 0x09f4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
07:20:45.0750 0x09f4  VaultSvc - ok
07:20:45.0822 0x09f4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
07:20:45.0831 0x09f4  vdrvroot - ok
07:20:45.0938 0x09f4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
07:20:45.0981 0x09f4  vds - ok
07:20:46.0051 0x09f4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
07:20:46.0054 0x09f4  vga - ok
07:20:46.0110 0x09f4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
07:20:46.0112 0x09f4  VgaSave - ok
07:20:46.0219 0x09f4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
07:20:46.0236 0x09f4  vhdmp - ok
07:20:46.0307 0x09f4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
07:20:46.0310 0x09f4  viaide - ok
07:20:46.0356 0x09f4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
07:20:46.0360 0x09f4  volmgr - ok
07:20:46.0440 0x09f4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
07:20:46.0452 0x09f4  volmgrx - ok
07:20:46.0507 0x09f4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
07:20:46.0516 0x09f4  volsnap - ok
07:20:46.0586 0x09f4  [ D122E5576F7CA9903F6576C7F09FA62D, 1A706C24BBAD6A322CBECF9F82231234F1D11CA0398C49EB7743B6932A25AB29 ] Vsdatant        C:\Windows\system32\DRIVERS\vsdatant.sys
07:20:46.0599 0x09f4  Vsdatant - ok
07:20:47.0349 0x09f4  [ ABC70D66394C27F0B50E41A19E89C2D7, EFB1354DDB5599D13D5397EB34EC865D7F23344650C64C5A04622430A6B22B77 ] vsmon           C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
07:20:47.0496 0x09f4  vsmon - ok
07:20:47.0578 0x09f4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
07:20:47.0601 0x09f4  vsmraid - ok
07:20:47.0820 0x09f4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
07:20:47.0873 0x09f4  VSS - ok
07:20:48.0049 0x09f4  [ 7570288275D80F5472AE3147487FF0B5, 45204AC1DFEEE18913081FEE1FA55D6C2A13689525641F468AA7BB12850246D5 ] vToolbarUpdater18.1.7 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe
07:20:48.0117 0x09f4  vToolbarUpdater18.1.7 - ok
07:20:48.0168 0x09f4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
07:20:48.0173 0x09f4  vwifibus - ok
07:20:48.0192 0x09f4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
07:20:48.0197 0x09f4  vwififlt - ok
07:20:48.0248 0x09f4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
07:20:48.0262 0x09f4  W32Time - ok
07:20:48.0322 0x09f4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
07:20:48.0325 0x09f4  WacomPen - ok
07:20:48.0391 0x09f4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
07:20:48.0396 0x09f4  WANARP - ok
07:20:48.0404 0x09f4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
07:20:48.0408 0x09f4  Wanarpv6 - ok
07:20:48.0682 0x09f4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
07:20:48.0716 0x09f4  WatAdminSvc - ok
07:20:48.0920 0x09f4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
07:20:48.0987 0x09f4  wbengine - ok
07:20:49.0054 0x09f4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
07:20:49.0070 0x09f4  WbioSrvc - ok
07:20:49.0112 0x09f4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
07:20:49.0137 0x09f4  wcncsvc - ok
07:20:49.0157 0x09f4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:20:49.0163 0x09f4  WcsPlugInService - ok
07:20:49.0200 0x09f4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
07:20:49.0204 0x09f4  Wd - ok
07:20:49.0357 0x09f4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
07:20:49.0391 0x09f4  Wdf01000 - ok
07:20:49.0450 0x09f4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
07:20:49.0466 0x09f4  WdiServiceHost - ok
07:20:49.0475 0x09f4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
07:20:49.0481 0x09f4  WdiSystemHost - ok
07:20:49.0548 0x09f4  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
07:20:49.0560 0x09f4  WebClient - ok
07:20:49.0614 0x09f4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
07:20:49.0629 0x09f4  Wecsvc - ok
07:20:49.0659 0x09f4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
07:20:49.0666 0x09f4  wercplsupport - ok
07:20:49.0689 0x09f4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
07:20:49.0696 0x09f4  WerSvc - ok
07:20:49.0734 0x09f4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
07:20:49.0736 0x09f4  WfpLwf - ok
07:20:49.0783 0x09f4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
07:20:49.0786 0x09f4  WIMMount - ok
07:20:49.0851 0x09f4  WinDefend - ok
