Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infection Blocked, Avast message, URL:Mal


  • This topic is locked This topic is locked
9 replies to this topic

#1 Bless3r

Bless3r

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 AM

Posted 13 September 2014 - 09:47 AM

Greetings!

 

My younger brother's PC is having some sort of malware (we think). He came across this forum, read similar posts and tried some things on hes own whitout much success.

 

He didnt have any antivirus program when all started, so I am afraid that things might be worst than usual. While browsing, new windows started popping up.

First thing he did was running Malwarebytes Anti-Malware, there were infected files which got cleaned up.

Second thing was installing Avast Free Antivirus and running a full system scan, which again found infected files and put them under quarantine (It didnt say "deleted" if he remembers correctly) I also cant find a log of the Avast scan, I will post the Web Shield Report. The Process is from C\Program Files\Firefox\Firefox.exe every time with different links (Object).

Then he read a post on these forums and ran several programs (hes not sure of the order, but it must be this):

1.MiniToolBox

2.TDSSKiller

3.ADW Cleaner

4.Junkware Removal Tool

5.ESET OnlineScan (it "deleted - quarantined" my CCleaner for some reason)

 

After all the scans, he still gets the pop ups constantly.

I know that its a huge post and that he shouldnt have done all these scans on hes own, but can something still be done?
 

Thanks in advance.

 

 

Malwarebytes Anti-Malware

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 12-Sep-14
Scan Time: 2:25:51 AM
Logfile: mlwrscan.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.09.11.08
Rootkit Database: v2014.09.10.02
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Iv40o

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 330094
Time Elapsed: 4 min, 47 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 1
PUP.Optional.Booster.A, C:\ProgramData\Trusted Publisher\SW-Booster\SW-BOOSTER.EXE, 1360, Delete-on-Reboot, [80e47874a5d6b680045af87e6c96ac54]

Modules: 0
(No malicious items detected)

Registry Keys: 97
PUP.Optional.Booster.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\S-792098896, Quarantined, [80e47874a5d6b680045af87e6c96ac54],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\FunDeAALS.FunDeAALS, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\FunDeAALS.FunDeAALS.2.2, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\FunDeAALS.FunDeAALS, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\FunDeAALS.FunDeAALS.2.2, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{859B57C9-58A9-9D10-79F3-685A3E6AD00B}\INPROCSERVER32, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\Adblocker.Adblocker, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\Adblocker.Adblocker.1.0, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Adblocker.Adblocker, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Adblocker.Adblocker.1.0, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{D908179E-A82A-3210-9D20-AFB5E3A37BAF}\INPROCSERVER32, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\dealster.dealster, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\dealster.dealster.1.7, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\dealster.dealster, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\dealster.dealster.1.7, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{5C679292-8F3D-D9FE-795D-EDE1D93F04D3}\INPROCSERVER32, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\pariecechop.pariecechop, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\pariecechop.pariecechop.3.9, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\pariecechop.pariecechop, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\pariecechop.pariecechop.3.9, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{C4F1270D-8C01-E472-292A-EFDB913C1565}, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{C4F1270D-8C01-E472-292A-EFDB913C1565}\INPROCSERVER32, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\CLSID\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\DiascountLeocator.DiascountLeocator, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\DiascountLeocator.DiascountLeocator.3.15, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\DiascountLeocator.DiascountLeocator, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\DiascountLeocator.DiascountLeocator.3.15, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{776F66FD-1856-1D75-5BBE-F5D50389D629}, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\CLSID\{776F66FD-1856-1D75-5BBE-F5D50389D629}\INPROCSERVER32, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\MySearch.MySearch, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\MySearch.MySearch.2.1, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MySearch.MySearch, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MySearch.MySearch.2.1, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{E044A776-E094-BCA3-BAEF-553D19663D22}, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{E044A776-E094-BCA3-BAEF-553D19663D22}\INPROCSERVER32, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Quarantined, [fe66717bee8de3530391b5cbe31f0bf5],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, Quarantined, [fe66717bee8de3530391b5cbe31f0bf5],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, Quarantined, [fe66717bee8de3530391b5cbe31f0bf5],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Quarantined, [fe66717bee8de3530391b5cbe31f0bf5],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4820778D-AB0D-6D18-C316-52A6A0E1D507}, Quarantined, [22429b51bbc0f3436cccfaa7857cbc44],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5E03DFA7-51FC-7C12-CEE5-4D75FBB01E8F}, Quarantined, [e87c2dbfc2b9c274a330f8bc58a9847c],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{194FED75-9C74-BDB7-53F8-8CFFEF1AFEC9}, Quarantined, [a8bcdc105e1d999de6ed773d7d846b95],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{478472F9-9E09-492A-BDAB-42EE595EF1AD}, Quarantined, [4d1724c880fb3df9aa29f1c32bd6a25e],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}, Quarantined, [42227478ed8e989ea890f1b0966b09f7],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{FDB962F0-B5B8-9460-D12F-7966E97BAA43}, Quarantined, [91d38f5d4d2ee15587b1bee312ef10f0],
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}w64, Quarantined, [fb6912da0c6f44f2a53cdb89d92b966a],
PUP.Optional.SWBooster.A, HKLM\SOFTWARE\WOW6432NODE\SW-Booster, Quarantined, [b3b136b6e497b185bbe3719c659ea15f],
PUP.Optional.FastSearchings, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}, Quarantined, [69fb559780fba98dc015d591fc08718f],
PUP.Optional.Booster.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5F189DF5-2D05-472B-9091-84D9848AE48B}{d0e87c27}, Quarantined, [83e17b71215a3ef84220f614db2858a8],
PUP.Optional.Booster.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38}, Quarantined, [6ef6df0d5e1d033361019773679c837d],
PUP.Optional.Booster, HKLM\SOFTWARE\WOW6432NODE\{5F189DF5-2D05-472B-9091-84D9848AE48B}\_D0E87C27, Quarantined, [a8bcc52724577db97c5ed88e3ec6ea16],
PUP.Optional.Booster, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\D0E87C27, Quarantined, [92d2ad3fdd9ed36335a4ee78c242956b],
PUP.Optional.WebSearchInfo, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}, Quarantined, [f2725894e7943bfb65d5d08350b4c739],

Registry Values: 3
PUP.Optional.WebSearchInfo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {BB74DE59-BC4C-4172-9AC4-73315F71CFFE}, Quarantined, [fd6765878ceffc3a9f7a6405d72da759]
PUP.Optional.Booster, HKLM\SOFTWARE\WOW6432NODE\{5F189DF5-2D05-472B-9091-84D9848AE48B}\_D0E87C27|svn, SW-Sustainer, Quarantined, [a8bcc52724577db97c5ed88e3ec6ea16]
PUP.Optional.Booster, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\D0E87C27|DisplayName, SW-Sustainer, Quarantined, [92d2ad3fdd9ed36335a4ee78c242956b]

Registry Data: 8
Trojan.SProtector, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, c:\progra~2\sw-booster\assistant.dll c:\progra~3\winspeed\winspeed.dll, Good: (), Bad: (c:\progra~2\sw-booster\assistant.dll),Replaced,[ec785795116a86b0964b3f2aa859956b]
Trojan.SProtector, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, c:\progra~2\sw-booster\assistant.dll c:\progra~3\winspeed\winspeed.dll, Good: (), Bad: (c:\progra~3\winspeed\winspeed.dll),Replaced,[560e56960f6c65d1e34bc6f10cf529d7]
Trojan.SProtector, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs,  C:\PROGRA~2\SW-Booster\Assistant_x64.dll C:\PROGRA~3\WinSpeed\WinSpeed_x64.dll, Good: (), Bad: (C:\PROGRA~2\SW-Booster\Assistant_x64.dll),Replaced,[9ec6c824dba0033387cfe5c413eea15f]
PUP.Optional.WinSpeed.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, c:\progra~2\sw-booster\assistant.dll c:\progra~3\winspeed\winspeed.dll, Good: (), Bad: (c:\progra~3\winspeed\winspeed.dll),Replaced,[7fe5c7250378b97d0bb95d9f1be78779]
PUP.Optional.Booster.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, c:\progra~2\sw-booster\assistant.dll c:\progra~3\winspeed\winspeed.dll, Good: (), Bad: (c:\progra~2\sw-booster\assistant.dll),Replaced,[6afa9b51f3889c9a9d98876062a0a858]
PUP.Optional.Booster.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs,  C:\PROGRA~2\SW-Booster\Assistant_x64.dll C:\PROGRA~3\WinSpeed\WinSpeed_x64.dll, Good: (), Bad: (C:\PROGRA~2\SW-Booster\Assistant_x64.dll),Replaced,[6afa9b51f3889c9a9d98876062a0a858]
PUP.Optional.WebSearchInfo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://websearch.wonderfulsearches.info/?pid=2134&r=2014/08/14&hid=3911718251789122715&lg=EN&cc=MT&unqvl=60, Good: (www.google.com), Bad: (http://websearch.wonderfulsearches.info/?pid=2134&r=2014/08/14&hid=3911718251789122715&lg=EN&cc=MT&unqvl=60),Replaced,[481c9a520b7055e1365ec927df25ac54]
PUP.Optional.WebSearchInfo, HKU\S-1-5-21-826628913-2062104102-2873807026-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://websearch.wonderfulsearches.info/?pid=2134&r=2014/08/14&hid=3911718251789122715&lg=EN&cc=MT&unqvl=60, Good: (www.google.com), Bad: (http://websearch.wonderfulsearches.info/?pid=2134&r=2014/08/14&hid=3911718251789122715&lg=EN&cc=MT&unqvl=60),Replaced,[ea7a6c802e4dab8b246fee0225df46ba]

Folders: 9
PUP.Optional.MySearch.A, C:\Program Files (x86)\MySearch, Quarantined, [04608765007b231366be77ef18ec25db],
Rogue.Multiple, C:\ProgramData\374311380, Quarantined, [22429d4f0d6e2115c422b60848ba8878],
PUP.Optional.Booster.A, C:\ProgramData\TRUSTED PUBLISHER\SW-BOOSTER, Delete-on-Reboot, [343017d5a3d8290d056eda0c52b02bd5],
PUP.Optional.Booster.A, C:\ProgramData\TRUSTED PUBLISHER\SW-BOOSTER\792098896, Quarantined, [343017d5a3d8290d056eda0c52b02bd5],
PUP.Optional.Booster.A, C:\Program Files (x86)\SW-BOOSTER, Delete-on-Reboot, [6afa9b51f3889c9a9d98876062a0a858],
PUP.Optional.MultiPlug.A, C:\ProgramData\PRICECHOP, Quarantined, [5b09727af4870e28f7b0f4f4f30f5da3],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\PRICECHOP, Quarantined, [82e2549898e32511594f0adeb34f8878],
PUP.Optional.MultiPlug, C:\ProgramData\ADBLOCKER, Quarantined, [d78dc22ad0ab7cbacf71fff6d52d55ab],
PUP.Optional.MySearch, C:\ProgramData\MySearch, Quarantined, [a4c0dd0fb3c825118cb6ec09e81a8f71],

Files: 41
PUP.Optional.Booster.A, C:\ProgramData\Trusted Publisher\SW-Booster\SW-BOOSTER.EXE, Delete-on-Reboot, [80e47874a5d6b680045af87e6c96ac54],
Trojan.SProtector, C:\Program Files (x86)\SW-Booster\ASSISTANT.DLL, Delete-on-Reboot, [ec785795116a86b0964b3f2aa859956b],
Trojan.SProtector, C:\ProgramData\WinSpeed\WinSpeed.dll, Delete-on-Reboot, [560e56960f6c65d1e34bc6f10cf529d7],
Trojan.SProtector, C:\Program Files (x86)\SW-Booster\ASSISTANTSVC.DLL, Delete-on-Reboot, [4321b933037882b4f4eea6c381801ae6],
Trojan.SProtector, C:\Program Files (x86)\SW-Booster\ASSISTANT_X64.DLL, Delete-on-Reboot, [9ec6c824dba0033387cfe5c413eea15f],
PUP.Optional.Preload, C:\ProgramData\FunDeAls\ZWOID.X64.DLL, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, C:\ProgramData\FunDeAls\ZwoID.dll, Quarantined, [66fee5070d6ee551a445346ec33e0ff1],
PUP.Optional.Preload, C:\Program Files (x86)\Adblocker\PUVHGSOHW.X64.DLL, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, C:\Program Files (x86)\Adblocker\PUVHGSOHW.DLL, Quarantined, [73f17f6de49754e2df0a782a8e73926e],
PUP.Optional.Preload, C:\ProgramData\dealsTer\W.X64.DLL, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, C:\ProgramData\dealsTer\w.dll, Quarantined, [bca8b735e6955cda0bdeb3ef0cf5d22e],
PUP.Optional.Preload, C:\Program Files (x86)\pRicechop\OEJP3.X64.DLL, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.Preload, C:\Program Files (x86)\pRicechop\OejP3.dll, Quarantined, [5b0908e46813ae8836b3336fea17c43c],
PUP.Optional.MultiPlug, C:\ProgramData\DiscountLocator\WW.X64.DLL, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.MultiPlug, C:\ProgramData\DiscountLocator\wW.dll, Quarantined, [89dbf2fa0f6c96a0e2f0a0145ea37f81],
PUP.Optional.Preload, C:\Program Files (x86)\MySearch\I4.X64.DLL, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Preload, C:\Program Files (x86)\MySearch\i4.dll, Quarantined, [24409a5287f493a30cdd534fac55f010],
PUP.Optional.Multiplug, D:\Downdloads\WAT REMOVER TOOL FOR WINDOWS 7 DOWNLOAD WAT REMOVER.EXE, Quarantined, [fe66717bee8de3530391b5cbe31f0bf5],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker\XNeVK7iqXH.exe, Quarantined, [22429b51bbc0f3436cccfaa7857cbc44],
PUP.Optional.MultiPlug, C:\ProgramData\dealsTer\w.exe, Quarantined, [e87c2dbfc2b9c274a330f8bc58a9847c],
PUP.Optional.MultiPlug, C:\ProgramData\DiscountLocator\wW.exe, Quarantined, [a8bcdc105e1d999de6ed773d7d846b95],
PUP.Optional.MultiPlug, C:\ProgramData\FunDeAls\ZwoID.exe, Quarantined, [4d1724c880fb3df9aa29f1c32bd6a25e],
PUP.Optional.MultiPlug, C:\ProgramData\MySearch\U9e.exe, Quarantined, [42227478ed8e989ea890f1b0966b09f7],
PUP.Optional.MultiPlug, C:\ProgramData\pRicechop\kNV72B.exe, Quarantined, [91d38f5d4d2ee15587b1bee312ef10f0],
PUP.Optional.WinSpeed.A, C:\ProgramData\WinSpeed\WinSpeed.dll, Delete-on-Reboot, [7fe5c7250378b97d0bb95d9f1be78779],
PUP.Optional.WinSpeed.A, C:\ProgramData\WinSpeed\WINSPEEDSVC.DLL, Delete-on-Reboot, [7be92ebe6e0dbb7b09bc6c90f11104fc],
PUP.Optional.Booster.A, C:\Windows\Tasks\SW-BOOSTER-S-792098896.JOB, Quarantined, [88dcc626f685181e4b7948bfe51e728e],
PUP.Optional.Booster.A, C:\Windows\System32\Tasks\SW-BOOSTER-S-792098896, Quarantined, [94d04aa20774e551be0715f2748fd030],
PUP.Optional.WebSearch.A, C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\searchplugins\WEBSEARCH.XML, Quarantined, [c1a3f7f577044bebd80b988c10f3e41c],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{0C0BB4A8-45A4-4685-9C1D-08D98AF4B926}W64.SYS, Quarantined, [fb6912da0c6f44f2a53cdb89d92b966a],
PUP.Optional.MySearch.A, C:\Program Files (x86)\MySearch\i4.tlb, Quarantined, [04608765007b231366be77ef18ec25db],
PUP.Optional.MySearch.A, C:\Program Files (x86)\MySearch\i4.dat, Quarantined, [04608765007b231366be77ef18ec25db],
PUP.Optional.Booster.A, C:\ProgramData\Trusted Publisher\SW-Booster\792098896.ini, Quarantined, [343017d5a3d8290d056eda0c52b02bd5],
PUP.Optional.Booster.A, C:\Program Files (x86)\SW-Booster\Assistant.dll, Delete-on-Reboot, [6afa9b51f3889c9a9d98876062a0a858],
PUP.Optional.Booster.A, C:\Program Files (x86)\SW-Booster\assistantSvc.dll, Delete-on-Reboot, [6afa9b51f3889c9a9d98876062a0a858],
PUP.Optional.Booster.A, C:\Program Files (x86)\SW-Booster\Assistant_x64.dll, Delete-on-Reboot, [6afa9b51f3889c9a9d98876062a0a858],
PUP.Optional.MultiPlug.A, C:\ProgramData\pRicechop\kNV72B.dat, Quarantined, [5b09727af4870e28f7b0f4f4f30f5da3],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\pRicechop\OejP3.dat, Quarantined, [82e2549898e32511594f0adeb34f8878],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\pRicechop\OejP3.tlb, Quarantined, [82e2549898e32511594f0adeb34f8878],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker\XNeVK7iqXH.dat, Quarantined, [d78dc22ad0ab7cbacf71fff6d52d55ab],
PUP.Optional.MySearch, C:\ProgramData\MySearch\U9e.dat, Quarantined, [a4c0dd0fb3c825118cb6ec09e81a8f71],