07:20:49.0903 0x09f4  WinHttpAutoProxySvc - ok
07:20:50.0000 0x09f4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
07:20:50.0008 0x09f4  Winmgmt - ok
07:20:50.0129 0x09f4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
07:20:50.0241 0x09f4  WinRM - ok
07:20:50.0345 0x09f4  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
07:20:50.0348 0x09f4  WinUsb - ok
07:20:50.0428 0x09f4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
07:20:50.0455 0x09f4  Wlansvc - ok
07:20:50.0499 0x09f4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
07:20:50.0521 0x09f4  WmiAcpi - ok
07:20:50.0582 0x09f4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
07:20:50.0590 0x09f4  wmiApSrv - ok
07:20:50.0659 0x09f4  WMPNetworkSvc - ok
07:20:50.0702 0x09f4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
07:20:50.0709 0x09f4  WPCSvc - ok
07:20:50.0764 0x09f4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
07:20:50.0772 0x09f4  WPDBusEnum - ok
07:20:50.0829 0x09f4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
07:20:50.0832 0x09f4  ws2ifsl - ok
07:20:50.0866 0x09f4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
07:20:50.0874 0x09f4  wscsvc - ok
07:20:50.0882 0x09f4  WSearch - ok
07:20:51.0285 0x09f4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
07:20:51.0385 0x09f4  wuauserv - ok
07:20:51.0455 0x09f4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
07:20:51.0467 0x09f4  WudfPf - ok
07:20:51.0536 0x09f4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
07:20:51.0545 0x09f4  WUDFRd - ok
07:20:51.0593 0x09f4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
07:20:51.0610 0x09f4  wudfsvc - ok
07:20:51.0659 0x09f4  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
07:20:51.0670 0x09f4  WwanSvc - ok
07:20:51.0705 0x09f4  [ A8A49F0427D783BFF78BC3226B4ABD0D, BE074147C825292C5A4CB859EE0238061511753F24348975BC51B313F370DD2C ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
07:20:51.0709 0x09f4  ZAPrivacyService - ok
07:20:51.0738 0x09f4  ================ Scan global ===============================
07:20:51.0766 0x09f4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
07:20:51.0811 0x09f4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
07:20:51.0833 0x09f4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
07:20:51.0943 0x09f4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
07:20:51.0997 0x09f4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
07:20:52.0020 0x09f4  [ Global ] - ok
07:20:52.0024 0x09f4  ================ Scan MBR ==================================
07:20:52.0048 0x09f4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:20:52.0464 0x09f4  \Device\Harddisk0\DR0 - ok
07:20:52.0464 0x09f4  ================ Scan VBR ==================================
07:20:52.0491 0x09f4  [ 14778F5114054E8C9335B7D0E9F003AC ] \Device\Harddisk0\DR0\Partition1
07:20:52.0558 0x09f4  \Device\Harddisk0\DR0\Partition1 - ok
07:20:52.0593 0x09f4  [ 316DE7B8536EE8002266744A8D0DEB51 ] \Device\Harddisk0\DR0\Partition2
07:20:52.0621 0x09f4  \Device\Harddisk0\DR0\Partition2 - ok
07:20:52.0621 0x09f4  ================ Scan generic autorun ======================
07:20:53.0580 0x09f4  [ 702396AD8DA7DF3FF6AD7718F0720A56, BB2F17E649E65C52686A45816BA89F98CBB19B224B99E9D8C0431452BF23F705 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
07:20:53.0978 0x09f4  RtHDVCpl - ok
07:20:54.0149 0x09f4  [ 89F7B7CCC82D7E6FF9832FE3D24988C4, 430958B7694D2F86F4DAEF57329582669F79435B0B4D5D10CB3FF9D1B4251F44 ] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
07:20:54.0170 0x09f4  mwlDaemon - ok
07:20:54.0208 0x09f4  [ C85C36508477847F7AA25DD89B8B2010, 30986B5EA0F9CB6F9F198511D79B5C4C6AC6CD89F683B3CD2B694DD80CDA8785 ] C:\Windows\system32\igfxtray.exe
07:20:54.0214 0x09f4  IgfxTray - ok
07:20:54.0234 0x09f4  [ 41F71F3FB8C9018CD83A09A9A8681FD8, 4586AC5366DC63D550D1A41A0F83C40334EBCC34239C5A5DEA4F2F1EE54C0DE3 ] C:\Windows\system32\hkcmd.exe
07:20:54.0246 0x09f4  HotKeysCmds - ok
07:20:54.0329 0x09f4  [ C895DBAA7917AE374A70C340307D39E7, 7BD338E204918B60F6AEAF3CF43E094871724236122D6310AA6148AA84B74014 ] C:\Windows\system32\igfxpers.exe
07:20:54.0346 0x09f4  Persistence - ok
07:20:54.0518 0x09f4  [ FEDB6110D3E0A7EFE6996F93CD8C48E7, 719F6B648AE9841B03C8FB9FC9D0CB1233FDD3030FBD3C420C3E8CEB59A12214 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe
07:20:54.0534 0x09f4  CanonSolutionMenu - ok
07:20:54.0800 0x09f4  [ B28AD85B8C199CB573621FCE54D7E19C, 42FFD67529592C5F349936C175E0C40E4E116E20B041042AB1E05FF164AEDD17 ] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
07:20:54.0878 0x09f4  CanonMyPrinter - ok
07:20:54.0883 0x09f4  SynTPEnh - ok
07:20:55.0121 0x09f4  [ 6B7DE92DAA31E9A6A703E3A405B096FB, 65CDD01EB816EB712C8EE79D63632B3E5B55BC835C5041C7A5B63A6DDF98C062 ] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
07:20:55.0151 0x09f4  Acer ePower Management - ok
07:20:55.0284 0x09f4  [ DB282FA0CBA880D36BA5FBE748BD6F4F, C3A6AB6A2D084048F8C622B9B4CF138CE577B7B4CBC0BF00E5CB2A18918070DC ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
07:20:55.0296 0x09f4  AdobeAAMUpdater-1.0 - ok
07:20:55.0367 0x09f4  [ DD7DAE4E8F169D1FF4511FC292FF6FF6, 23A6C639832EB769037EA3BF7365A90DB3D534C7113B48B0C7BC96C023100204 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
07:20:55.0375 0x09f4  IAStorIcon - ok
07:20:55.0471 0x09f4  [ E439643E61B6CE7F47CC03E6A4590E26, E0C3DD41BD12CAF2AA04E930A30D3C4DF9974AC8769C58A45B744C28F6EF469D ] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
07:20:55.0498 0x09f4  SuiteTray - ok
07:20:55.0941 0x09f4  [ 6C695B04E2E29459CDC2E5C0970B883B, CE0CFE5369B9931FF387A2F64B9F7F8E6583CE50789FB703228AC68950F32EA9 ] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
07:20:57.0259 0x09f4  EgisUpdate - ok
07:20:57.0302 0x09f4  [ 27964C4676D0F4B34DB7332AFA2B1474, E3A7ED7642A3902C19E96717E9C14267C9A578637338674A2654A018D3D7F65D ] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
07:20:57.0459 0x09f4  EgisTecPMMUpdate - ok
07:20:57.0781 0x09f4  [ 9BC2534576547B472FF8CE5092DF49A4, EFE2189C112C90AE40CD7375EEF1936A32993427CF7D7581E887693099E815DB ] C:\Program Files\McAfee.com\Agent\mcagent.exe
07:20:57.0834 0x09f4  mcui_exe - ok
07:20:58.0003 0x09f4  [ 6882D187F65ECA79110848A68FDEB2BF, 1BE59945F6D5040E9675DC31C27AD230D4C2C02B84BD4E16AB459D04D9B9E7B4 ] C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
07:20:58.0033 0x09f4  BkupTray - ok
07:20:58.0286 0x09f4  [ F4F7C86191A981C804326E2EF6F3604F, 1ECE05E643AFFB27A148A8B86615F6C167875EF29D6FF7E2FD15B8DCBE6B8A16 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
07:20:58.0319 0x09f4  Adobe Reader Speed Launcher - ok
07:20:58.0483 0x09f4  [ 2782D83D9B1071E28E2A4D9C6F5307C6, A0AD020D58D4759EB4F4DDF4E8B7397CDEF095ECD2E2804E250DEBA9117B1E30 ] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
07:20:58.0523 0x09f4  BackupManagerTray - ok
07:20:58.0766 0x09f4  [ 981E539199217491DF663368C02F4B94, BF17C28733E94D986FEA311DCD6D6507A4FD58515FD5F7C6ABA5A2A92045A511 ] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
07:20:58.0816 0x09f4  NortonOnlineBackupReminder - ok
07:20:58.0912 0x09f4  [ 522EEC6D2CAF10ADF7D9B6868A5BDEA9, 15198AF557E2630492106CA6306C03E1A103FF9E9669B70E601957AC7D490C87 ] C:\Program Files (x86)\Launch Manager\LManager.exe
07:20:58.0950 0x09f4  LManager - ok
07:20:59.0032 0x09f4  [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
07:20:59.0035 0x09f4  APSDaemon - ok
07:20:59.0092 0x09f4  [ 846965AE55A2662B1576C0F392DD1D6E, 0ADE383991FDC5A49DD15A27CB52CF75ABF518F0335E92003C0FF75DB417BBDC ] C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
07:20:59.0119 0x09f4  SSBkgdUpdate - ok
07:20:59.0169 0x09f4  [ F8D427DAE2984A4968E2D1CB53634784, 02DDE830F40C48321C0AB384D2505F3AD1AD84FAF17AB411A2FE7DE3409DC0E5 ] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe
07:20:59.0172 0x09f4  OpwareSE4 - ok
07:20:59.0263 0x09f4  [ 4EB0C6C3EF4D8885CF2B5D0062F31E44, A3967758E30609D29A4856F373DD2C971B341F914825D720387ACFD7499EDC3D ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
07:20:59.0292 0x09f4  DivXUpdate - ok
07:21:00.0136 0x09f4  [ A8B68D4A0B815294819E2647D54A7686, 6FA0527939753D52AB259D13B515A50BBCC9248900C88F2B2582282961BD844E ] C:\Program Files (x86)\AVG\AVG2014\avgui.exe
07:21:00.0589 0x09f4  AVG_UI - ok
07:21:00.0728 0x09f4  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
07:21:00.0753 0x09f4  Adobe ARM - ok
07:21:00.0816 0x09f4  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
07:21:00.0840 0x09f4  QuickTime Task - ok
07:21:00.0883 0x09f4  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
07:21:00.0894 0x09f4  SwitchBoard - ok
07:21:01.0060 0x09f4  [ D5B783DACE1BBDD382A63C894BAB8E1E, 20BA7479B3BE8AC7771AA91DB9C4F3B46DADDFF9C48627A5C7C460546DD20AF3 ] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