Physical Sectors: 0
(No malicious items detected)


(end)

 

AVAST FREE ANTIVIRUS

 

* avast! Real-time Shield Scan Report
* This file is generated automatically
*
* Started on: Friday, September 12, 2014 2:42:34 AM
*


*
* Shield stopped: Friday, September 12, 2014 2:44:36 AM
* Run-time was 2 minute(s), 2 second(s)
*

*
* avast! Real-time Shield Scan Report
* This file is generated automatically
*
* Started on: Friday, September 12, 2014 2:46:47 AM
*

9/13/2014 1:46:49 AM    http://skyfunnjobbest.info/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:46:49 AM    http://skyfunnjobbest.info/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:46:49 AM    http://bloggergroupweb.info/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:46:49 AM    http://downloadfirst.us/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:46:49 AM    http://progget.com/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:46:49 AM    http://getitjpi.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:47:49 AM    http://good-tech.net/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:47:49 AM    http://getjpi1.info/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:47:49 AM    http://getsrv1.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:47:49 AM    http://installsunny.us/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:47:49 AM    http://allshareforallguide.net/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:47:49 AM    http://jpisyncer.info/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:50:28 AM    http://good-tech.net/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:50:28 AM    http://toolkitcomp.in/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:50:28 AM    http://getitjpi.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:50:28 AM    http://jobfirstnet.in/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:50:28 AM    http://toolkitcard.in/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:50:28 AM    http://jobfirstnet.info/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:51:28 AM    http://liveprosoftwaregreat.in/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:51:28 AM    http://jobfirstnet.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:51:28 AM    http://transferbox.info/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:51:28 AM    http://54.187.197.127/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:51:28 AM    http://homewebbnew.us/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:52:35 AM    http://getitjpi.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:52:35 AM    http://bloggerpixieusa.info/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:52:35 AM    http://allshareforallguide.net/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:52:35 AM    http://54.187.197.127/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:52:35 AM    http://jobfirstnet.info/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:52:36 AM    http://downloadusaweb.info/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:53:35 AM    http://downloadfirst.us/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:53:35 AM    http://skyfunnjobbest.info/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:53:35 AM    http://getjpi77.info/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:53:35 AM    http://gethexnow.com/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:53:35 AM    http://skyfunnjobbest.info/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:53:35 AM    http://getjpi1.info/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:12 AM    http://installsunny.us/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:12 AM    http://jpiproxy.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:54:12 AM    http://fastgroupchinayour.net/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:12 AM    http://toolkitjob.info/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:12 AM    http://91.109.18.39/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:12 AM    http://54.187.197.127/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:54 AM    http://good-tech.net/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:54 AM    http://webdireect.in/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:54 AM    http://jobfirstnet.in/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:54 AM    http://54.187.197.127/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:54 AM    http://54.187.205.151/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:54:54 AM    http://musicforallpro.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:55:37 AM    http://homewebbnew.us/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:55:37 AM    http://getsrv1.info/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:55:37 AM    http://gurudirsunnycoupon.in/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:55:37 AM    http://95.211.187.165/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:55:37 AM    http://downloadfirst.us/sync2/?q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:55:37 AM    http://toolkitcard.in/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:56:37 AM    http://getjpi77.info/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:56:37 AM    http://webdriiver.in/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:56:37 AM    http://jobfirstnet.info/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:56:37 AM    http://simpleguardcompletesun.in/sync2/?q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:56:37 AM    http://toolkitcomp.in/sync2/?q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:57:37 AM    http://homewebbnew.us/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:57:37 AM    http://bloggerpixieusa.info/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:58:37 AM    http://bloggertimein.info/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:58:37 AM    http://toolkitjob.info/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:58:37 AM    http://54.187.197.127/sync2/?rmbs=1&q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:58:37 AM    http://musicforallpro.info/sync2/?rmbs=1&q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 1:58:37 AM    http://skyfunnjobbest.info/sync2/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:59:37 AM    http://54.187.197.127/sync2/?rmbs=1&q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:59:37 AM    http://getjpi.info/sync2/?rmbs=1&q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:59:37 AM    http://progget.com/sync2/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 1:59:37 AM    http://gethexnow.com/sync2/?rmbs=1&q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 2:00:37 AM    http://toolkitcomp.in/sync2/?rmbs=1&q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:00:37 AM    http://good-tech.net/sync2/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:00:37 AM    http://toolkitfun.in/sync2/?rmbs=1&q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:00:37 AM    http://getitjpi.info/sync2/?rmbs=1&q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 2:01:37 AM    http://91.109.18.39/sync2/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:02:37 AM    http://transferbox.info/sync2/?rmbs=1&q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:02:37 AM    http://bloggergroupweb.info/sync2/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:02:37 AM    http://jpiproxy.info/sync2/?rmbs=1&q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 2:02:37 AM    http://jpiservice.info/sync2/?rmbs=1&q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:03:37 AM    http://allshareforallguide.net/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:03:37 AM    http://54.187.205.151/sync2/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:03:37 AM    http://getjpinet.info/sync2/?rmbs=1&q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 2:04:37 AM    http://jpisyncer.info/sync2/?rmbs=1&q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:04:37 AM    http://getjpi1.info/sync2/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMBzqUojw9rdUFrTaErTwGrSh7hfs0pihPBMn0rTYEpjYEpjsFpchHC7n0rTC7rdaFpjsEqTaEpjCEpdnFqch5BMxJhj8UhexZjzq9hfsMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:04:37 AM    http://fastgroupchinayour.net/sync2/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:05:37 AM    http://webdireect.in/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0nemSBy0TA7lGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShLC7VUojgErihPBNq9ojw4tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:05:37 AM    http://getjpit.info/sync2/?rmbs=1&q=hfZ9ofbTAy1MCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYFqdsFrHUEpihIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNZKge8VofbGAeqVg7ZLCchOAen0rHUFrjCFpds8rjC5pjwGrTCFqihVWyVUojw9rdYEqjsHrdUEpjsHqjYGqHsMB6qPhd97rdwMAe4HDd99tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:06:37 AM    http://getproxy5.info/sync2/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7qjUFrHC8qTwGqHwHpjrMC6qUojg4rjk6pjC9qjU7rja5qHa9pjCMWy4ZBek0jfVjhexGg7YMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMhfZPhd9Fqda5rdkGrHa4rdUGrHk5rTCGtM0HAen0qTaFtMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:06:38 AM    http://jobfirstnet.info/sync2/?rmbs=1&q=hfZ9oemPC7FPtNbPhd96qHCMg708BNmGWj8qlchGheDUojw9rdUEqTw8qdnFrGhIC7n0rjnEpjwGrdaGrjsGtNhVCT94tMVKhd98rdw5rTkHrjY4tNqHhd9GqHgErdw4rTa7rda4qHa5qdw9tNZKge8VokmPC6qTB6lKDwFLg7x9B6tGtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tM0HAen0qTaFtMVKC6n0qShSCH9F [L] URL:Mal (0)
9/13/2014 2:06:38 AM    http://skyfunnjobbest.info/sync2/?rmbs=1&q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
9/13/2014 2:07:38 AM    http://54.187.197.127/sync2/?rmbs=1&q=hfZ9oeP8WeOMCyVUojsFrHnMg708BNmGWj8qlchGheDUojw9rdYGrjaHqjw9rShIC7n0rjnEpjwGrdaGrjn9tNhVCT94tMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd9FrjU4qHCEpjk4pjkFrHr7qjgHrSh5BMxJhj8yDe4wmexIC6rMAyVUojr4rjw6rjYGqjw6pdUFrTs6rjkMB6qPhd97rdwMAe4HDd97tMtHojw%3D [L] URL:Mal (0)
*
* avast! Real-time Shield Scan Report
* This file is generated automatically
*
* Started on: Saturday, September 13, 2014 2:11:49 AM
*

9/13/2014 2:13:06 AM    http://groupsupermy.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:13:06 AM    http://spysimplejob.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:13:58 AM    http://yourappzzz.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:13:58 AM    http://takethefile.co.il/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:14:07 AM    http://softwareweball.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:14:07 AM    http://appzzzarehere.com/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:15:07 AM    http://prosetgroup.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:15:07 AM    http://yourguidefilediscounto.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:16:07 AM    http://filestable.co.il/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:16:07 AM    http://unitterminalsdirectuk.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:18:40 AM    http://getyourexnoww.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:18:40 AM    http://spysimplejob.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:19:40 AM    http://finecoupon.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:19:40 AM    http://yourappzzz.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:20:40 AM    http://takethefile.co.il/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:20:40 AM    http://prosetgroup.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:22:40 AM    http://appzzzarehere.com/sync/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)

*
* Shield stopped: Saturday, September 13, 2014 2:24:28 AM
* Run-time was 12 minute(s), 12 second(s)
*

*
* avast! Real-time Shield Scan Report
* This file is generated automatically
*
* Started on: Saturday, September 13, 2014 2:25:14 AM
*

9/13/2014 2:25:24 AM    http://syncjpionline.co.il/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:25:24 AM    http://finecoupon.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:26:21 AM    http://thisisyourappzz.com/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:27:21 AM    http://yourappzzz.info/sync/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:29:40 AM    http://yourappzzz.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:29:40 AM    http://appzzzarehere.com/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:30:40 AM    http://youraddons.co.il/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:30:40 AM    http://groupsupermy.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:32:05 AM    http://appzzzarehere.com/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:32:05 AM    http://unitterminalsdirectuk.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:33:05 AM    http://takethefile.co.il/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:34:05 AM    http://youraddons.co.il/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:34:05 AM    http://softwareweball.info/sync/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:35:05 AM    http://thisisyourappzz.com/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:36:05 AM    http://yourmastermagicspyl.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:37:05 AM    http://syncjpionline.co.il/sync/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:38:05 AM    http://usamagicbestt.info/sync/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:39:05 AM    http://finecoupon.info/sync/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:40:05 AM    http://filehelperex.info/sync/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:42:05 AM    http://spysimplejob.info/sync/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:45:05 AM    http://filestable.co.il/sync/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:47:05 AM    http://yourguidefilediscounto.info/sync/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 2:48:05 AM    http://yourappzzz.info/sync/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 2:49:05 AM    http://getyourexnoww.info/sync/?rmbs=1&q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:35:19 AM    http://filestable.co.il/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 8:35:19 AM    http://getyourexnoww.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:36:19 AM    http://filehelperex.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:36:19 AM    http://yourmastermagicspyl.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 8:37:19 AM    http://spysimplejob.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 8:37:19 AM    http://softwareweball.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:42:42 AM    http://prosetgroup.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:42:42 AM    http://finecoupon.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 8:43:42 AM    http://filehelperex.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:43:42 AM    http://yourmastermagicspyl.info/sync/?q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
9/13/2014 8:44:42 AM    http://getyourexnoww.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:45:42 AM    http://softwareweball.info/sync/?q=hfZ9oemHBchEAen0qHC6tMqLDe49CNU0jlnMCMlNhd9Fqda5rTrFqTaHrTUMAe4Uojs5rdU5rdUGrjYMC6qUojs6qTaErjUGrdgErdU6rdY9rjnMDMlGojUMAe4HDd97tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMxMhT9HqdkHqGhSCH9FtNZKge8VoemVgexrC6mVCY%3D%3D [L] URL:Mal (0)
9/13/2014 8:45:42 AM    http://thisisyourappzz.com/sync/?rmbs=1&q=hfZ9ofDSBShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTw9rdwFtMVKhd99qHsEqTk4rjr6qjgFrTCFrHUHtNqHhd97pjw8qHU6qdk4qTwEpdCEqdU6tNhVCT94tM0HAen0qTaFtMZPhd9HpjwFqHw5rTkFqHY4rjsGqHw8tMl5Aen0rjnEpda8rTrEpja4rTr8pds6rShSCH9FtNZKge8Vok84k7lZCMqO [L] URL:Mal (0)
 

MiniToolBox

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Iv40o (administrator) on 13-09-2014 at 02:17:52
Running from "D:\Downdloads"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® 82579V Gigabit Network Connection = Local Area Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Blesser
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 00-26-83-12-F1-31
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
   Physical Address. . . . . . . . . : F4-6D-04-25-82-A6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::882b:5acc:392f:a69c%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.14(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, September 13, 2014 2:11:47 AM
   Lease Expires . . . . . . . . . . : Saturday, September 13, 2014 3:11:46 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 250899716
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-68-07-D7-F4-6D-04-25-82-A6
   DNS Servers . . . . . . . . . . . : 212.56.128.136
                                       212.56.128.132
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  ns2.melitacable.com
Address:  212.56.128.136

Name:    google.com
Addresses:  2a00:1450:4002:805::1009
      212.56.131.234
      212.56.131.240
      212.56.131.241
      212.56.131.238
      212.56.131.251
      212.56.131.230
      212.56.131.229
      212.56.131.249
      212.56.131.227
      212.56.131.212
      212.56.131.208
      212.56.131.223
      212.56.131.216
      212.56.131.245
      212.56.131.218
      212.56.131.219


Pinging google.com [212.56.131.218] with 32 bytes of data:
Reply from 212.56.131.218: bytes=32 time=6ms TTL=61
Reply from 212.56.131.218: bytes=32 time=6ms TTL=61

Ping statistics for 212.56.131.218:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 6ms, Maximum = 6ms, Average = 6ms
Server:  ns2.melitacable.com
Address:  212.56.128.136

Name:    yahoo.com
Addresses:  206.190.36.45
      98.139.183.24
      98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=142ms TTL=45
Reply from 98.139.183.24: bytes=32 time=139ms TTL=45

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 139ms, Maximum = 142ms, Average = 140ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 13...00 26 83 12 f1 31 ......Bluetooth Device (Personal Area Network)
 11...f4 6d 04 25 82 a6 ......Intel® 82579V Gigabit Network Connection
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.14     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.14    266
     192.168.0.14  255.255.255.255         On-link      192.168.0.14    266
    192.168.0.255  255.255.255.255         On-link      192.168.0.14    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.14    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.14    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 11    266 fe80::/64                On-link
 11    266 fe80::882b:5acc:392f:a69c/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/13/2014 02:11:50 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/13/2014 02:11:43 AM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (09/13/2014 01:14:15 AM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (09/13/2014 00:14:15 AM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (09/12/2014 11:14:15 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (09/12/2014 10:14:15 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (09/12/2014 09:14:15 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (09/12/2014 08:14:15 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (09/12/2014 07:14:15 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (09/12/2014 06:14:15 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005


System errors:
=============
Error: (09/12/2014 06:14:14 PM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (09/12/2014 05:28:47 PM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (09/12/2014 02:46:44 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the WinSpeed service to connect.

Error: (09/12/2014 02:38:22 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the WinSpeed service to connect.