07:21:01.0072 0x09f4  AdobeCS5ServiceManager - ok
07:21:01.0422 0x09f4  [ 4EB4194DA96D36B865FAACC11FE51A25, 285C7BB3B70A40A9D57988FE4619D2CE66284F028CF427D175BC97221C0CDAA4 ] C:\Program Files (x86)\AVG Secure Search\vprot.exe
07:21:01.0572 0x09f4  vProt - ok
07:21:01.0761 0x09f4  [ 8FE651ACBA3344E645CFEB6286FFF6B8, ECE4DFFEB7EB0B19B6790FD0F619A5C4B23CA0BA9CC3F25924925F8EA07264B6 ] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
07:21:01.0817 0x09f4  AdobeCS6ServiceManager - ok
07:21:01.0896 0x09f4  [ BAF535F843A3E790E04A7613811B55BC, 764608E1BC657FBBBB3E0DC5D36F0701CAA9D28BE15E416DF84AD3EFC7EB85D9 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
07:21:01.0908 0x09f4  iTunesHelper - ok
07:21:02.0052 0x09f4  [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
07:21:02.0069 0x09f4  SunJavaUpdateSched - ok
07:21:03.0173 0x09f4  [ 26AFC1F16494FFE66F2197153B342A27, 817436E38F832500E120F196941F2F8392B192262E16D5E52CD5DFAC34749C15 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
07:21:03.0560 0x09f4  AvastUI.exe - ok
07:21:03.0802 0x09f4  [ AE7C1340E78F991E2930CF2EB2069DFF, 968E22FBF6883402F1FDE80B6BB1C0DC2AB622F6FCCCE283F7A1AB29B677DD0B ] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
07:21:03.0818 0x09f4  Malwarebytes Anti-Exploit - ok
07:21:03.0889 0x09f4  [ 6ACC44D3C8B72617061A6D2B66C7D5A7, 2CCA5D68B8C9640AADAF42E0260CFB94DDF60213D7BB3FFA6DCB673C096DB86C ] C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
07:21:03.0901 0x09f4  ZoneAlarm - ok
07:21:04.0236 0x09f4  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
07:21:04.0281 0x09f4  Sidebar - ok
07:21:04.0374 0x09f4  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
07:21:04.0404 0x09f4  mctadmin - ok
07:21:04.0746 0x09f4  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
07:21:04.0768 0x09f4  Sidebar - ok
07:21:04.0796 0x09f4  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
07:21:04.0801 0x09f4  mctadmin - ok
07:21:04.0882 0x09f4  [ A423D8E65A1359327EA9B85F88529E0D, 72B3EBB83F40484F5EE6551DAD854B0A4A08CB03B9E88B85EAE4ED057F2A4E6F ] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
07:21:04.0916 0x09f4  Remote Mouse - ok
07:21:07.0092 0x09f4  [ A9D4EF29AD32FB33AF9F863F2CAD276D, B080F655985381D134B0938C29786A2A1131688AFDF6C39F2375958BC35E9331 ] C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe
07:21:07.0707 0x09f4  AdobeBridge - ok
07:21:08.0167 0x09f4  [ 3433CF435F84B24965A8202118F41A7A, 18A9C06FDEC96CF8ABA818786B266DABC3A22077AF55A39B76AAF24DA63DE3FD ] C:\Users\Victoria\AppData\Roaming\uTorrent\uTorrent.exe
07:21:08.0210 0x09f4  uTorrent - ok
07:21:08.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:09.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:10.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:11.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:12.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:13.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:14.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:15.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:16.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:17.0214 0x09f4  Waiting for KSN requests completion. In queue: 41
07:21:18.0610 0x09f4  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files (x86)\AVG\AVG2014\avgwsc.exe ( 14.0.0.4714 ), 0x41000 ( enabled : updated )
07:21:18.0679 0x09f4  AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 11.0.0.0 ), 0x50000 ( disabled : updated )
07:21:18.0742 0x09f4  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
07:21:19.0332 0x09f4  AV detected via SS2: ZoneAlarm Antivirus, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 13.2.15.0 ), 0x40000 ( disabled : updated )
07:21:19.0335 0x09f4  FW detected via SS2: ZoneAlarm Firewall, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 13.2.15.0 ), 0x41010 ( enabled )
07:21:19.0338 0x09f4  FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 11.0.0.0 ), 0x51010 ( enabled )
07:21:29.0144 0x09f4  ============================================================
07:21:29.0144 0x09f4  Scan finished
07:21:29.0144 0x09f4  ============================================================
07:21:29.0155 0x162c  Detected object count: 0
07:21:29.0155 0x162c  Actual detected object count: 0
 


#8 buddy215

buddy215

  • Moderator
  • 13,312 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee

Posted 04 July 2014 - 06:39 AM

You need to remove all but one antivirus program. Same goes for firewall. More than one can cause problems.

 

Since you have/ had a ton of adware...some may have been missed by MBAM. Not unusual.

 

  • download AdwCleaner by Xplode onto your desktop.
    Close all open programs and internet browsers.
    Double click on adwcleaner.exe to run the tool.
    Click on Delete.
    Confirm each time with Ok.
    You will be prompted to restart your computer. A text file will open after the restart.
    Please post the contents of that logfile with your next reply.
    You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 

Use CCleaner to cleanup temporary files, logs, ad cookies, etc. Use the default settings. Pay attention while installing

and UNcheck any offers of toolbars. No need to use the Registry Cleaning tool...may cause a problem.

CCleaner - PC Optimization and Cleaning - Free Download

 

  • Run the ESET Online Scanner.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.
  • download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#9 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 07:41 PM

So I don't have a serious problem? I don't care about adware, honestly, if I don't have a keylogger or spyware or Skynet then I'm happy. I just wanted an answer of "yes you have a serious problem" or "no you just have some adware". Yes I'll work on removing the adware but I really just want an answer about more serious viruses.



#10 buddy215

buddy215

  • Moderator
  • 13,312 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee

Posted 04 July 2014 - 08:10 PM

It looks like AVG caught one trojan before it could set its hooks that would of caused a lot of grief.

 

Adware can be a big pain in several ways.

 

The Eset scanner scans for malware as well as adware. Does a very good job.

 

The mini toolbox does just what it says. Gives me a chance to review programs known to be rogues and undesireable for other reasons...such as being adware

intensive.

 

I want say for certain whether your comp is free of all except adware and I don't think you will regret doing the

scans.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#11 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 08:41 PM

Oh yeah, absolutely I'm happy to get rid of the adware. Thank you so much for helping, by the way, I really appreciate this. I'm pretty sure I removed all but one of the firewalls and anti viruses.

 

So here's the log from AdwCleaner:

 

# AdwCleaner v3.214 - Report created 04/07/2014 at 21:30:25
# Updated 29/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Victoria - VICTORIA-PC
# Running from : C:\Users\Victoria\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
Service Deleted : APNMCP
Service Deleted : vToolbarUpdater18.1.7
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\surf  and keep
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\MediaBuzzV1
Folder Deleted : C:\Program Files (x86)\MediaPlayerV1
Folder Deleted : C:\Program Files (x86)\MediaViewerV1
Folder Deleted : C:\Program Files (x86)\MediaViewV1
Folder Deleted : C:\Program Files (x86)\MediaWatchV1
Folder Deleted : C:\Program Files (x86)\NCH Software
Folder Deleted : C:\Program Files (x86)\RichMediaViewV1
Folder Deleted : C:\Program Files (x86)\SecretSauce
Folder Deleted : C:\Program Files (x86)\VideoPlayerV3
Folder Deleted : C:\Program Files (x86)\surf  and keep
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\Victoria\AppData\Local\apn
Folder Deleted : C:\Users\Victoria\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\Victoria\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Victoria\AppData\Local\Conduit
Folder Deleted : C:\Users\Victoria\AppData\Local\genienext
Folder Deleted : C:\Users\Victoria\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Victoria\AppData\Local\PackageAware
Folder Deleted : C:\Users\Victoria\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Victoria\AppData\Local\torch
Folder Deleted : C:\Users\Victoria\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Victoria\AppData\Local\Temp\AskSearch
Folder Deleted : C:\Users\Victoria\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Victoria\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Victoria\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\Victoria\Documents\Mobogenie
File Deleted : C:\END
File Deleted : C:\Users\Victoria\daemonprocess.txt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml
File Deleted : C:\Users\Victoria\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_continuetosave.info_0.localstorage-journal
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof
Key Deleted : HKCU\Software\Google\Chrome\Extensions\knkakpihealnpggeceajhaonlmgdkaip
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\knkakpihealnpggeceajhaonlmgdkaip
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Applications\Torch.exe
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2704262
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_maple_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_maple_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{2318C2B1-4965-11D4-9B18-009027A5CD4F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{32B29DF0-2237-4370-9A29-37CEBB730E9B}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\AskPartnerNetwork
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\torch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : [x64] HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17126
 
 
-\\ Mozilla Firefox v
 
-\\ Google Chrome v35.0.1916.153
 
[ File : C:\Users\Victoria\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={2151F87E-C2CE-4EA5-8DBF-DA7AF7D78BB7}&mid=f765db3c606547d1a1caa113f01345bb-d87c3a5e58e01427b4c2172386cc187e529a5b2f&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2013-09-27 00:14:12&v=17.0.1.12&pid=avg&sg=0&sap=dsp&q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Extension] : hbcennhacfaagdopikcegfcobcadeocj
Deleted [Extension] : icdlfehblmklkikfigmjhbmmpmkmpooj
Deleted [Extension] : jpmbfleldcgkldadpdinhjjopdfpjfjp
Deleted [Extension] : knkakpihealnpggeceajhaonlmgdkaip
Deleted [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof
Deleted [Extension] : pfndaklgolladniicklehhancnlgocpp
 
*************************
 
AdwCleaner[R0].txt - [16212 octets] - [04/07/2014 21:28:08]
AdwCleaner[S0].txt - [16008 octets] - [04/07/2014 21:30:25]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [16069 octets] ##########
 
I'll do the Junkware Removal Tool now.