Error: (09/11/2014 07:40:26 PM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (09/11/2014 01:31:45 AM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (09/09/2014 10:36:24 PM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (09/09/2014 02:48:03 AM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (09/08/2014 07:23:24 AM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (09/08/2014 01:55:56 AM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}


Microsoft Office Sessions:
=========================
Error: (09/13/2014 02:11:50 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/13/2014 02:11:43 AM) (Source: Winlogon)(User: )
Description: 0x800700050x00000000

Error: (09/13/2014 01:14:15 AM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005

Error: (09/13/2014 00:14:15 AM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005

Error: (09/12/2014 11:14:15 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005

Error: (09/12/2014 10:14:15 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005

Error: (09/12/2014 09:14:15 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005

Error: (09/12/2014 08:14:15 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005

Error: (09/12/2014 07:14:15 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005

Error: (09/12/2014 06:14:15 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005



=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32691 - BitTorrent Inc.)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 15.0.0.249 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.01.14 - ASUSTeK)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.65 - Atheros Communications)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C936F06-0AE3-432D-9517-C01CAB43F2B3}) (Version:  - Microsoft)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Drive (HKLM-x32\...\{75939021-3B68-419D-8DC1-E9823BFF9658}) (Version: 1.16.7009.9618 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel® Network Connections 18.8.136.0 (HKLM\...\PROSetDX) (Version: 18.8.136.0 - Intel)
Intel® Network Connections 18.8.136.0 (Version: 18.8.136.0 - Intel) Hidden
Intel® Processor Identification Utility (HKLM-x32\...\{A92A4DB0-CD37-42D1-BE1D-603D53C24328}) (Version: 1.0.0.0 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.58.2 - JMicron Technology Corp.)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Access MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Mozilla Firefox 32.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.1 (x86 en-US)) (Version: 32.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.8 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Control Panel 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAPID Mode (Version: 1.0.1.68 - Samsung Electronics Co., Ltd.) Hidden
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.4.0 - Samsung Electronics)
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
Skype™ 6.18 (HKLM-x32\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 6.18.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15.1 - TeamSpeak Systems GmbH)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DC80E018-C612-4FA4-A7E4-11B4C6F5FE22}) (Version:  - Microsoft)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition (HKLM\...\{90150000-0015-0409-1000-0000000FF1CE}_Office15.PROPLUS_{D5412C67-998B-4246-A668-AB522D9F63FE}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2013 (KB2752078) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D423F677-7EC9-45EC-A746-10398109B562}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2817621) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{2F2717FB-5567-491F-B493-B6556DB4FFCB}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2817621) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{2F2717FB-5567-491F-B493-B6556DB4FFCB}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2817621) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{CA571833-CF9C-4B1E-B6E2-07211664180E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{43EB1F58-DAA0-4F61-A4EE-C5651F85A047}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{43EB1F58-DAA0-4F61-A4EE-C5651F85A047}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{76CACE05-7A19-4EAC-87D7-5BFF63AF7CDF}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{76CACE05-7A19-4EAC-87D7-5BFF63AF7CDF}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2737954) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{C74BC9C1-46D0-4406-A003-119C5F2BC240}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{FEFF9FF6-FF61-455E-A8CC-3A1311A657AD}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{3FF4EA9F-3505-4726-A974-6593A968FFCC}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9406D70B-2D9C-4613-A75A-F35B66BA8AFA}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760257) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8BE4747D-008B-4D77-BC7B-D82307A4E12D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CA390537-AA88-450F-A240-5FB4648A124A}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C8D57F4A-0824-4043-89E7-3C6280B67A47}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AC4470FB-8011-4F16-B5D4-E0A34DE10C87}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D8B3D175-48B8-413F-8484-4D81E744B51C}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8587E5B1-6279-4396-B9AC-20B334F4FF88}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{39E58ED8-B687-49BD-88F9-968563F51F8E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817309) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{4C916298-659D-4566-BCCC-A229031D1430}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817311) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{42811B49-8137-4B2E-ADB4-A6D865E8B3F9}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817311) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUS_{AFFDED46-E98E-4E83-8C5B-72F8C55E514C}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817311) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{3D4FD1D7-D550-498D-A741-8BEBAB5BA305}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C809B1D6-BD31-4496-BCFE-4567E0854F5F}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{4FD8F672-3206-469C-B9F0-D6E72F7ACAB2}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUS_{856D47BC-036C-4692-8702-D6CCA8F428D0}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CA0554C4-62FE-4F66-BC87-1EE1EAC675EF}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CA0554C4-62FE-4F66-BC87-1EE1EAC675EF}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817493) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9DC0AE49-CE9F-4472-AB12-C3A6A666F2D1}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817493) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9DC0AE49-CE9F-4472-AB12-C3A6A666F2D1}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817624) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{2F791A9F-ADB1-45BA-99D0-786B0952CC38}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817624) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{2F791A9F-ADB1-45BA-99D0-786B0952CC38}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F33ABF6A-3007-47E8-8E38-506A18E54641}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817640) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0BC0B6A7-8881-42E7-8B3C-334C9742B991}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817640) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{BCEE70B1-8D4B-4087-BE91-9BE2A747876C}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817640) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0BC0B6A7-8881-42E7-8B3C-334C9742B991}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{2A286156-257B-4528-9DB5-B4D4D53211BC}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827228) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0EDCBC49-F1C8-4E49-BDCA-5A3C365E8052}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F2187E8D-C68A-4655-8551-1932878A5581}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827235) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C8A362E9-9E2B-4996-A971-0473937D124E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827235) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C8A362E9-9E2B-4996-A971-0473937D124E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2810016) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8D26EB4C-B227-48FD-BCF3-240DA47F50EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2810016) 64-Bit Edition (HKLM\...\{90150000-00A1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{45D29160-6676-47FD-B827-A72A88E25035}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2810016) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8D26EB4C-B227-48FD-BCF3-240DA47F50EB}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2825632) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{30E750A1-C143-4034-9D53-2964665D6D9D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2825632) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUS_{054B729F-6D27-42E9-A3DD-9C6E2C1B76F6}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUS_{E158EB9F-E6CC-49E2-A098-2C6DF0D6B42B}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2817625) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{825D4557-B242-4DF1-B532-FD39B20A2F40}) (Version:  - Microsoft)
Update for Microsoft Project 2013 (KB2767859) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{EC17FB25-F671-4D66-9BB7-F3E1B43A50BA}) (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2752097) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C9E10200-F625-4655-A4CF-6BD5068E6AA4}) (Version:  - Microsoft)
Update for Microsoft SkyDrive Pro (KB2825633) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{85256C1A-DC6D-4910-8610-B524A6D2B03E}) (Version:  - Microsoft)
Update for Microsoft SkyDrive Pro (KB2825633) 64-Bit Edition (HKLM\...\{90150000-00BA-0409-1000-0000000FF1CE}_Office15.PROPLUS_{F0207F2E-D9A5-4189-9792-7EBA285290B0}) (Version:  - Microsoft)
Update for Microsoft SkyDrive Pro (KB2825633) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{85256C1A-DC6D-4910-8610-B524A6D2B03E}) (Version:  - Microsoft)
Update for Microsoft SkyDrive Pro (KB2825633) 64-Bit Edition (HKLM\...\{90150000-00C1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{F0207F2E-D9A5-4189-9792-7EBA285290B0}) (Version:  - Microsoft)
Update for Microsoft Visio 2013 (KB2752018) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{619D1EFE-228F-4B12-86DC-4AA9FEDC19C0}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D1F1940B-94DF-4DCB-BF82-9530D7FBB1BF}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2817631) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{A56F7FEB-090D-4AA2-8CCE-90FBEFB00FEF}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2817631) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUS_{3E4FE476-C595-46BE-985F-37DCB01049AC}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2817631) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{3E4FE476-C595-46BE-985F-37DCB01049AC}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2817631) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{3E4FE476-C595-46BE-985F-37DCB01049AC}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2827218) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{51277A5C-0099-4971-B647-094470DF1D5B}) (Version:  - Microsoft)
Viber (HKCU\...\Viber) (Version: 3.0.0.134678 - Viber Media Inc)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

========================= Memory info: ===================================

Percentage of memory in use: 34%
Total physical RAM: 8159.13 MB
Available physical RAM: 5312.47 MB
Total Pagefile: 16316.45 MB
Available Pagefile: 13421.5 MB
Total Virtual: 4095.88 MB
Available Virtual: 3975.01 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:209.5 GB) (Free:131.56 GB) NTFS
2 Drive d: () (Fixed) (Total:596.17 GB) (Free:560.94 GB) NTFS

========================= Users: ========================================

User accounts for \\BLESSER

Administrator            Guest                    Iv40o                 


**** End of log ****
 


Edited by Bless3r, 13 September 2014 - 10:21 AM.


BC AdBot (Login to Remove)

 