#12 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 09:08 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Victoria on 04/07/2014 at 21:53:25.58
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110211181104}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211181104}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\Victoria\appdata\locallow\boost_interprocess"
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 04/07/2014 at 22:07:08.29
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#13 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 11:24 PM

C:\Users\All Users\IObit\ASCDownloader\ASCSetup.exe a variant of Win32/Toolbar.Widgi.B potentially unwanted application

C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Application Updater\temp\~wt1FB9.tmp a variant of Win32/Toolbar.Widgi.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll.vir a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{C049526F-B3EB-4151-9B11-B11F00F53A96}\_Setupx.dll.vir a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Program Files (x86)\IObit\Smart Defrag 2\defragsetup310-free.exe Win32/Toolbar.Widgi.E potentially unwanted application deleted - quarantined
C:\Program Files (x86)\IObit\Smart Defrag 3\SDUpgrate.exe Win32/Toolbar.Widgi.E potentially unwanted application deleted - quarantined
C:\ProgramData\IObit\ASCDownloader\ASCSetup.exe a variant of Win32/Toolbar.Widgi.B potentially unwanted application deleted - quarantined
C:\Users\Victoria\AppData\Local\Google\Chrome\User Data\Default\File System\010\t\00\00000000 Win32/InstalleRex.L potentially unwanted application deleted - quarantined
C:\Users\Victoria\AppData\Local\Google\Chrome\User Data\Default\File System\012\t\00\00000000 Win32/AdWare.1ClickDownload.AR application cleaned by deleting - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\ASAP Rocky-8 Wild For The Night Feat Skrillex.mp3.exe Win32/InstalleRex.J potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\ashampoo_music_studio_4_e4.0.5_sm.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\cbsidlm-tr1_10a-Real_Lives_2010-ORG-10185137.exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\cbsidlm-tr1_9-Free_FLAC_to_MP3_Converter-ORG2-75206134.exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\cnet2_FreeSoundRecorder_exe.exe a variant of Win32/InstallCore.D potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\cnet2_wr493install_exe.exe a variant of Win32/InstallCore.D potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\defragsetup.exe a variant of Win32/Toolbar.Widgi.B potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\Fifty_Shades_of_Grey_(Trilogy)_secure (1).exe Win32/TopMedia.A potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\Fifty_Shades_of_Grey_(Trilogy)_secure.exe Win32/TopMedia.A potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\FreeSoundRecorder.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\Girlfriends_Films_-_Please_Make_Me_Lesbian_Pack_secure (1).exe Win32/TopMedia.B potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\Girlfriends_Films_-_Please_Make_Me_Lesbian_Pack_secure.exe Win32/TopMedia.B potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\rpsetup.exe a variant of Win32/Toolbar.Conduit.H potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\SoftonicDownloader_for_maple.exe Win32/SoftonicDownloader.E potentially unwanted application deleted - quarantined
C:\Users\Victoria\Desktop\All Pictures\Gender & Sexuality\LoadDowns\tumblr me6cnf2IYa1qcrf9jo1.mp3.exe Win32/InstalleRex.I potentially unwanted application deleted - quarantined
C:\Users\Victoria\Downloads\zaSetupWeb_132_015_000.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Application Updater\temp\~wt1FB9.tmp a variant of Win32/Toolbar.Widgi.B potentially unwanted application deleted - quarantined


#14 Guest_Vimm3l_*

Guest_Vimm3l_*

  • Guests
  • OFFLINE
  •  

Posted 04 July 2014 - 11:28 PM

MiniToolBox by Farbar  Version: 25-06-2014
Ran by Victoria (administrator) on 05-07-2014 at 00:26:21
Running from "C:\Users\Victoria\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
 
 
127.0.0.1       wwis-dubc1-vip60.adobe.com
127.0.0.1       activate.adobe.com
127.0.0.1       activate-sjc0.adobe.com
127.0.0.1       adobeereg.com
127.0.0.1       practivate.adobe.com
127.0.0.1       ereg.adobe.com
127.0.0.1       www.adobeereg.com
127.0.0.1       activate.wip3.adobe.com
127.0.0.1       wip3.adobe.com
127.0.0.1       3dns-3.adobe.com
127.0.0.1       3dns-2.adobe.com
127.0.0.1       adobe-dns.adobe.com
127.0.0.1       adobe-dns-2.adobe.com
127.0.0.1       adobe-dns-3.adobe.com
127.0.0.1       ereg.wip3.adobe.com
127.0.0.1       activate-sea.adobe.com
127.0.0.1       wwis-dubc1-vip60.adobe.com
127.0.0.1       activate-sjc0.adobe.com
127.0.0.1       wwis-dubc1-vip60.adobe.com
127.0.0.1       activate.adobe.com
 
There are 70 more lines starting with "127.0.0.1"
 
========================= IP Configuration: ================================
 
Broadcom 802.11n Network Adapter = Wireless Network Connection (Connected)
Atheros AR8132 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Victoria-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 78-E4-00-25-C4-02
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::95d8:a6d4:683b:c742%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.2.14(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : July-04-14 9:50:04 PM
   Lease Expires . . . . . . . . . . : July-07-14 10:08:31 PM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 393798656
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-74-90-F3-70-5A-B6-F7-AC-48
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Atheros AR8132 PCI-E Fast Ethernet Controller
   Physical Address. . . . . . . . . : 70-5A-B6-F7-AC-48
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.home:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 11:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:3c30:e09:476c:7af8(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::3c30:e09:476c:7af8%16(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  monreseau.home
Address:  192.168.2.1
 
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Addresses:  2607:f8b0:400b:80b::1007
 173.194.43.69
 173.194.43.65
 173.194.43.64
 173.194.43.70
 173.194.43.72
 173.194.43.67
 173.194.43.68
 173.194.43.78
 173.194.43.66
 173.194.43.71
 173.194.43.73
 
 
Pinging google.com [173.194.43.73] with 32 bytes of data:
Reply from 173.194.43.73: bytes=32 time=8ms TTL=55
Reply from 173.194.43.73: bytes=32 time=7ms TTL=55
 
Ping statistics for 173.194.43.73:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 7ms, Maximum = 8ms, Average = 7ms
Server:  monreseau.home
Address:  192.168.2.1
 
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=36ms TTL=51
Reply from 98.139.183.24: bytes=32 time=39ms TTL=51
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 36ms, Maximum = 39ms, Average = 37ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...78 e4 00 25 c4 02 ......Broadcom 802.11n Network Adapter
 10...70 5a b6 f7 ac 48 ......Atheros AR8132 PCI-E Fast Ethernet Controller
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1     192.168.2.14     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.2.0    255.255.255.0         On-link      192.168.2.14    281
     192.168.2.14  255.255.255.255         On-link      192.168.2.14    281
    192.168.2.255  255.255.255.255         On-link      192.168.2.14    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.2.14    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.2.14    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 16     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 16     58 2001::/32                On-link
 16    306 2001:0:9d38:90d7:3c30:e09:476c:7af8/128
                                    On-link
 11    281 fe80::/64                On-link
 16    306 fe80::/64                On-link
 16    306 fe80::3c30:e09:476c:7af8/128
                                    On-link
 11    281 fe80::95d8:a6d4:683b:c742/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/04/2014 10:10:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.
 
 
System errors:
=============
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2013-02-26 15:50:13.390
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashWhirlpool.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:13.120
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashWhirlpool.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:12.190
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashTiger.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:12.019
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashTiger.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:11.493
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashSHA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:11.295
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashSHA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:10.391
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashRIPEMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:10.220
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashRIPEMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:09.153
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-02-26 15:50:08.865
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FreeOTFEHashMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
 