#2 Bless3r

Bless3r
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 AM

Posted 13 September 2014 - 09:51 AM

TDSSKiller

02:20:10.0133 0x08ac  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
02:20:20.0163 0x08ac  ============================================================
02:20:20.0163 0x08ac  Current date / time: 2014/09/13 02:20:20.0163
02:20:20.0163 0x08ac  SystemInfo:
02:20:20.0163 0x08ac  
02:20:20.0163 0x08ac  OS Version: 6.1.7601 ServicePack: 1.0
02:20:20.0163 0x08ac  Product type: Workstation
02:20:20.0163 0x08ac  ComputerName: BLESSER
02:20:20.0163 0x08ac  UserName: Iv40o
02:20:20.0163 0x08ac  Windows directory: C:\Windows
02:20:20.0163 0x08ac  System windows directory: C:\Windows
02:20:20.0163 0x08ac  Running under WOW64
02:20:20.0163 0x08ac  Processor architecture: Intel x64
02:20:20.0163 0x08ac  Number of processors: 4
02:20:20.0163 0x08ac  Page size: 0x1000
02:20:20.0163 0x08ac  Boot type: Normal boot
02:20:20.0163 0x08ac  ============================================================
02:20:20.0464 0x08ac  KLMD registered as C:\Windows\system32\drivers\42417438.sys
02:20:20.0531 0x08ac  System UUID: {8D1A2062-9045-7FEF-DFD0-3902069890AC}
02:20:20.0773 0x08ac  Drive \Device\Harddisk1\DR1 - Size: 0x950AF4DE00 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
02:20:20.0774 0x08ac  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
02:20:20.0780 0x08ac  ============================================================
02:20:20.0780 0x08ac  \Device\Harddisk1\DR1:
02:20:20.0780 0x08ac  MBR partitions:
02:20:20.0780 0x08ac  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A856800
02:20:20.0780 0x08ac  \Device\Harddisk0\DR0:
02:20:20.0780 0x08ac  MBR partitions:
02:20:20.0780 0x08ac  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
02:20:20.0781 0x08ac  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1A2FE800
02:20:20.0781 0x08ac  ============================================================
02:20:20.0782 0x08ac  C: <-> \Device\Harddisk0\DR0\Partition2
02:20:20.0785 0x08ac  D: <-> \Device\Harddisk1\DR1\Partition1
02:20:20.0785 0x08ac  ============================================================
02:20:20.0785 0x08ac  Initialize success
02:20:20.0785 0x08ac  ============================================================
02:20:32.0529 0x17ac  ============================================================
02:20:32.0529 0x17ac  Scan started
02:20:32.0529 0x17ac  Mode: Manual;
02:20:32.0529 0x17ac  ============================================================
02:20:32.0529 0x17ac  KSN ping started
02:20:35.0274 0x17ac  KSN ping finished: true
02:20:35.0368 0x17ac  ================ Scan system memory ========================
02:20:35.0368 0x17ac  System memory - ok
02:20:35.0368 0x17ac  ================ Scan services =============================
02:20:35.0415 0x17ac  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
02:20:35.0415 0x17ac  1394ohci - ok
02:20:35.0446 0x17ac  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
02:20:35.0462 0x17ac  ACPI - ok
02:20:35.0462 0x17ac  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
02:20:35.0462 0x17ac  AcpiPmi - ok
02:20:35.0477 0x17ac  [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:20:35.0493 0x17ac  AdobeFlashPlayerUpdateSvc - ok
02:20:35.0508 0x17ac  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
02:20:35.0524 0x17ac  adp94xx - ok
02:20:35.0540 0x17ac  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
02:20:35.0555 0x17ac  adpahci - ok
02:20:35.0555 0x17ac  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
02:20:35.0571 0x17ac  adpu320 - ok
02:20:35.0571 0x17ac  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
02:20:35.0571 0x17ac  AeLookupSvc - ok
02:20:35.0602 0x17ac  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
02:20:35.0618 0x17ac  AFD - ok
02:20:35.0618 0x17ac  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
02:20:35.0618 0x17ac  agp440 - ok
02:20:35.0633 0x17ac  [ FF5221C2E5D5CC82F93EB7C99DC2852F, FFA8522782A633444087029F8E52D549575C96FAA06E4899555DE92ACB79B913 ] AiCharger       C:\Windows\syswow64\drivers\AiCharger.sys
02:20:35.0633 0x17ac  AiCharger - ok
02:20:35.0633 0x17ac  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
02:20:35.0633 0x17ac  ALG - ok
02:20:35.0649 0x17ac  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
02:20:35.0649 0x17ac  aliide - ok
02:20:35.0649 0x17ac  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
02:20:35.0649 0x17ac  amdide - ok
02:20:35.0649 0x17ac  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
02:20:35.0649 0x17ac  AmdK8 - ok
02:20:35.0664 0x17ac  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
02:20:35.0664 0x17ac  AmdPPM - ok
02:20:35.0696 0x17ac  [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
02:20:35.0727 0x17ac  amdsata - ok
02:20:35.0742 0x17ac  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
02:20:35.0742 0x17ac  amdsbs - ok
02:20:35.0758 0x17ac  [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
02:20:35.0758 0x17ac  amdxata - ok
02:20:35.0758 0x17ac  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
02:20:35.0758 0x17ac  AppID - ok
02:20:35.0758 0x17ac  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
02:20:35.0758 0x17ac  AppIDSvc - ok
02:20:35.0774 0x17ac  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
02:20:35.0774 0x17ac  Appinfo - ok
02:20:35.0789 0x17ac  [ 6B73E94F9FE82D45781B8C8A09483082, C35EEAE7457168387A7C77A315524A3703ABDE49D9F23F59057315D9249D3473 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:20:35.0789 0x17ac  Apple Mobile Device - ok
02:20:35.0789 0x17ac  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
02:20:35.0805 0x17ac  AppMgmt - ok
02:20:35.0805 0x17ac  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
02:20:35.0805 0x17ac  arc - ok
02:20:35.0820 0x17ac  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
02:20:35.0820 0x17ac  arcsas - ok
02:20:35.0867 0x17ac  [ FB03A917C1294D3E6D671F24722E1BA3, C4E2C236E5086F0A7D5E20E426EA7A86B4A38797610188C79151201AD27C0DF4 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
02:20:35.0898 0x17ac  asComSvc - ok
02:20:35.0945 0x17ac  [ A63173897EA1A73A75D0E65036DE5B15, 07A83172B525DFC895056612F542420F4DF3C6192624C5B3141C726501163912 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
02:20:35.0961 0x17ac  asHmComSvc - ok
02:20:35.0976 0x17ac  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
02:20:35.0976 0x17ac  AsIO - ok
02:20:35.0992 0x17ac  [ 108FB6DDB69E537A2EA53F425363FAE5, B12A9F5338D39805E08A44A335FF7AA77F2266F535A2F5C8412CC746C75E5B1D ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
02:20:35.0992 0x17ac  aspnet_state - ok
02:20:36.0023 0x17ac  [ 5C31DFB196CB3A488A041881634D86D2, 419ABEED7FB7CEBBA264802D2F727D18F999CEDA566A0830C38A69AC1680F3EA ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
02:20:36.0039 0x17ac  AsSysCtrlService - ok
02:20:36.0039 0x17ac  [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO          C:\Windows\syswow64\drivers\AsUpIO.sys
02:20:36.0039 0x17ac  AsUpIO - ok
02:20:36.0054 0x17ac  [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
02:20:36.0054 0x17ac  aswHwid - ok
02:20:36.0054 0x17ac  [ FF1E537A3632CBB9A0BF72B9FD0878D5, B26E6A1F6E6FA5280A12861EFAD44D8F49353F47B21843EBA73E149CF613DCBC ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
02:20:36.0054 0x17ac  aswMonFlt - ok
02:20:36.0054 0x17ac  [ A5757DE5F9C83AB40667A53D5126EA40, 58B72B1B126CF641188703CE82E26BEB0C41AD7587CFFCCCE9E3C64CC7AACC90 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
02:20:36.0054 0x17ac  aswRdr - ok
02:20:36.0054 0x17ac  [ 645D97385F3F284FB5604F9B970F4D24, 15A9D7F0F4C1062210E4E744A9069B8645177D19F35B8740D74022639DC05F2E ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
02:20:36.0070 0x17ac  aswRvrt - ok
02:20:36.0086 0x17ac  [ B8FDEDE963B82CFD23B3A53A3084666D, 3537E5B684FB6F0AA589A5FA7CD111E1744DF384AB1A266D4114100F104ED11B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
02:20:36.0101 0x17ac  aswSnx - ok
02:20:36.0101 0x17ac  [ 0DEDC041DF594AEC2C3BD00417CFAF60, 0D3A8924503986546EE256D185225C0B080FDB6B0C8B0BED7516B07A7334371B ] aswSP           C:\Windows\system32\drivers\aswSP.sys
02:20:36.0117 0x17ac  aswSP - ok
02:20:36.0117 0x17ac  [ 48DED912CDE54FC0923B9858512366E1, 9B216B934408A7CB3CE2B41240B7EF01EAA3BC066211B784064FF8AC97A29B4E ] aswStm          C:\Windows\system32\drivers\aswStm.sys
02:20:36.0117 0x17ac  aswStm - ok
02:20:36.0117 0x17ac  [ 471A311745848B80339436688A8286E6, E51C57236CEC19AC38E85D115DB97875517D837811188AD2E53FA49055B53890 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
02:20:36.0132 0x17ac  aswVmm - ok
02:20:36.0132 0x17ac  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
02:20:36.0132 0x17ac  AsyncMac - ok
02:20:36.0132 0x17ac  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
02:20:36.0132 0x17ac  atapi - ok
02:20:36.0132 0x17ac  [ CBE61B4494165F458BD87E37181EE934, E95654DCC0F977A3604B6BE435BEE109AC8F9F7494FD3A132F5FB477BBF7B105 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
02:20:36.0132 0x17ac  AthBTPort - ok
02:20:36.0148 0x17ac  [ 4119870B90E1B5E7797D6433D21F9216, 5CDA3748A6C89B1046173F20D857D164F4170A5028370B5BB9843212CEA86C8F ] ATHDFU          C:\Windows\system32\Drivers\AthDfu.sys
02:20:36.0148 0x17ac  ATHDFU - ok
02:20:36.0148 0x17ac  [ 21753130331188C4B474E1D3B396E629, F0FBE5F3281121DEF634F8273A2F43C5ADE538D9F280D6C9560D212B8B027A38 ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
02:20:36.0148 0x17ac  AtherosSvc - ok
02:20:36.0179 0x17ac  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:20:36.0210 0x17ac  AudioEndpointBuilder - ok
02:20:36.0242 0x17ac  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
02:20:36.0242 0x17ac  AudioSrv - ok
02:20:36.0257 0x17ac  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
02:20:36.0257 0x17ac  avast! Antivirus - ok
02:20:36.0257 0x17ac  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
02:20:36.0257 0x17ac  AxInstSV - ok
02:20:36.0288 0x17ac  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
02:20:36.0304 0x17ac  b06bdrv - ok
02:20:36.0335 0x17ac  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
02:20:36.0335 0x17ac  b57nd60a - ok
02:20:36.0351 0x17ac  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
02:20:36.0366 0x17ac  BDESVC - ok
02:20:36.0366 0x17ac  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
02:20:36.0366 0x17ac  Beep - ok
02:20:36.0398 0x17ac  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
02:20:36.0413 0x17ac  BFE - ok
02:20:36.0444 0x17ac  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
02:20:36.0491 0x17ac  BITS - ok
02:20:36.0491 0x17ac  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
02:20:36.0491 0x17ac  blbdrive - ok
02:20:36.0507 0x17ac  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:20:36.0522 0x17ac  Bonjour Service - ok
02:20:36.0538 0x17ac  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
02:20:36.0538 0x17ac  bowser - ok
02:20:36.0538 0x17ac  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
02:20:36.0538 0x17ac  BrFiltLo - ok
02:20:36.0538 0x17ac  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
02:20:36.0538 0x17ac  BrFiltUp - ok
02:20:36.0554 0x17ac  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
02:20:36.0554 0x17ac  Browser - ok
02:20:36.0585 0x17ac  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
02:20:36.0600 0x17ac  Brserid - ok
02:20:36.0600 0x17ac  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
02:20:36.0600 0x17ac  BrSerWdm - ok
02:20:36.0600 0x17ac  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
02:20:36.0616 0x17ac  BrUsbMdm - ok
02:20:36.0616 0x17ac  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
02:20:36.0616 0x17ac  BrUsbSer - ok
02:20:36.0632 0x17ac  [ FE70889A85C57A9268101B2DB0474509, 9E957390A52BE4E5642724FEC06A201682F93DD1C6F2C00A5F57351460CF5AE0 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
02:20:36.0632 0x17ac  BTATH_A2DP - ok
02:20:36.0632 0x17ac  [ A83A91D07D1FE6BBE7A9DB46CA00434B, 9EF851047189E13954C0F6A325E4843914C423C0D1EDAE21A34AB3A962BBD5AC ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
02:20:36.0632 0x17ac  BTATH_BUS - ok
02:20:36.0647 0x17ac  [ C864FF85EE16D61C2BDD5EF76824625F, 6D2FE57688D9E8B4277BF6DA9C219DEB367274364FBE17EFC353CEDB2D7EA35D ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
02:20:36.0647 0x17ac  BTATH_HCRP - ok
02:20:36.0647 0x17ac  [ 0DEA505EFB5D771826D177EF8B8A208F, FD8027DA791F04077490749AC5A08F73CCBA1731462579AA9008CD8DD82FBBBC ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
02:20:36.0663 0x17ac  BTATH_LWFLT - ok
02:20:36.0663 0x17ac  [ 724C8088C96EFE7A3E63FEC21D4681C0, 4F9B258BE0FEA634A0D93B3892F2F039A7CAD184C9A81DFC2B67B0D4B39C5035 ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
02:20:36.0663 0x17ac  BTATH_RCP - ok
02:20:36.0678 0x17ac  [ AA0F5AFCF077C5246589B32ECEEAE566, 158C44C53B054890574B32F7D10E507902CCFB006323A850A2E6F78B2565E518 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
02:20:36.0694 0x17ac  BtFilter - ok
02:20:36.0694 0x17ac  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
02:20:36.0694 0x17ac  BthEnum - ok
02:20:36.0694 0x17ac  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
02:20:36.0710 0x17ac  BTHMODEM - ok
02:20:36.0710 0x17ac  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
02:20:36.0710 0x17ac  BthPan - ok
02:20:36.0741 0x17ac  [ 64C198198501F7560EE41D8D1EFA7952, 53CE5FDD1866FC8A0B91C7A620F7555D197488C4C8F3DEFD4398D8E3ED2AEBD0 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
02:20:36.0756 0x17ac  BTHPORT - ok
02:20:36.0772 0x17ac  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
02:20:36.0772 0x17ac  bthserv - ok
02:20:36.0772 0x17ac  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
02:20:36.0788 0x17ac  BTHUSB - ok
02:20:36.0788 0x17ac  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
02:20:36.0788 0x17ac  cdfs - ok
02:20:36.0803 0x17ac  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
02:20:36.0803 0x17ac  cdrom - ok
02:20:36.0819 0x17ac  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
02:20:36.0819 0x17ac  CertPropSvc - ok
02:20:36.0819 0x17ac  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
02:20:36.0819 0x17ac  circlass - ok
02:20:36.0834 0x17ac  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
02:20:36.0850 0x17ac  CLFS - ok
02:20:36.0866 0x17ac  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:20:36.0866 0x17ac  clr_optimization_v2.0.50727_32 - ok
02:20:36.0881 0x17ac  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:20:36.0881 0x17ac  clr_optimization_v2.0.50727_64 - ok
02:20:36.0897 0x17ac  [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:20:36.0912 0x17ac  clr_optimization_v4.0.30319_32 - ok
02:20:36.0912 0x17ac  [ 86329C35FF23CFEF0FB6C0023BA06BCE, D915CE7AD564F97A1C3B047D5248B7EF67ADDC59687FBC90F1776C21DAA0D3FD ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:20:36.0912 0x17ac  clr_optimization_v4.0.30319_64 - ok
02:20:36.0928 0x17ac  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
02:20:36.0928 0x17ac  CmBatt - ok
02:20:36.0928 0x17ac  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
02:20:36.0928 0x17ac  cmdide - ok
02:20:36.0959 0x17ac  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
02:20:36.0975 0x17ac  CNG - ok
02:20:36.0975 0x17ac  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
02:20:36.0975 0x17ac  Compbatt - ok
02:20:36.0975 0x17ac  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
02:20:36.0990 0x17ac  CompositeBus - ok
02:20:36.0990 0x17ac  COMSysApp - ok
02:20:36.0990 0x17ac  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
02:20:36.0990 0x17ac  crcdisk - ok
02:20:37.0006 0x17ac  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
02:20:37.0006 0x17ac  CryptSvc - ok
02:20:37.0022 0x17ac  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
02:20:37.0037 0x17ac  CSC - ok
02:20:37.0068 0x17ac  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
02:20:37.0100 0x17ac  CscService - ok
02:20:37.0115 0x17ac  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
02:20:37.0131 0x17ac  DcomLaunch - ok
02:20:37.0162 0x17ac  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
02:20:37.0178 0x17ac  defragsvc - ok
02:20:37.0178 0x17ac  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
02:20:37.0193 0x17ac  DfsC - ok
02:20:37.0209 0x17ac  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
02:20:37.0209 0x17ac  Dhcp - ok
02:20:37.0209 0x17ac  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
02:20:37.0209 0x17ac  discache - ok
02:20:37.0224 0x17ac  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
02:20:37.0224 0x17ac  Disk - ok
02:20:37.0224 0x17ac  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
02:20:37.0240 0x17ac  dmvsc - ok
02:20:37.0240 0x17ac  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
02:20:37.0256 0x17ac  Dnscache - ok
02:20:37.0271 0x17ac  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
02:20:37.0271 0x17ac  dot3svc - ok
02:20:37.0287 0x17ac  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
02:20:37.0287 0x17ac  DPS - ok
02:20:37.0287 0x17ac  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
02:20:37.0287 0x17ac  drmkaud - ok
02:20:37.0318 0x17ac  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
02:20:37.0334 0x17ac  DXGKrnl - ok
02:20:37.0365 0x17ac  [ 3C1C5ABA3CF134C5378E7F1A0704C17C, F8D13025E360BD376A107C1386F6DD5F0C6012622D0A75111C2DF930748243A2 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
02:20:37.0365 0x17ac  e1cexpress - ok
02:20:37.0365 0x17ac  EagleX64 - ok
02:20:37.0380 0x17ac  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
02:20:37.0380 0x17ac  EapHost - ok
02:20:37.0521 0x17ac  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
02:20:37.0661 0x17ac  ebdrv - ok
02:20:37.0661 0x17ac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
02:20:37.0661 0x17ac  EFS - ok
02:20:37.0692 0x17ac  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
02:20:37.0708 0x17ac  ehRecvr - ok
02:20:37.0724 0x17ac  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
02:20:37.0724 0x17ac  ehSched - ok
02:20:37.0739 0x17ac  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
02:20:37.0770 0x17ac  elxstor - ok
02:20:37.0770 0x17ac  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
02:20:37.0770 0x17ac  ErrDev - ok
02:20:37.0786 0x17ac  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
02:20:37.0802 0x17ac  EventSystem - ok
02:20:37.0817 0x17ac  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
02:20:37.0817 0x17ac  exfat - ok
02:20:37.0833 0x17ac  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
02:20:37.0833 0x17ac  fastfat - ok
02:20:37.0864 0x17ac  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
02:20:37.0880 0x17ac  Fax - ok
02:20:37.0895 0x17ac  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
02:20:37.0895 0x17ac  fdc - ok
02:20:37.0895 0x17ac  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
02:20:37.0895 0x17ac  fdPHost - ok
02:20:37.0895 0x17ac  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
02:20:37.0895 0x17ac  FDResPub - ok
02:20:37.0911 0x17ac  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
02:20:37.0911 0x17ac  FileInfo - ok
02:20:37.0911 0x17ac  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
02:20:37.0911 0x17ac  Filetrace - ok
02:20:37.0911 0x17ac  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
02:20:37.0911 0x17ac  flpydisk - ok
02:20:37.0926 0x17ac  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
02:20:37.0942 0x17ac  FltMgr - ok
02:20:37.0989 0x17ac  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
02:20:38.0051 0x17ac  FontCache - ok
02:20:38.0051 0x17ac  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:20:38.0051 0x17ac  FontCache3.0.0.0 - ok
02:20:38.0051 0x17ac  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
02:20:38.0051 0x17ac  FsDepends - ok
02:20:38.0067 0x17ac  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
02:20:38.0067 0x17ac  Fs_Rec - ok
02:20:38.0067 0x17ac  [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
02:20:38.0082 0x17ac  fvevol - ok
02:20:38.0082 0x17ac  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
02:20:38.0082 0x17ac  gagp30kx - ok
02:20:38.0082 0x17ac  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:20:38.0098 0x17ac  GEARAspiWDM - ok
02:20:38.0129 0x17ac  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
02:20:38.0160 0x17ac  gpsvc - ok
02:20:38.0160 0x17ac  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
02:20:38.0160 0x17ac  hcw85cir - ok
02:20:38.0176 0x17ac  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:20:38.0192 0x17ac  HdAudAddService - ok
02:20:38.0207 0x17ac  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
02:20:38.0207 0x17ac  HDAudBus - ok
02:20:38.0207 0x17ac  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
02:20:38.0207 0x17ac  HidBatt - ok
02:20:38.0223 0x17ac  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
02:20:38.0223 0x17ac  HidBth - ok
02:20:38.0223 0x17ac  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
02:20:38.0223 0x17ac  HidIr - ok