=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.60 - NewTech Infosystems)
Acer Crystal Eye webcam (HKLM-x32\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 1.0.2.0 - liteon)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3002 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3007 - Acer Incorporated)
Acer Game Console (x32 Version:  - WildTangent) Hidden
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.0.80 - WildTangent)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3002 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0323.2010 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.5.0.1060 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.5.0.1060 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.5 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.5 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Music Studio 4 v.4.0.5 (HKLM-x32\...\Ashampoo Music Studio 4_is1) (Version: 4.0.5 - Ashampoo GmbH & Co. KG)
Ask Toolbar (HKLM-x32\...\{4D59432D-5354-006A-76A7-A758B70C0A06}) (Version: 12.10.6.5290 - APN, LLC)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.26 - Atheros Communications Inc.)
Audacity 1.3.14 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version:  - Audacity Team)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4716 - AVG Technologies)
AVG 2014 (Version: 14.0.3986 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4716 - AVG Technologies) Hidden
Backup Manager Basic (x32 Version: 2.0.0.60 - NewTech Infosystems) Hidden
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.8.5.303 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Blackhawk Striker 2 (x32 Version: 2.2.0.82 - WildTangent) Hidden
Bob the Builder Can-Do-Zoo (x32 Version: 2.2.0.82 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build-a-lot 2 (x32 Version: 2.2.0.82 - WildTangent) Hidden
Canon MP Navigator EX 1.0 (HKLM-x32\...\MP Navigator EX 1.0) (Version:  - )
Canon MP210 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series) (Version:  - )
Canon My Printer (HKLM\...\CanonMyPrinter) (Version:  - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.2529.50 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.2529.50 - CyberLink Corp.) Hidden
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
eBay Worldwide (HKLM-x32\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)
Escape Rosecliff Island (x32 Version: 2.2.0.82 - WildTangent) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
Faerie Solitaire (x32 Version: 2.2.0.82 - WildTangent) Hidden
FATE - The Traitor Soul (x32 Version: 2.2.0.82 - WildTangent) Hidden
Fences (HKLM-x32\...\Fences) (Version:  - Stardock Corporation)
Fences (Version: 1.0 - Stardock Corporation) Hidden
Free FLAC to MP3 Converter 1.0 (HKLM-x32\...\{A54C01BD-1277-4722-B42B-EC9800A90B1E}_is1) (Version:  - PolySoft Solutions)
Freemake Video Converter version 3.2.1 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 3.2.1 - Ellora Assets Corporation)
FreeOTFE (HKLM-x32\...\FreeOTFE) (Version:  - Sarah Dean)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.6.1001 - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
iWisoft Free Video Downloader 2.1 (HKLM-x32\...\iWisoft Free Video Downloader_is1) (Version: 2.1 - www.iwisoft.com)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java™ 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Jewel Quest Solitaire 3 (x32 Version: 2.2.0.82 - WildTangent) Hidden
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version:  - )
Kobo (HKLM-x32\...\Kobo) (Version: 2.1.7 - Kobo Inc.)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.6 - Acer Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Works (HKLM-x32\...\{67E03279-F703-408F-B4BF-46B5FC8D70CD}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Monopoly (x32 Version: 2.2.0.82 - WildTangent) Hidden
MorphVOX Junior (HKLM-x32\...\{E6C7380F-15DD-445E-BA02-B7A180BA0A5A}) (Version: 2.8.1 - Screaming Bee)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mystery P.I. - Lost in Los Angeles (x32 Version: 2.2.0.82 - WildTangent) Hidden
MyWinLocker (x32 Version: 3.1.206.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.206.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.206.0 - Egis Technology Inc.) Hidden
NirSoft OpenedFilesView (HKLM-x32\...\NirSoft OpenedFilesView) (Version:  - )
NTI Backup Now 5 (HKLM-x32\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.503 - NewTech Infosystems)
NTI Backup Now Standard (x32 Version: 5.1.2.503 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.2.6322 - NewTech Infosystems)
NTI Media Maker 8 (x32 Version: 8.0.2.6322 - NewTech Infosystems) Hidden
OpenOffice.org 3.3 (HKLM-x32\...\{82AF3E91-57E1-4754-84D0-40A46E2479AB}) (Version: 3.3.9567 - OpenOffice.org)
Opera 12.12 (HKLM-x32\...\Opera 12.12.1707) (Version: 12.12.1707 - Opera Software ASA)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden
Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.82 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden
PrivitizeVPN (HKLM-x32\...\PrivitizeVPN) (Version: 1.0.0 - OOO Industry)
QuickTime (HKLM-x32\...\{7BE15435-2D3E-4B58-867F-9C75BED0208C}) (Version: 7.71.80.42 - Apple Inc.)
Real Lives 2004 (HKLM-x32\...\Real Lives 2004) (Version: 2005.1 - Educational Simulations)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6074 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30104 - Realtek Semiconductor Corp.)
Remote Mouse version 1.91 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 1.91 - HungryBolo Limited)
ScanSoft OmniPage SE 4 (HKLM-x32\...\{DEE88727-779B-47A9-ACEF-F87CA5F92A65}) (Version: 15.2.0020 - Nuance Communications, Inc.)
Scrabble Plus (x32 Version: 2.2.0.82 - WildTangent) Hidden
Shredder (Version: 2.0.5.0 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.5.0 - Egis Technology Inc.) Hidden
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.1 - IObit)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.2.0 - Synaptics Incorporated)
System Requirements Lab CYRI (HKLM-x32\...\{E362724E-9320-4946-AF34-874E7B6B2927}) (Version: 6.0.7.0 - Husdawg, LLC)
The Price is Right (x32 Version: 2.2.0.82 - WildTangent) Hidden
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtual Families (x32 Version: 2.2.0.82 - WildTangent) Hidden
Virtual Villagers - A New Home (x32 Version: 2.2.0.82 - WildTangent) Hidden
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3013 - Acer Incorporated)
Windows Live Communications Platform (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 14.0.8091.0730 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 14.0.8081.709 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Yahtzee (x32 Version: 2.2.0.82 - WildTangent) Hidden
Zuma Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
 
========================= Memory info: ===================================
 
Percentage of memory in use: 67%
Total physical RAM: 4025.97 MB
Available physical RAM: 1312.02 MB
Total Pagefile: 8050.13 MB
Available Pagefile: 4808.76 MB
Total Virtual: 4095.88 MB
Available Virtual: 3983.44 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Acer) (Fixed) (Total:285.99 GB) (Free:131.35 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\VICTORIA-PC
 
Administrator            Guest                    Victoria                 
 
 
**** End of log ****


#15 buddy215

buddy215

  • Moderator
  • 13,312 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:02:31 PM

Posted 05 July 2014 - 06:33 AM

Very risky to use µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.)

 

Uninstall:

Ask Toolbar (HKLM-x32\...\{4D59432D-5354-006A-76A7-A758B70C0A06}) (Version: 12.10.6.5290 - APN, LLC)

eBay Worldwide (HKLM-x32\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)

Java™ 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)

JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)

PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden

PrivitizeVPN (HKLM-x32\...\PrivitizeVPN) (Version: 1.0.0 - OOO Industry)

Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.1 - IObit)   (All IObit programs are adware intensive)

 

Uninstall if you don't use:

Fences (HKLM-x32\...\Fences) (Version:  - Stardock Corporation)
Fences (Version: 1.0 - Stardock Corporation) Hidden
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
NirSoft OpenedFilesView (HKLM-x32\...\NirSoft OpenedFilesView) (Version:  - )
OpenOffice.org 3.3 (HKLM-x32\...\{82AF3E91-57E1-4754-84D0-40A46E2479AB}) (Version: 3.3.9567 - OpenOffice.org)  (latest version is 4.1)
FreeOTFE (HKLM-x32\...\FreeOTFE) (Version:  - Sarah Dean)
iWisoft Free Video Downloader 2.1 (HKLM-x32\...\iWisoft Free Video Downloader_is1) (Version: 2.1 - www.iwisoft.com)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users