02:20:38.0238 0x17ac  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
02:20:38.0238 0x17ac  hidserv - ok
02:20:38.0238 0x17ac  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
02:20:38.0238 0x17ac  HidUsb - ok
02:20:38.0238 0x17ac  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
02:20:38.0254 0x17ac  hkmsvc - ok
02:20:38.0270 0x17ac  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:20:38.0270 0x17ac  HomeGroupListener - ok
02:20:38.0285 0x17ac  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:20:38.0285 0x17ac  HomeGroupProvider - ok
02:20:38.0301 0x17ac  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
02:20:38.0301 0x17ac  HpSAMD - ok
02:20:38.0332 0x17ac  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
02:20:38.0348 0x17ac  HTTP - ok
02:20:38.0348 0x17ac  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
02:20:38.0363 0x17ac  hwpolicy - ok
02:20:38.0363 0x17ac  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
02:20:38.0363 0x17ac  i8042prt - ok
02:20:38.0379 0x17ac  [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
02:20:38.0394 0x17ac  iaStorV - ok
02:20:38.0410 0x17ac  [ C1010ADD3DDAE1196ED21057AF7B2AAE, 68196851855AD395008D7F29FCEB28BA4BEB1F062B1844A60813E7DD102ACB1C ] ICCWDT          C:\Windows\system32\DRIVERS\ICCWDT.sys
02:20:38.0410 0x17ac  ICCWDT - ok
02:20:38.0426 0x17ac  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:20:38.0457 0x17ac  idsvc - ok
02:20:38.0457 0x17ac  IEEtwCollectorService - ok
02:20:38.0472 0x17ac  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
02:20:38.0472 0x17ac  iirsp - ok
02:20:38.0504 0x17ac  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
02:20:38.0550 0x17ac  IKEEXT - ok
02:20:38.0582 0x17ac  [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
02:20:38.0597 0x17ac  Intel® Capability Licensing Service Interface - ok
02:20:38.0613 0x17ac  [ FA6094444A7DC90449800F964E0A8668, A6DCF395649FA185596D55713888922BA2A61D96AD0D5E7860FD47EE30B7E4CF ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
02:20:38.0613 0x17ac  Intel® PROSet Monitoring Service - ok
02:20:38.0613 0x17ac  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
02:20:38.0613 0x17ac  intelide - ok
02:20:38.0628 0x17ac  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
02:20:38.0628 0x17ac  intelppm - ok
02:20:38.0628 0x17ac  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
02:20:38.0628 0x17ac  IPBusEnum - ok
02:20:38.0644 0x17ac  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:20:38.0644 0x17ac  IpFilterDriver - ok
02:20:38.0660 0x17ac  [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
02:20:38.0675 0x17ac  iphlpsvc - ok
02:20:38.0691 0x17ac  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
02:20:38.0691 0x17ac  IPMIDRV - ok
02:20:38.0691 0x17ac  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
02:20:38.0706 0x17ac  IPNAT - ok
02:20:38.0706 0x17ac  [ 68A5EDD4843CF0033BAE537C9C495F69, 386C66A6562218D0F0A616D75457CDA4B82DB87DC3DA83935497819963DB6D86 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
02:20:38.0722 0x17ac  iPod Service - ok
02:20:38.0722 0x17ac  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
02:20:38.0722 0x17ac  IRENUM - ok
02:20:38.0738 0x17ac  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
02:20:38.0738 0x17ac  isapnp - ok
02:20:38.0753 0x17ac  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
02:20:38.0769 0x17ac  iScsiPrt - ok
02:20:38.0769 0x17ac  [ C44B44E24B929631D9D7368F5B2B40CF, A7F11A5A970FA30CC358B9A0FE8163B686208E424C6682AEA45C06B1E7E11963 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
02:20:38.0769 0x17ac  jhi_service - ok
02:20:38.0784 0x17ac  [ A577F5DB30F70ECA9708C07C2EACBD9D, F301D6779BE81F3778417EAAE6D950BF95822EC6426FF3F516D383ADE08DF8CA ] JRAID           C:\Windows\system32\DRIVERS\jraid.sys
02:20:38.0784 0x17ac  JRAID - ok
02:20:38.0784 0x17ac  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
02:20:38.0800 0x17ac  kbdclass - ok
02:20:38.0800 0x17ac  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
02:20:38.0800 0x17ac  kbdhid - ok
02:20:38.0800 0x17ac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
02:20:38.0800 0x17ac  KeyIso - ok
02:20:38.0816 0x17ac  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
02:20:38.0816 0x17ac  KSecDD - ok
02:20:38.0816 0x17ac  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
02:20:38.0831 0x17ac  KSecPkg - ok
02:20:38.0831 0x17ac  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
02:20:38.0831 0x17ac  ksthunk - ok
02:20:38.0847 0x17ac  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
02:20:38.0878 0x17ac  KtmRm - ok
02:20:38.0878 0x17ac  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
02:20:38.0894 0x17ac  LanmanServer - ok
02:20:38.0894 0x17ac  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:20:38.0909 0x17ac  LanmanWorkstation - ok
02:20:38.0909 0x17ac  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
02:20:38.0909 0x17ac  lltdio - ok
02:20:38.0925 0x17ac  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
02:20:38.0940 0x17ac  lltdsvc - ok
02:20:38.0940 0x17ac  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
02:20:38.0956 0x17ac  lmhosts - ok
02:20:38.0956 0x17ac  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
02:20:38.0956 0x17ac  LSI_FC - ok
02:20:38.0972 0x17ac  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
02:20:38.0972 0x17ac  LSI_SAS - ok
02:20:38.0972 0x17ac  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
02:20:38.0972 0x17ac  LSI_SAS2 - ok
02:20:38.0987 0x17ac  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
02:20:38.0987 0x17ac  LSI_SCSI - ok
02:20:39.0003 0x17ac  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
02:20:39.0003 0x17ac  luafv - ok
02:20:39.0003 0x17ac  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
02:20:39.0003 0x17ac  MBAMProtector - ok
02:20:39.0034 0x17ac  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
02:20:39.0065 0x17ac  MBAMScheduler - ok
02:20:39.0081 0x17ac  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
02:20:39.0096 0x17ac  MBAMService - ok
02:20:39.0096 0x17ac  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
02:20:39.0096 0x17ac  MBAMSwissArmy - ok
02:20:39.0096 0x17ac  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
02:20:39.0112 0x17ac  MBAMWebAccessControl - ok
02:20:39.0112 0x17ac  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
02:20:39.0112 0x17ac  Mcx2Svc - ok
02:20:39.0128 0x17ac  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
02:20:39.0128 0x17ac  megasas - ok
02:20:39.0128 0x17ac  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
02:20:39.0143 0x17ac  MegaSR - ok
02:20:39.0143 0x17ac  [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
02:20:39.0143 0x17ac  MEIx64 - ok
02:20:39.0159 0x17ac  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
02:20:39.0159 0x17ac  MMCSS - ok
02:20:39.0159 0x17ac  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
02:20:39.0159 0x17ac  Modem - ok
02:20:39.0159 0x17ac  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
02:20:39.0174 0x17ac  monitor - ok
02:20:39.0174 0x17ac  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
02:20:39.0174 0x17ac  mouclass - ok
02:20:39.0174 0x17ac  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
02:20:39.0174 0x17ac  mouhid - ok
02:20:39.0190 0x17ac  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
02:20:39.0190 0x17ac  mountmgr - ok
02:20:39.0190 0x17ac  [ 817EFA0406E506784AB734CFB7DBD28E, 301C14DFCFE9AA27E93A5161E3BA74A8139EA8778FC9C4AA16623B673B6DD58F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:20:39.0190 0x17ac  MozillaMaintenance - ok
02:20:39.0206 0x17ac  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
02:20:39.0206 0x17ac  mpio - ok
02:20:39.0206 0x17ac  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
02:20:39.0206 0x17ac  mpsdrv - ok
02:20:39.0237 0x17ac  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
02:20:39.0268 0x17ac  MpsSvc - ok
02:20:39.0284 0x17ac  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
02:20:39.0284 0x17ac  MRxDAV - ok
02:20:39.0299 0x17ac  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
02:20:39.0299 0x17ac  mrxsmb - ok
02:20:39.0315 0x17ac  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:20:39.0330 0x17ac  mrxsmb10 - ok
02:20:39.0330 0x17ac  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:20:39.0346 0x17ac  mrxsmb20 - ok
02:20:39.0346 0x17ac  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
02:20:39.0346 0x17ac  msahci - ok
02:20:39.0346 0x17ac  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
02:20:39.0362 0x17ac  msdsm - ok
02:20:39.0362 0x17ac  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
02:20:39.0377 0x17ac  MSDTC - ok
02:20:39.0377 0x17ac  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
02:20:39.0377 0x17ac  Msfs - ok
02:20:39.0377 0x17ac  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
02:20:39.0377 0x17ac  mshidkmdf - ok
02:20:39.0393 0x17ac  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
02:20:39.0393 0x17ac  msisadrv - ok
02:20:39.0393 0x17ac  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
02:20:39.0408 0x17ac  MSiSCSI - ok
02:20:39.0408 0x17ac  msiserver - ok
02:20:39.0408 0x17ac  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
02:20:39.0408 0x17ac  MSKSSRV - ok
02:20:39.0408 0x17ac  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
02:20:39.0408 0x17ac  MSPCLOCK - ok
02:20:39.0424 0x17ac  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
02:20:39.0424 0x17ac  MSPQM - ok
02:20:39.0440 0x17ac  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
02:20:39.0440 0x17ac  MsRPC - ok
02:20:39.0455 0x17ac  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
02:20:39.0455 0x17ac  mssmbios - ok
02:20:39.0455 0x17ac  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
02:20:39.0455 0x17ac  MSTEE - ok
02:20:39.0455 0x17ac  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
02:20:39.0455 0x17ac  MTConfig - ok
02:20:39.0471 0x17ac  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
02:20:39.0471 0x17ac  Mup - ok
02:20:39.0486 0x17ac  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
02:20:39.0502 0x17ac  napagent - ok
02:20:39.0518 0x17ac  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
02:20:39.0533 0x17ac  NativeWifiP - ok
02:20:39.0564 0x17ac  [ 79B47FD40D9A817E932F9D26FAC0A81C, 53E260B8BFC50BA45FA73BFCF4E58C233890D0EAA9DEFDCCBB55FD3EB992FF2D ] NDIS            C:\Windows\system32\drivers\ndis.sys
02:20:39.0596 0x17ac  NDIS - ok
02:20:39.0611 0x17ac  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
02:20:39.0611 0x17ac  NdisCap - ok
02:20:39.0611 0x17ac  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
02:20:39.0611 0x17ac  NdisTapi - ok
02:20:39.0611 0x17ac  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
02:20:39.0611 0x17ac  Ndisuio - ok
02:20:39.0627 0x17ac  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
02:20:39.0627 0x17ac  NdisWan - ok
02:20:39.0642 0x17ac  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
02:20:39.0642 0x17ac  NDProxy - ok
02:20:39.0642 0x17ac  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
02:20:39.0642 0x17ac  NetBIOS - ok
02:20:39.0658 0x17ac  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
02:20:39.0658 0x17ac  NetBT - ok
02:20:39.0658 0x17ac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
02:20:39.0658 0x17ac  Netlogon - ok
02:20:39.0689 0x17ac  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
02:20:39.0705 0x17ac  Netman - ok
02:20:39.0720 0x17ac  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:20:39.0720 0x17ac  NetMsmqActivator - ok
02:20:39.0736 0x17ac  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:20:39.0736 0x17ac  NetPipeActivator - ok
02:20:39.0767 0x17ac  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
02:20:39.0783 0x17ac  netprofm - ok
02:20:39.0798 0x17ac  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:20:39.0798 0x17ac  NetTcpActivator - ok
02:20:39.0798 0x17ac  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:20:39.0798 0x17ac  NetTcpPortSharing - ok
02:20:39.0814 0x17ac  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
02:20:39.0814 0x17ac  nfrd960 - ok
02:20:39.0830 0x17ac  [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
02:20:39.0845 0x17ac  NlaSvc - ok
02:20:39.0861 0x17ac  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
02:20:39.0861 0x17ac  Npfs - ok
02:20:39.0861 0x17ac  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
02:20:39.0861 0x17ac  nsi - ok
02:20:39.0861 0x17ac  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
02:20:39.0861 0x17ac  nsiproxy - ok
02:20:39.0939 0x17ac  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
02:20:40.0001 0x17ac  Ntfs - ok
02:20:40.0001 0x17ac  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
02:20:40.0001 0x17ac  Null - ok
02:20:40.0017 0x17ac  [ 158AD24745BD85BA9BE3C51C38F48C32, B053A3B5A5CAE2CBC47E2C19E636AD70F376334EFFBB391A76562E67CBF3AC86 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
02:20:40.0017 0x17ac  nusb3hub - ok
02:20:40.0032 0x17ac  [ D40A13B2C0891E218F9523B376955DB6, 9A2AAAF960868B860A65579EAD507B35C64CFD6C3581F8D731ADF975F778D10E ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
02:20:40.0032 0x17ac  nusb3xhc - ok
02:20:40.0048 0x17ac  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
02:20:40.0048 0x17ac  NVHDA - ok
02:20:40.0641 0x17ac  [ 2232AE1BB51A96A7381A2CA17DF12E24, 4813E27BC14EB3CBD55AF89B098EA5C8DA4C7FF0B6CCB7AACFC43BC0E578C988 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
02:20:40.0808 0x17ac  nvlddmkm - ok
02:20:40.0898 0x17ac  [ 45D6780D0525D7BC29E2E3605CA73C18, C8BBE8BE9824CD1D3C4314FE370FA03BD6000187B4FC4FC935F8342E1A02FA7E ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
02:20:40.0968 0x17ac  NvNetworkService - ok
02:20:40.0978 0x17ac  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
02:20:40.0978 0x17ac  nvraid - ok
02:20:40.0988 0x17ac  [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
02:20:40.0998 0x17ac  nvstor - ok
02:20:40.0998 0x17ac  [ A0D870DCE152EE5B92A41AD927201D19, 67FB025CB380D933BF0FDD4AFE9BE4E3C1D69A59865E02A96533BBE9EC260D71 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
02:20:40.0998 0x17ac  NvStreamKms - ok
02:20:41.0868 0x17ac  [ E5597D09E5239C0F908948DB7057AC26, A6045D4D9D2F8007B0F75DAAABB2AD9FEB4A898E33A51ECE9A9D788D8E8F84A4 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
02:20:42.0708 0x17ac  NvStreamSvc - ok
02:20:42.0768 0x17ac  [ 2C8DD5A34A81715865D66D7AF39362A6, 62F9D873127921EE2EAA80B73E8994C4BF6DA7EEDACAEA030B8D58E086FD3850 ] nvsvc           C:\Windows\system32\nvvsvc.exe
02:20:42.0808 0x17ac  nvsvc - ok
02:20:42.0818 0x17ac  [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
02:20:42.0818 0x17ac  nvvad_WaveExtensible - ok
02:20:42.0828 0x17ac  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
02:20:42.0838 0x17ac  nv_agp - ok
02:20:42.0848 0x17ac  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
02:20:42.0848 0x17ac  ohci1394 - ok
02:20:42.0858 0x17ac  [ B9C125314A025127FE562C116D614AA3, 79C46C0BACEBBB5B8E1C162766B21587365A100BBAD01171C77B995C514BC7D6 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:20:42.0868 0x17ac  ose64 - ok
02:20:43.0028 0x17ac  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
02:20:43.0178 0x17ac  osppsvc - ok
02:20:43.0198 0x17ac  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
02:20:43.0208 0x17ac  p2pimsvc - ok
02:20:43.0238 0x17ac  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
02:20:43.0248 0x17ac  p2psvc - ok
02:20:43.0258 0x17ac  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
02:20:43.0268 0x17ac  Parport - ok
02:20:43.0268 0x17ac  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
02:20:43.0278 0x17ac  partmgr - ok
02:20:43.0288 0x17ac  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
02:20:43.0288 0x17ac  PcaSvc - ok
02:20:43.0298 0x17ac  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
02:20:43.0308 0x17ac  pci - ok
02:20:43.0308 0x17ac  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
02:20:43.0308 0x17ac  pciide - ok
02:20:43.0328 0x17ac  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
02:20:43.0328 0x17ac  pcmcia - ok
02:20:43.0338 0x17ac  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
02:20:43.0338 0x17ac  pcw - ok
02:20:43.0368 0x17ac  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
02:20:43.0384 0x17ac  PEAUTH - ok
02:20:43.0431 0x17ac  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
02:20:43.0477 0x17ac  PeerDistSvc - ok
02:20:43.0509 0x17ac  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
02:20:43.0509 0x17ac  PerfHost - ok
02:20:43.0555 0x17ac  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
02:20:43.0602 0x17ac  pla - ok
02:20:43.0633 0x17ac  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
02:20:43.0649 0x17ac  PlugPlay - ok
02:20:43.0649 0x17ac  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
02:20:43.0649 0x17ac  PNRPAutoReg - ok
02:20:43.0665 0x17ac  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
02:20:43.0680 0x17ac  PNRPsvc - ok
02:20:43.0696 0x17ac  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
02:20:43.0711 0x17ac  PolicyAgent - ok
02:20:43.0727 0x17ac  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
02:20:43.0727 0x17ac  Power - ok
02:20:43.0743 0x17ac  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
02:20:43.0743 0x17ac  PptpMiniport - ok
02:20:43.0758 0x17ac  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
02:20:43.0758 0x17ac  Processor - ok
02:20:43.0758 0x17ac  [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc         C:\Windows\system32\profsvc.dll
02:20:43.0774 0x17ac  ProfSvc - ok
02:20:43.0774 0x17ac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
02:20:43.0774 0x17ac  ProtectedStorage - ok
02:20:43.0789 0x17ac  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
02:20:43.0789 0x17ac  Psched - ok
02:20:43.0836 0x17ac  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
02:20:43.0883 0x17ac  ql2300 - ok
02:20:43.0899 0x17ac  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
02:20:43.0899 0x17ac  ql40xx - ok
02:20:43.0914 0x17ac  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
02:20:43.0930 0x17ac  QWAVE - ok
02:20:43.0930 0x17ac  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
02:20:43.0930 0x17ac  QWAVEdrv - ok
02:20:43.0930 0x17ac  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
02:20:43.0930 0x17ac  RasAcd - ok
02:20:43.0945 0x17ac  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
02:20:43.0945 0x17ac  RasAgileVpn - ok
02:20:43.0945 0x17ac  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
02:20:43.0961 0x17ac  RasAuto - ok
02:20:43.0961 0x17ac  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
02:20:43.0961 0x17ac  Rasl2tp - ok
02:20:43.0992 0x17ac  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
02:20:44.0008 0x17ac  RasMan - ok
02:20:44.0008 0x17ac  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
02:20:44.0008 0x17ac  RasPppoe - ok
02:20:44.0023 0x17ac  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
02:20:44.0023 0x17ac  RasSstp - ok
02:20:44.0039 0x17ac  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
02:20:44.0055 0x17ac  rdbss - ok
02:20:44.0055 0x17ac  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
02:20:44.0055 0x17ac  rdpbus - ok
02:20:44.0055 0x17ac  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
02:20:44.0055 0x17ac  RDPCDD - ok
02:20:44.0070 0x17ac  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
02:20:44.0070 0x17ac  RDPDR - ok
02:20:44.0070 0x17ac  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
02:20:44.0070 0x17ac  RDPENCDD - ok
02:20:44.0086 0x17ac  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
02:20:44.0086 0x17ac  RDPREFMP - ok
02:20:44.0086 0x17ac  [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
02:20:44.0086 0x17ac  RdpVideoMiniport - ok
02:20:44.0101 0x17ac  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
02:20:44.0101 0x17ac  RDPWD - ok
02:20:44.0117 0x17ac  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
02:20:44.0133 0x17ac  rdyboost - ok
02:20:44.0133 0x17ac  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
02:20:44.0133 0x17ac  RemoteAccess - ok
02:20:44.0148 0x17ac  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
02:20:44.0164 0x17ac  RemoteRegistry - ok
02:20:44.0164 0x17ac  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
02:20:44.0179 0x17ac  RFCOMM - ok
02:20:44.0179 0x17ac  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
02:20:44.0179 0x17ac  RpcEptMapper - ok
02:20:44.0179 0x17ac  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
02:20:44.0179 0x17ac  RpcLocator - ok
02:20:44.0211 0x17ac  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
02:20:44.0226 0x17ac  RpcSs - ok
02:20:44.0226 0x17ac  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
02:20:44.0226 0x17ac  rspndr - ok
02:20:44.0242 0x17ac  [ E4E034F79D88B34C5B4BA28BAE2259F7, A48E0ACFE75F92793E1961D108242A0B6B890ED8541757B7BF7EAAC1D6E963C1 ] RzKLService     C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
02:20:44.0242 0x17ac  RzKLService - ok
02:20:44.0242 0x17ac  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
02:20:44.0242 0x17ac  s3cap - ok
02:20:44.0242 0x17ac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
02:20:44.0242 0x17ac  SamSs - ok
02:20:44.0273 0x17ac  [ 3918A2CC367F08C04440D866274EFF76, 10642E6E7EF78724E891F46F39E041DA54CC1BCD6D1D4397350649E8175CD102 ] SamsungRapidDiskFltr C:\Windows\system32\DRIVERS\SamsungRapidDiskFltr.sys
02:20:44.0273 0x17ac  SamsungRapidDiskFltr - ok
02:20:44.0289 0x17ac  [ 6A59DC81E43938A937287CDDDCDE2730, B0AEADAF6A4D6E9C9B7FDECFDE25A88CE4D8655ED6CCDE56A6D975B215A8B981 ] SamsungRapidFSFltr C:\Windows\system32\DRIVERS\SamsungRapidFSFltr.sys
02:20:44.0289 0x17ac  SamsungRapidFSFltr - ok
02:20:44.0289 0x17ac  [ D93C2378B0C112E7FAB57559078B25D8, 78C81899B000A57F3C46B3E932895CD5D8F2EA53EC28031E630219258C6BF0DF ] SamsungRapidSvc C:\Windows\system32\RAPID\SamsungRapidSvc.exe
02:20:44.0289 0x17ac  SamsungRapidSvc - ok
02:20:44.0289 0x17ac  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
02:20:44.0304 0x17ac  sbp2port - ok
02:20:44.0304 0x17ac  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
02:20:44.0320 0x17ac  SCardSvr - ok
02:20:44.0320 0x17ac  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
02:20:44.0320 0x17ac  scfilter - ok
02:20:44.0367 0x17ac  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
02:20:44.0413 0x17ac  Schedule - ok
02:20:44.0429 0x17ac  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
02:20:44.0429 0x17ac  SCPolicySvc - ok
02:20:44.0429 0x17ac  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
02:20:44.0445 0x17ac  SDRSVC - ok
02:20:44.0445 0x17ac  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
02:20:44.0445 0x17ac  secdrv - ok
02:20:44.0460 0x17ac  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
02:20:44.0460 0x17ac  seclogon - ok
02:20:44.0460 0x17ac  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
02:20:44.0460 0x17ac  SENS - ok
02:20:44.0460 0x17ac  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
02:20:44.0476 0x17ac  SensrSvc - ok
02:20:44.0476 0x17ac  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
02:20:44.0476 0x17ac  Serenum - ok
02:20:44.0476 0x17ac  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
02:20:44.0476 0x17ac  Serial - ok
02:20:44.0491 0x17ac  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
02:20:44.0491 0x17ac  sermouse - ok
02:20:44.0491 0x17ac  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
02:20:44.0507 0x17ac  SessionEnv - ok
02:20:44.0507 0x17ac  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
02:20:44.0507 0x17ac  sffdisk - ok
02:20:44.0507 0x17ac  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
02:20:44.0507 0x17ac  sffp_mmc - ok
02:20:44.0523 0x17ac  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
02:20:44.0523 0x17ac  sffp_sd - ok
02:20:44.0523 0x17ac  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
02:20:44.0523 0x17ac  sfloppy - ok
02:20:44.0538 0x17ac  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
02:20:44.0554 0x17ac  SharedAccess - ok
02:20:44.0585 0x17ac  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:20:44.0601 0x17ac  ShellHWDetection - ok
02:20:44.0601 0x17ac  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
02:20:44.0601 0x17ac  SiSRaid2 - ok
02:20:44.0601 0x17ac  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
02:20:44.0616 0x17ac  SiSRaid4 - ok
02:20:44.0616 0x17ac  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
02:20:44.0616 0x17ac  Smb - ok
02:20:44.0632 0x17ac  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
02:20:44.0632 0x17ac  SNMPTRAP - ok
02:20:44.0632 0x17ac  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
02:20:44.0632 0x17ac  spldr - ok
02:20:44.0663 0x17ac  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
02:20:44.0694 0x17ac  Spooler - ok
02:20:44.0835 0x17ac  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
02:20:44.0913 0x17ac  sppsvc - ok
02:20:44.0928 0x17ac  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
02:20:44.0928 0x17ac  sppuinotify - ok
02:20:44.0944 0x17ac  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
02:20:44.0959 0x17ac  srv - ok
02:20:44.0975 0x17ac  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
02:20:44.0991 0x17ac  srv2 - ok
02:20:45.0006 0x17ac  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
02:20:45.0006 0x17ac  srvnet - ok
02:20:45.0022 0x17ac  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
02:20:45.0022 0x17ac  SSDPSRV - ok
02:20:45.0037 0x17ac  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
02:20:45.0037 0x17ac  SstpSvc - ok
02:20:45.0069 0x17ac  [ A993E6FD9549499099461A0B192EEC3F, EC17EBE9A0EF481E704E64D07D257C3380046CBB5D9CAFABA90D21A2B84191FF ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
02:20:45.0084 0x17ac  Steam Client Service - ok
02:20:45.0115 0x17ac  [ D2230317777033CD0456990BFC4994E5, 0F2F559593EAD7AB4596E67E9AE56E5ABF5C945201366CFC972357C22A4F776A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
02:20:45.0131 0x17ac  Stereo Service - ok
02:20:45.0131 0x17ac  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
02:20:45.0131 0x17ac  stexstor - ok
02:20:45.0162 0x17ac  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
02:20:45.0178 0x17ac  stisvc - ok
02:20:45.0178 0x17ac  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
02:20:45.0178 0x17ac  storflt - ok
02:20:45.0193 0x17ac  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
02:20:45.0193 0x17ac  storvsc - ok
02:20:45.0193 0x17ac  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
02:20:45.0193 0x17ac  swenum - ok
02:20:45.0209 0x17ac  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
02:20:45.0225 0x17ac  swprv - ok
02:20:45.0240 0x17ac  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
02:20:45.0240 0x17ac  Synth3dVsc - ok
02:20:45.0318 0x17ac  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
02:20:45.0381 0x17ac  SysMain - ok
02:20:45.0381 0x17ac  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:20:45.0381 0x17ac  TabletInputService - ok
02:20:45.0412 0x17ac  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
02:20:45.0412 0x17ac  TapiSrv - ok
02:20:45.0427 0x17ac  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
02:20:45.0427 0x17ac  TBS - ok
02:20:45.0505 0x17ac  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
02:20:45.0583 0x17ac  Tcpip - ok
02:20:45.0661 0x17ac  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
02:20:45.0693 0x17ac  TCPIP6 - ok
02:20:45.0693 0x17ac  [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
02:20:45.0693 0x17ac  tcpipreg - ok
02:20:45.0693 0x17ac  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
02:20:45.0708 0x17ac  TDPIPE - ok
02:20:45.0708 0x17ac  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
02:20:45.0708 0x17ac  TDTCP - ok
02:20:45.0708 0x17ac  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
02:20:45.0724 0x17ac  tdx - ok
02:20:45.0724 0x17ac  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
02:20:45.0724 0x17ac  TermDD - ok
02:20:45.0724 0x17ac  [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt        C:\Windows\system32\drivers\terminpt.sys
02:20:45.0724 0x17ac  terminpt - ok
02:20:45.0755 0x17ac  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
02:20:45.0786 0x17ac  TermService - ok
02:20:45.0786 0x17ac  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
02:20:45.0786 0x17ac  Themes - ok
02:20:45.0802 0x17ac  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
02:20:45.0802 0x17ac  THREADORDER - ok
02:20:45.0802 0x17ac  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
02:20:45.0817 0x17ac  TrkWks - ok
02:20:45.0817 0x17ac  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:20:45.0817 0x17ac  TrustedInstaller - ok
02:20:45.0833 0x17ac  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
02:20:45.0833 0x17ac  tssecsrv - ok
02:20:45.0833 0x17ac  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
02:20:45.0833 0x17ac  TsUsbFlt - ok
02:20:45.0833 0x17ac  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
02:20:45.0849 0x17ac  TsUsbGD - ok
02:20:45.0849 0x17ac  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
02:20:45.0849 0x17ac  tsusbhub - ok
02:20:45.0864 0x17ac  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
02:20:45.0864 0x17ac  tunnel - ok
02:20:45.0880 0x17ac  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
02:20:45.0880 0x17ac  uagp35 - ok
02:20:45.0895 0x17ac  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
02:20:45.0911 0x17ac  udfs - ok
02:20:45.0911 0x17ac  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
02:20:45.0911 0x17ac  UI0Detect - ok
02:20:45.0927 0x17ac  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
02:20:45.0927 0x17ac  uliagpkx - ok
02:20:45.0927 0x17ac  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
02:20:45.0927 0x17ac  umbus - ok
02:20:45.0927 0x17ac  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
02:20:45.0927 0x17ac  UmPass - ok
02:20:45.0942 0x17ac  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
02:20:45.0958 0x17ac  UmRdpService - ok
02:20:45.0973 0x17ac  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
02:20:45.0989 0x17ac  upnphost - ok
02:20:45.0989 0x17ac  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
02:20:45.0989 0x17ac  USBAAPL64 - ok
02:20:46.0005 0x17ac  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
02:20:46.0005 0x17ac  usbccgp - ok
02:20:46.0005 0x17ac  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
02:20:46.0020 0x17ac  usbcir - ok
02:20:46.0020 0x17ac  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
02:20:46.0020 0x17ac  usbehci - ok
02:20:46.0036 0x17ac  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
02:20:46.0051 0x17ac  usbhub - ok
02:20:46.0067 0x17ac  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
02:20:46.0067 0x17ac  usbohci - ok
02:20:46.0067 0x17ac  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
02:20:46.0067 0x17ac  usbprint - ok
02:20:46.0067 0x17ac  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
02:20:46.0083 0x17ac  usbscan - ok
02:20:46.0083 0x17ac  [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:20:46.0083 0x17ac  USBSTOR - ok
02:20:46.0083 0x17ac  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
02:20:46.0083 0x17ac  usbuhci - ok
02:20:46.0098 0x17ac  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
02:20:46.0098 0x17ac  UxSms - ok
02:20:46.0098 0x17ac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
02:20:46.0098 0x17ac  VaultSvc - ok
02:20:46.0114 0x17ac  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
02:20:46.0114 0x17ac  vdrvroot - ok
02:20:46.0129 0x17ac  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
02:20:46.0161 0x17ac  vds - ok
02:20:46.0161 0x17ac  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
02:20:46.0161 0x17ac  vga - ok
02:20:46.0176 0x17ac  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
02:20:46.0176 0x17ac  VgaSave - ok
02:20:46.0176 0x17ac  VGPU - ok
02:20:46.0192 0x17ac  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
02:20:46.0192 0x17ac  vhdmp - ok
02:20:46.0192 0x17ac  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
02:20:46.0207 0x17ac  viaide - ok
02:20:46.0207 0x17ac  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
02:20:46.0223 0x17ac  vmbus - ok
02:20:46.0223 0x17ac  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
02:20:46.0223 0x17ac  VMBusHID - ok
02:20:46.0223 0x17ac  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
02:20:46.0223 0x17ac  volmgr - ok
02:20:46.0254 0x17ac  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
02:20:46.0254 0x17ac  volmgrx - ok
02:20:46.0270 0x17ac  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
02:20:46.0285 0x17ac  volsnap - ok
02:20:46.0285 0x17ac  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
02:20:46.0301 0x17ac  vsmraid - ok
02:20:46.0348 0x17ac  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
02:20:46.0395 0x17ac  VSS - ok
02:20:46.0410 0x17ac  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
02:20:46.0410 0x17ac  vwifibus - ok
02:20:46.0426 0x17ac  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
02:20:46.0441 0x17ac  W32Time - ok
02:20:46.0441 0x17ac  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
02:20:46.0441 0x17ac  WacomPen - ok
02:20:46.0457 0x17ac  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
02:20:46.0457 0x17ac  WANARP - ok
02:20:46.0457 0x17ac  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
02:20:46.0457 0x17ac  Wanarpv6 - ok
02:20:46.0535 0x17ac  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
02:20:46.0613 0x17ac  WatAdminSvc - ok
02:20:46.0675 0x17ac  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
02:20:46.0738 0x17ac  wbengine - ok
02:20:46.0753 0x17ac  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
02:20:46.0769 0x17ac  WbioSrvc - ok
02:20:46.0785 0x17ac  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
02:20:46.0800 0x17ac  wcncsvc - ok
02:20:46.0800 0x17ac  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:20:46.0800 0x17ac  WcsPlugInService - ok
02:20:46.0800 0x17ac  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
02:20:46.0800 0x17ac  Wd - ok
02:20:46.0831 0x17ac  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
02:20:46.0863 0x17ac  Wdf01000 - ok
02:20:46.0863 0x17ac  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
02:20:46.0863 0x17ac  WdiServiceHost - ok
02:20:46.0878 0x17ac  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
02:20:46.0878 0x17ac  WdiSystemHost - ok
02:20:46.0894 0x17ac  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
02:20:46.0909 0x17ac  WebClient - ok
02:20:46.0909 0x17ac  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
02:20:46.0925 0x17ac  Wecsvc - ok
02:20:46.0925 0x17ac  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
02:20:46.0941 0x17ac  wercplsupport - ok
02:20:46.0941 0x17ac  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
02:20:46.0941 0x17ac  WerSvc - ok
02:20:46.0956 0x17ac  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
02:20:46.0956 0x17ac  WfpLwf - ok
02:20:46.0956 0x17ac  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
02:20:46.0956 0x17ac  WIMMount - ok
02:20:46.0956 0x17ac  WinDefend - ok
02:20:46.0956 0x17ac  WinHttpAutoProxySvc - ok
02:20:46.0972 0x17ac  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
02:20:46.0987 0x17ac  Winmgmt - ok
02:20:47.0065 0x17ac  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
02:20:47.0143 0x17ac  WinRM - ok
02:20:47.0159 0x17ac  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
02:20:47.0159 0x17ac  WinUsb - ok
02:20:47.0190 0x17ac  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
02:20:47.0221 0x17ac  Wlansvc - ok
02:20:47.0221 0x17ac  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
02:20:47.0221 0x17ac  WmiAcpi - ok
02:20:47.0237 0x17ac  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
02:20:47.0253 0x17ac  wmiApSrv - ok
02:20:47.0253 0x17ac  WMPNetworkSvc - ok
02:20:47.0268 0x17ac  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
02:20:47.0268 0x17ac  WPCSvc - ok
02:20:47.0268 0x17ac  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
02:20:47.0268 0x17ac  WPDBusEnum - ok
02:20:47.0284 0x17ac  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
02:20:47.0284 0x17ac  ws2ifsl - ok
02:20:47.0284 0x17ac  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
02:20:47.0284 0x17ac  wscsvc - ok
02:20:47.0299 0x17ac  WSearch - ok
02:20:47.0393 0x17ac  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
02:20:47.0487 0x17ac  wuauserv - ok
02:20:47.0487 0x17ac  [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
02:20:47.0502 0x17ac  WudfPf - ok
02:20:47.0502 0x17ac  [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
02:20:47.0518 0x17ac  WUDFRd - ok
02:20:47.0518 0x17ac  [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
02:20:47.0518 0x17ac  wudfsvc - ok
02:20:47.0533 0x17ac  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
02:20:47.0533 0x17ac  WwanSvc - ok
02:20:47.0549 0x17ac  ================ Scan global ===============================
02:20:47.0549 0x17ac  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
02:20:47.0565 0x17ac  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
02:20:47.0580 0x17ac  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
02:20:47.0580 0x17ac  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
02:20:47.0611 0x17ac  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
02:20:47.0611 0x17ac  [ Global ] - ok
02:20:47.0611 0x17ac  ================ Scan MBR ==================================
02:20:47.0611 0x17ac  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
02:20:47.0627 0x17ac  \Device\Harddisk1\DR1 - ok
02:20:47.0627 0x17ac  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:20:47.0689 0x17ac  \Device\Harddisk0\DR0 - ok
02:20:47.0689 0x17ac  ================ Scan VBR ==================================
02:20:47.0689 0x17ac  [ 37EE8D21D41EEC1535328CEE749B4A74 ] \Device\Harddisk1\DR1\Partition1
02:20:47.0689 0x17ac  \Device\Harddisk1\DR1\Partition1 - ok
02:20:47.0689 0x17ac  [ 40D383226E1851D071CBB38E005BED51 ] \Device\Harddisk0\DR0\Partition1
02:20:47.0689 0x17ac  \Device\Harddisk0\DR0\Partition1 - ok
02:20:47.0689 0x17ac  [ 316958C4BCFBEA8F5AF12ED5A2DAB5A3 ] \Device\Harddisk0\DR0\Partition2
02:20:47.0689 0x17ac  \Device\Harddisk0\DR0\Partition2 - ok
02:20:47.0705 0x17ac  ================ Scan generic autorun ======================
02:20:47.0814 0x17ac  [ 05470C684B62C2F86325D8685E4513CB, EDE70A162AFA104D774AE1D8D3A077F2C12940851EC5BA785242F4032EEA902E ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
02:20:47.0923 0x17ac  NvBackend - ok
02:20:47.0923 0x17ac  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
02:20:47.0939 0x17ac  ShadowPlay - ok
02:20:47.0955 0x17ac  [ A9C1846A38725698F5CE2B61048A32C6, BD5895C849FB5653D3FEFCBBA60CA740D033C86DB508D919A92021B7D0C4A64A ] C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
02:20:47.0955 0x17ac  SamsungRapidApp - ok
02:20:47.0986 0x17ac  [ A5299DCA34A86268F3A635CDCF6E8F57, FCBC168BD4465340BDC4E1589C7C5EFEED9AB711200036247EB951C71ED39538 ] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
02:20:48.0017 0x17ac  AtherosBtStack - ok
02:20:48.0033 0x17ac  [ A1D17BD52F1A2E387EEE1C6543AC2671, AC33526CD009790C2EC229F1F87C8B7BDCEF12A281953CC92B124014B00361B1 ] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
02:20:48.0048 0x17ac  AthBtTray - ok
02:20:48.0064 0x17ac  [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files (x86)\QuickTime\QTTask.exe
02:20:48.0079 0x17ac  QuickTime Task - ok
02:20:48.0095 0x17ac  [ 9D51EA92A612B37E76E5E4621650C50A, 00BD61C8527A80C0F684882379A0AC2E5A54E8BBECC797087B960CDC8454C373 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
02:20:48.0095 0x17ac  NUSB3MON - ok
02:20:48.0095 0x17ac  [ 17D9440D55500418C8FDB8EF1390C5AD, C4C57AE427FB89EFDFC1D111C300BB588E475BE90DD57084C03399557641F948 ] C:\Windows\RaidTool\xInsIDE.exe
02:20:48.0095 0x17ac  JMB36X IDE Setup - ok
02:20:48.0126 0x17ac  [ 2D75851551D18878FADC21E166DEA3FA, 42450D509384FCC1FADABC4CC027B1BB3D5D9031EFD2B294DCA069A429AB8AD3 ] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
02:20:48.0142 0x17ac  ASUS Ai Charger - ok
02:20:48.0157 0x17ac  [ 90C6C359293757A161A3FCA0793B1293, 1820C2A9608E7D470A0938FDC407BF4B6D0077C78D5A2B6AD34C84B8F4DA55AE ] C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
02:20:48.0157 0x17ac  ASUS ShellProcess Execute - ok
02:20:48.0173 0x17ac  [ 3B5045DDD039FAB9782851BC486FD92B, 12C59F9E79EB37F26FE0805585EA6B0DAFB41FB8A4FAE972774BC8E3815A1673 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
02:20:48.0173 0x17ac  iTunesHelper - ok
02:20:48.0235 0x17ac  [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
02:20:48.0298 0x17ac  AvastUI.exe - ok
02:20:48.0360 0x17ac  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:20:48.0407 0x17ac  Sidebar - ok
02:20:48.0407 0x17ac  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:20:48.0423 0x17ac  mctadmin - ok
02:20:48.0469 0x17ac  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:20:48.0485 0x17ac  Sidebar - ok
02:20:48.0485 0x17ac  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:20:48.0485 0x17ac  mctadmin - ok
02:20:48.0547 0x17ac  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
02:20:48.0610 0x17ac  Sidebar - ok
02:20:48.0610 0x17ac  GoogleDriveSync - ok
02:20:48.0610 0x17ac  Waiting for KSN requests completion. In queue: 441
02:20:49.0624 0x17ac  Waiting for KSN requests completion. In queue: 441
02:20:50.0638 0x17ac  Waiting for KSN requests completion. In queue: 298
02:20:51.0652 0x17ac  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
02:20:51.0652 0x17ac  Win FW state via NFP2: enabled
02:20:54.0397 0x17ac  ============================================================
02:20:54.0397 0x17ac  Scan finished
02:20:54.0397 0x17ac  ============================================================
02:20:54.0397 0x1294  Detected object count: 0
02:20:54.0397 0x1294  Actual detected object count: 0
02:21:20.0137 0x0ca4  Deinitialize success

ADW Cleaner

# AdwCleaner v3.310 - Report created 13/09/2014 at 02:10:00
# Updated 12/09/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Iv40o - BLESSER
# Running from : D:\Downdloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : f1f78e38

***** [ Files / Folders ] *****

File Found : C:\Users\Iv40o\AppData\Roaming\LiveSupport.exe_log.txt
File Found : C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\user.js
File Found : C:\Users\Iv40o\AppData\Roaming\regsvr32.exe_log.txt
Folder Found : C:\Program Files (x86)\Adblocker
Folder Found : C:\Program Files (x86)\Optimizer Pro
Folder Found : C:\ProgramData\DiscounTLoCatOr
Folder Found : C:\ProgramData\DiscountLocator
Folder Found : C:\ProgramData\FunDeAls
Folder Found : C:\ProgramData\Trusted Publisher
Folder Found : C:\ProgramData\WinSpeed
Folder Found : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Administrator\AppData\Local\torch
Folder Found : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Guest\AppData\Local\torch
Folder Found : C:\Users\Iv40o\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdpkfpnllmmodohmfglomkblmenchlh
Folder Found : C:\Users\Iv40o\AppData\Local\torch
Folder Found : C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\ieyaiioe@vamv-.org
Folder Found : C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\nuqlfr@oi-.co.uk
Folder Found : C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\skqiwupw_3p@heobjdzipq.co.uk
Folder Found : C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\tewx3vdlz@fyeeia.net
Folder Found : C:\Users\Iv40o\Documents\Optimizer Pro

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\Optimizer Pro
Key Found : HKCU\Software\RegisteredApplicationsEx
Key Found : [x64] HKCU\Software\Optimizer Pro
Key Found : [x64] HKCU\Software\RegisteredApplicationsEx
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Key Found : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280


-\\ Mozilla Firefox v32.0.1 (x86 en-US)

[ File : C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\prefs.js ]

Line Found : user_pref("extensions.M4alBLkc6.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumoro[...]
Line Found : user_pref("extensions.R7Zfc5uOLmHS.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sum[...]
Line Found : user_pref("extensions.WhwtJPmDSHk.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumo[...]
Line Found : user_pref("extensions.Zed1oqZX9Te.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumo[...]
Line Found : user_pref("extensions.oohVdungvJ.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumor[...]
Line Found : user_pref("extensions.wGMB.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.ne[...]

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [6260 octets] - [13/09/2014 02:10:00]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6320 octets] ##########

Junkware Removal Tool

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x64
Ran by Iv40o on 13-Sep-14 at  2:26:24.69
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted the following from C:\Users\Iv40o\AppData\Roaming\mozilla\firefox\profiles\56djd1lx.default\prefs.js

user_pref("extensions.WhwtJPmDSHk.url", "hxxp://webdireect.in/sync2/?q=hfZ9ofV9CShEAen0rTwHqchTB6lKDzt4ok8ktNtVh7n0rjnEpdw9rTwHpjsGtMFHhd9Fqda4rjsErdsFqdnMDMlGojUMAe4Uojn6rTa7
Emptied folder: C:\Users\Iv40o\AppData\Roaming\mozilla\firefox\profiles\56djd1lx.default\minidumps [4 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 13-Sep-14 at  2:31:32.53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

ESET OnlineScan

C:\Users\Iv40o\Downloads\ccsetup416.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
D:\Downdloads\ccsetup417.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
 



#3 Bless3r

Bless3r
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 AM

Posted 13 September 2014 - 09:55 AM

I also read that you require DDS report, here it is:

(it has been done after all the other scans)

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17280  BrowserJavaVersion: 10.67.2
Run by Iv40o at 16:08:32 on 2014-09-13
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.8159.5130 [GMT 2:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Windows\system32\IProsetMonitor.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
C:\Windows\system32\RAPID\SamsungRapidSvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\EC Simulator.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = www.google.com
mStart Page = www.google.com
mWinlogon: Userinit = userinit.exe,
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
mRun: [ASUS ShellProcess Execute] C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
StartupFolder: C:\Users\Iv40o\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Samsung Magician.lnk - C:\Windows\System32\schtasks.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~1\Microsoft Office\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\Microsoft Office\Office15\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
TCP: NameServer = 212.56.128.136 212.56.128.132
TCP: Interfaces\{BAC3DC8F-4593-41F9-B3B0-6203E8D98513} : DHCPNameServer = 212.56.128.136 212.56.128.132
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
SSODL: WebCheck - <orphaned>
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [SamsungRapidApp] C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
x64-Run: [AtherosBtStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
x64-Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com.mt/
FF - plugin: C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2014-9-12 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2014-9-12 224896]
R0 SamsungRapidDiskFltr;SAMSUNG RAPID Mode Disk Filter Driver;C:\Windows\System32\drivers\SamsungRapidDiskFltr.sys [2014-7-29 265952]
R0 SamsungRapidFSFltr;SamsungRapidFSFltr;C:\Windows\System32\drivers\SamsungRapidFSFltr.sys [2014-5-19 111328]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2014-9-12 1041168]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2014-9-12 427360]
R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [2014-7-30 918144]
R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [2014-7-30 915584]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2014-7-30 586880]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-9-12 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-9-12 79184]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2014-9-12 92008]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2011-3-13 74912]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-9-12 50344]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2013-11-1 241416]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2014-7-30 161560]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-9-13 1809720]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-7-28 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-7-28 18956064]
R2 RzKLService;RzKLService;C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2014-7-28 105448]
R2 SamsungRapidSvc;Samsung RAPID Mode Service;system32\RAPID\SamsungRapidSvc.exe --> system32\RAPID\SamsungRapidSvc.exe [?]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-7-30 411936]
R3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\System32\drivers\btath_flt.sys [2011-3-13 36000]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\System32\drivers\btath_a2dp.sys [2011-3-13 298656]
R3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\System32\drivers\btath_bus.sys [2011-3-13 28832]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\drivers\btath_hcrp.sys [2011-3-13 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\drivers\btath_lwflt.sys [2011-3-13 55456]
R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\System32\drivers\btath_rcp.sys [2011-3-13 154272]
R3 BtFilter;BtFilter;C:\Windows\System32\drivers\btfilter.sys [2011-3-13 280224]
R3 ICCWDT;Intel® Watchdog Timer Driver (Intel® WDT);C:\Windows\System32\drivers\ICCWDT.sys [2014-7-30 26136]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-9-13 25816]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-12-10 181248]
R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-7-28 20256]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-7-28 40392]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-9-13 860472]
S3 ATHDFU;Atheros Valkyrie USB BootROM;C:\Windows\System32\drivers\AthDfu.sys [2011-3-13 51872]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-9-11 111616]
S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-9-13 63704]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-1 178824]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2014-6-10 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-7-28 1255736]
.
=============== Created Last 30 ================
.
2014-09-13 00:32:36    --------    d-----w-    C:\Program Files (x86)\ESET
2014-09-13 00:26:24    --------    d-----w-    C:\Windows\ERUNT
2014-09-13 00:10:26    536576    ----a-w-    C:\Windows\SysWow64\sqlite3.dll
2014-09-13 00:04:01    122584    ----a-w-    C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-09-13 00:03:52    --------    d-----w-    C:\AdwCleaner
2014-09-13 00:03:11    91352    ----a-w-    C:\Windows\System32\drivers\mbamchameleon.sys
2014-09-13 00:03:11    63704    ----a-w-    C:\Windows\System32\drivers\mwac.sys
2014-09-13 00:03:11    25816    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2014-09-13 00:03:10    --------    d-----w-    C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-12 00:59:02    111016    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll
2014-09-12 00:42:44    --------    d-----w-    C:\Users\Iv40o\AppData\Roaming\AVAST Software
2014-09-12 00:42:21    93568    ----a-w-    C:\Windows\System32\drivers\aswRdr2.sys
2014-09-12 00:42:21    92008    ----a-w-    C:\Windows\System32\drivers\aswStm.sys
2014-09-12 00:42:21    79184    ----a-w-    C:\Windows\System32\drivers\aswMonFlt.sys
2014-09-12 00:42:21    65776    ----a-w-    C:\Windows\System32\drivers\aswRvrt.sys
2014-09-12 00:42:21    29208    ----a-w-    C:\Windows\System32\drivers\aswHwid.sys
2014-09-12 00:42:21    224896    ----a-w-    C:\Windows\System32\drivers\aswVmm.sys
2014-09-12 00:42:21    1041168    ----a-w-    C:\Windows\System32\drivers\aswSnx.sys
2014-09-12 00:42:19    43152    ----a-w-    C:\Windows\avastSS.scr
2014-09-12 00:40:58    --------    d-----w-    C:\Program Files\AVAST Software
2014-09-12 00:40:15    --------    d-----w-    C:\ProgramData\AVAST Software
2014-09-12 00:24:35    --------    d-----w-    C:\ProgramData\Malwarebytes
2014-09-10 23:35:38    728064    ----a-w-    C:\Windows\System32\kerberos.dll
2014-09-10 23:35:38    550912    ----a-w-    C:\Windows\SysWow64\kerberos.dll
2014-09-10 23:35:38    22016    ----a-w-    C:\Windows\SysWow64\secur32.dll
2014-09-10 23:35:38    1460736    ----a-w-    C:\Windows\System32\lsasrv.dll
2014-09-10 23:35:37    96768    ----a-w-    C:\Windows\SysWow64\sspicli.dll
2014-09-09 19:08:34    159744    ----a-w-    C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll
2014-09-09 19:08:34    159744    ----a-w-    C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll
2014-09-09 19:08:34    159744    ----a-w-    C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll
2014-09-09 19:08:34    159744    ----a-w-    C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll
2014-09-09 19:08:34    159744    ----a-w-    C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll
2014-09-02 18:24:30    --------    d-----w-    C:\Users\Iv40o\AppData\Roaming\NVIDIA
2014-09-02 17:15:21    11319192    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9E9A5067-3707-4E9C-964B-8752EF6AA05F}\mpengine.dll
2014-08-28 11:43:50    404480    ----a-w-    C:\Windows\System32\gdi32.dll
2014-08-28 11:43:50    3163648    ----a-w-    C:\Windows\System32\win32k.sys
2014-08-28 11:43:50    311808    ----a-w-    C:\Windows\SysWow64\gdi32.dll
2014-08-25 12:52:36    --------    d-----w-    C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-25 12:52:36    --------    d-----w-    C:\Program Files\iTunes
2014-08-25 12:52:36    --------    d-----w-    C:\Program Files\iPod
2014-08-25 12:52:36    --------    d-----w-    C:\Program Files (x86)\iTunes
2014-08-23 16:11:43    --------    d-----w-    C:\ProgramData\dealsTer
2014-08-17 22:03:03    --------    d-----w-    C:\Users\Iv40o\AppData\Roaming\Awesomium
2014-08-17 18:14:20    --------    d-----w-    C:\Program Files (x86)\Blade and Soul
2014-08-17 18:09:44    --------    d-----w-    C:\Users\Iv40o\AppData\Roaming\REngLauncher
2014-08-15 01:00:15    99480    ----a-w-    C:\Windows\SysWow64\infocardapi.dll
2014-08-15 01:00:15    8856    ----a-w-    C:\Windows\SysWow64\icardres.dll
2014-08-15 01:00:15    8856    ----a-w-    C:\Windows\System32\icardres.dll
2014-08-15 01:00:15    619672    ----a-w-    C:\Windows\SysWow64\icardagt.exe
2014-08-15 01:00:15    171160    ----a-w-    C:\Windows\System32\infocardapi.dll
2014-08-15 01:00:15    1389208    ----a-w-    C:\Windows\System32\icardagt.exe
2014-08-15 01:00:13    35480    ----a-w-    C:\Windows\SysWow64\TsWpfWrp.exe
2014-08-15 01:00:13    35480    ----a-w-    C:\Windows\System32\TsWpfWrp.exe
2014-08-14 21:39:13    --------    d-----w-    C:\Users\Iv40o\AppData\Local\Packages
2014-08-14 21:39:07    --------    d-----w-    C:\Users\Iv40o\AppData\Local\Comodo
2014-08-14 21:39:07    --------    d-----w-    C:\ProgramData\17c96758626a8572
2014-08-14 16:42:46    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2014-08-14 16:42:46    2048    ----a-w-    C:\Windows\System32\tzres.dll
2014-08-14 16:42:45    985536    ----a-w-    C:\Windows\System32\drivers\dxgkrnl.sys
2014-08-14 16:42:45    504320    ----a-w-    C:\Windows\System32\msihnd.dll
2014-08-14 16:42:45    337408    ----a-w-    C:\Windows\SysWow64\msihnd.dll
2014-08-14 16:42:45    3241984    ----a-w-    C:\Windows\System32\msi.dll
2014-08-14 16:42:45    2363392    ----a-w-    C:\Windows\SysWow64\msi.dll
2014-08-14 16:42:45    1941504    ----a-w-    C:\Windows\System32\authui.dll
2014-08-14 16:42:45    1805824    ----a-w-    C:\Windows\SysWow64\authui.dll
2014-08-14 16:42:45    112064    ----a-w-    C:\Windows\System32\consent.exe
2014-08-14 16:42:27    1216000    ----a-w-    C:\Windows\System32\rpcrt4.dll
2014-08-14 16:42:26    664064    ----a-w-    C:\Windows\SysWow64\rpcrt4.dll
.
==================== Find3M  ====================
.
2014-09-10 12:35:21    71344    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-10 12:35:21    701104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-08-18 22:29:49    2724864    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-08-18 22:29:35    4096    ----a-w-    C:\Windows\System32\ieetwcollectorres.dll
2014-08-18 22:19:53    5833728    ----a-w-    C:\Windows\System32\jscript9.dll
2014-08-18 22:15:34    547328    ----a-w-    C:\Windows\System32\vbscript.dll
2014-08-18 22:15:09    66048    ----a-w-    C:\Windows\System32\iesetup.dll
2014-08-18 22:14:38    48640    ----a-w-    C:\Windows\System32\ieetwproxystub.dll
2014-08-18 22:14:10    83968    ----a-w-    C:\Windows\System32\MshtmlDac.dll
2014-08-18 22:08:55    4232704    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-08-18 22:03:47    139264    ----a-w-    C:\Windows\System32\ieUnatt.exe
2014-08-18 22:03:37    111616    ----a-w-    C:\Windows\System32\ieetwcollector.exe
2014-08-18 22:03:01    758272    ----a-w-    C:\Windows\System32\jscript9diag.dll
2014-08-18 21:57:44    2724864    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-08-18 21:56:17    940032    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2014-08-18 21:46:26    454656    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2014-08-18 21:45:23    61952    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-08-18 21:45:12    72704    ----a-w-    C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-08-18 21:44:44    51200    ----a-w-    C:\Windows\SysWow64\ieetwproxystub.dll
2014-08-18 21:44:09    61952    ----a-w-    C:\Windows\SysWow64\MshtmlDac.dll
2014-08-18 21:36:07    112128    ----a-w-    C:\Windows\SysWow64\ieUnatt.exe
2014-08-18 21:35:24    597504    ----a-w-    C:\Windows\SysWow64\jscript9diag.dll
2014-08-18 21:23:17    2104832    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-08-18 21:23:16    1249280    ----a-w-    C:\Windows\System32\mshtmlmedia.dll
2014-08-18 21:22:48    60416    ----a-w-    C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-08-18 21:15:13    2310656    ----a-w-    C:\Windows\System32\wininet.dll
2014-08-18 21:08:54    2014208    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-08-18 21:07:44    1068032    ----a-w-    C:\Windows\SysWow64\mshtmlmedia.dll
2014-08-18 20:46:48    1812992    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-08-09 14:03:37    98216    ----a-w-    C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-08-05 07:20:00    270496    ------w-    C:\Windows\System32\MpSigStub.exe
2014-07-30 14:58:26    16896    ----a-w-    C:\Windows\AsTaskSched.dll
2014-07-28 18:00:41    878080    ----a-w-    C:\Windows\System32\advapi32.dll
2014-07-28 18:00:41    859648    ----a-w-    C:\Windows\System32\tdh.dll
2014-07-28 18:00:41    640512    ----a-w-    C:\Windows\SysWow64\advapi32.dll
2014-07-28 18:00:41    619520    ----a-w-    C:\Windows\SysWow64\tdh.dll
2014-07-28 18:00:41    1732032    ----a-w-    C:\Windows\System32\ntdll.dll
2014-07-28 18:00:41    1292192    ----a-w-    C:\Windows\SysWow64\ntdll.dll
2014-07-28 18:00:18    327168    ----a-w-    C:\Windows\System32\mswsock.dll
2014-07-28 18:00:18    231424    ----a-w-    C:\Windows\SysWow64\mswsock.dll
2014-07-28 17:57:56    1887232    ----a-w-    C:\Windows\System32\d3d11.dll
2014-07-28 17:57:56    1505280    ----a-w-    C:\Windows\SysWow64\d3d11.dll
2014-07-28 13:04:17    13824    ----a-w-    C:\Windows\SysWow64\slwga.dll
2014-07-25 13:50:29    1291280    ----a-w-    C:\Windows\SysWow64\nvspbridge.dll
2014-07-25 13:50:29    1126480    ----a-w-    C:\Windows\SysWow64\nvspcap.dll
2014-07-25 13:50:11    1715224    ----a-w-    C:\Windows\System32\nvspbridge64.dll
2014-07-25 13:50:11    1283136    ----a-w-    C:\Windows\System32\nvspcap64.dll
2014-07-25 00:35:46    875688    ----a-w-    C:\Windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47:06    869544    ----a-w-    C:\Windows\System32\msvcr120_clr0400.dll
2014-07-02 18:55:43    6783776    ----a-w-    C:\Windows\System32\nvcpl.dll
2014-07-02 18:55:43    3522392    ----a-w-    C:\Windows\System32\nvsvc64.dll
2014-07-02 18:55:41    935368    ----a-w-    C:\Windows\System32\nvvsvc.exe
2014-07-02 18:55:41    62808    ----a-w-    C:\Windows\System32\nvshext.dll
2014-07-02 18:55:41    386520    ----a-w-    C:\Windows\System32\nvmctray.dll
2014-07-02 17:44:45    609240    ----a-w-    C:\Windows\SysWow64\nvStreaming.exe
2014-07-02 10:14:12    3826628    ----a-w-    C:\Windows\System32\nvcoproc.bin
2014-06-18 02:18:30    692736    ----a-w-    C:\Windows\System32\osk.exe
2014-06-18 01:51:32    646144    ----a-w-    C:\Windows\SysWow64\osk.exe
.
============= FINISH: 16:08:44.05 ===============
 



#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:59 AM

Posted 18 September 2014 - 08:40 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Try this fix.
Firefox:
Reset Default Browsing settings:
https://support.mozilla.org/en-US/kb/reset-firefox-easily-fix-problems?utm_expid=65912487-41.djHNRQY0RhaLvvtvcd0BQA.2&utm_referrer=https%3A%2F%2Fwww.google.ca%2F
===


Download the version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.
To attach a file select the "More Reply Option" and follow the instructions.
===

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.

If the site is busy or not available use this mirror site:
http://www.bleepingcomputer.com/download/securitycheck/

How is the computer running?


===

#5 Bless3r

Bless3r
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 AM

Posted 18 September 2014 - 07:20 PM

All done as asked.

 

The computer is running smoothly.
The only thing that I dont understand is, sometimes when browsing (lets say youtube) it wouldnt load the images of videos, or it would do it very slow.
I can play them right away with no problems.

 

After reseting FireFox, the top problem seems to have been fixed, also I dont get warnings from Avast anymore.

I still get warnings from time to time from Malwarebytes coming from C:\Users\Iv40o\AppData\Roaming\uTorrent\uTorrent.exe (most often).

 

 

Here are the logs.

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by Iv40o (administrator) on BLESSER on 18-09-2014 17:28:33
Running from D:\Downdloads
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\EC Simulator.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe [281312 2014-05-19] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [617120 2011-03-13] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-03-13] (Atheros Commnucations)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUS ShellProcess Execute] => C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe [252544 2010-09-28] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-09-12] (AVAST Software)
HKU\S-1-5-21-826628913-2062104102-2873807026-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [24477056 2014-06-27] (Google)
Startup: C:\Users\Iv40o\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk
ShortcutTarget: Samsung Magician.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x19023EA567AACF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 212.56.128.136 212.56.128.132

FireFox:
========
FF ProfilePath: C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default
FF Homepage: https://www.google.com.mt/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Extension: deaaLster - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\aoei@rca-.edu [2014-08-23]
FF Extension: MySearch - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\ks8726a@svvpvags.org [2014-08-14]
FF Extension: Does Amazon Ship to ...? - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\DoesAmazonShipTo@usefulhelper.com.xpi [2014-07-28]
FF Extension: Adblock Plus - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-28]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-09-12]

Chrome:
=======
CHR Profile: C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (MySearch) - C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnhhgclcmgkapcdimjjlplnlfpgdnjbc [2014-08-14]
CHR Extension: (TabCloud) - C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2014-08-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-09-12]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [74912 2011-03-13] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-09-12] (AVAST Software)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 SamsungRapidSvc; C:\Windows\System32\RAPID\SamsungRapidSvc.exe [27872 2014-05-19] (Samsung Electronics Co., Ltd.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-25] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-09-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-09-12] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-09-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-09-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-09-12] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-09-12] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-09-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-09-12] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-18] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 SamsungRapidDiskFltr; C:\Windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [265952 2014-05-19] (Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\Windows\System32\DRIVERS\SamsungRapidFSFltr.sys [111328 2014-05-19] (Samsung Electronics Co., Ltd.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-18 17:28 - 2014-09-18 17:28 - 00000000 ____D () C:\FRST
2014-09-18 14:17 - 2014-09-18 14:17 - 00000000 ___RD () C:\Users\Iv40o\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-16 16:56 - 2014-09-16 16:59 - 00001329 _____ () C:\Users\Iv40o\Desktop\New Text Document (2).txt
2014-09-16 00:35 - 2014-09-18 14:17 - 00000840 _____ () C:\Windows\setupact.log
2014-09-16 00:35 - 2014-09-16 00:35 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-13 16:47 - 2014-09-13 16:48 - 00228321 _____ () C:\Users\Iv40o\Desktop\New Text Document.txt
2014-09-13 16:32 - 2014-09-13 02:21 - 00216854 _____ () C:\Users\Iv40o\Desktop\TDSSKiller.txt
2014-09-13 16:08 - 2014-09-13 16:08 - 00025979 _____ () C:\Users\Iv40o\Desktop\dds.txt
2014-09-13 16:08 - 2014-09-13 16:08 - 00007928 _____ () C:\Users\Iv40o\Desktop\attach.txt
2014-09-13 08:51 - 2014-09-13 02:10 - 00006420 _____ () C:\Users\Iv40o\Desktop\AdwCleaner.txt
2014-09-13 08:46 - 2014-09-13 08:45 - 00046389 _____ () C:\Users\Iv40o\Desktop\avastWebShield.txt
2014-09-13 08:39 - 2014-09-13 08:39 - 00026673 _____ () C:\Users\Iv40o\Desktop\Malwarebytes.txt
2014-09-13 08:37 - 2014-09-13 08:37 - 00000239 _____ () C:\Users\Iv40o\Desktop\esetscan.txt
2014-09-13 02:32 - 2014-09-13 02:32 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-09-13 02:31 - 2014-09-13 02:31 - 00001052 _____ () C:\Users\Iv40o\Desktop\JRT.txt
2014-09-13 02:26 - 2014-09-13 02:26 - 00000000 ____D () C:\Windows\ERUNT
2014-09-13 02:20 - 2014-07-10 12:38 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Iv40o\Desktop\TDSSKiller.exe
2014-09-13 02:19 - 2014-09-13 02:19 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\WinRAR
2014-09-13 02:17 - 2014-09-13 02:18 - 00037499 _____ () C:\Users\Iv40o\Desktop\MiniInToolBox.txt
2014-09-13 02:10 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-13 02:04 - 2014-09-18 17:18 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-13 02:03 - 2014-09-13 02:24 - 00000000 ____D () C:\AdwCleaner
2014-09-13 02:03 - 2014-09-13 02:03 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-13 02:03 - 2014-09-13 02:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-13 02:03 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-13 02:03 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-13 02:03 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-13 01:50 - 2014-09-13 01:50 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-13 01:50 - 2014-09-13 01:50 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-09-13 01:50 - 2014-09-13 01:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-12 02:59 - 2014-09-12 02:58 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-09-12 02:59 - 2014-09-12 02:58 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-09-12 02:59 - 2014-09-12 02:58 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-09-12 02:59 - 2014-09-12 02:58 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-09-12 02:57 - 2014-09-12 02:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-09-12 02:57 - 2014-09-12 02:57 - 00000000 ____D () C:\Program Files\7-Zip
2014-09-12 02:42 - 2014-09-17 12:55 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-09-12 02:42 - 2014-09-13 18:24 - 00002016 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-09-12 02:42 - 2014-09-12 02:42 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-09-12 02:42 - 2014-09-12 02:42 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-12 02:42 - 2014-09-12 02:42 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\AVAST Software
2014-09-12 02:42 - 2014-09-12 02:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-12 02:40 - 2014-09-12 02:40 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-12 02:40 - 2014-09-12 02:40 - 00000000 ____D () C:\Program Files\AVAST Software
2014-09-12 02:24 - 2014-09-12 02:24 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-11 03:03 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-11 03:03 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-11 03:03 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-11 03:03 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-11 03:03 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-11 03:03 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-11 03:03 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-11 03:03 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-11 03:03 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-11 03:03 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-11 03:03 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-11 03:03 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-11 03:03 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-11 03:03 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-11 03:03 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-11 03:03 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-11 03:03 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-11 03:03 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-11 03:03 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-11 03:03 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-11 03:03 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-11 03:03 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-11 03:03 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-11 03:03 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-11 03:03 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-11 03:03 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-11 03:03 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-11 03:03 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-11 03:03 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-11 03:03 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-11 03:03 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-11 03:03 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-11 03:03 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-11 03:03 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-11 03:03 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-11 03:03 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-11 03:03 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-11 03:03 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-11 03:03 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-11 03:03 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-11 03:03 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-11 03:03 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-11 03:03 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-11 03:03 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-11 03:03 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-11 03:03 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-11 03:03 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-11 03:03 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-11 03:03 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-11 03:03 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-11 03:03 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-11 03:03 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-11 03:03 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-11 03:03 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-11 03:03 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-11 03:03 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-11 01:35 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-11 01:35 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-11 01:35 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-11 01:35 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-11 01:35 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-09 21:08 - 2014-09-09 21:08 - 00001845 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-09-05 18:38 - 2014-09-05 18:40 - 00000000 ____D () C:\Users\Iv40o\Desktop\PCX
2014-09-03 02:24 - 2014-09-03 02:25 - 00000059 _____ () C:\Users\Iv40o\Desktop\grom.txt
2014-09-02 20:24 - 2014-09-02 20:24 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\NVIDIA
2014-08-28 13:43 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 13:43 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 13:43 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-25 14:52 - 2014-08-25 14:52 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\Program Files\iTunes
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\Program Files\iPod
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-08-25 14:50 - 2014-08-25 14:50 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-08-23 18:11 - 2014-09-12 02:32 - 00000000 ____D () C:\ProgramData\dealsTer
2014-08-22 12:46 - 2014-09-18 14:20 - 01168851 _____ () C:\Windows\WindowsUpdate.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-18 17:28 - 2014-09-18 17:28 - 00000000 ____D () C:\FRST
2014-09-18 17:18 - 2014-09-13 02:04 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-18 16:48 - 2014-08-02 17:43 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-18 16:35 - 2014-07-28 15:40 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-18 14:37 - 2014-07-29 15:29 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-09-18 14:23 - 2009-07-14 07:13 - 00785878 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-18 14:20 - 2014-08-22 12:46 - 01168851 _____ () C:\Windows\WindowsUpdate.log
2014-09-18 14:17 - 2014-09-18 14:17 - 00000000 ___RD () C:\Users\Iv40o\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-18 14:17 - 2014-09-16 00:35 - 00000840 _____ () C:\Windows\setupact.log
2014-09-18 14:17 - 2014-08-02 17:46 - 00000000 ___RD () C:\Users\Iv40o\Google Drive
2014-09-18 14:17 - 2014-08-02 17:43 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-18 14:17 - 2014-07-28 15:47 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-18 14:17 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-18 05:33 - 2014-07-28 15:49 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\Skype
2014-09-18 04:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-09-18 02:13 - 2014-07-29 00:43 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\uTorrent
2014-09-18 02:12 - 2014-07-29 01:47 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\vlc
2014-09-17 13:13 - 2014-07-28 19:51 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\ViberPC
2014-09-17 13:12 - 2014-07-28 19:50 - 00000000 ____D () C:\Users\Iv40o\AppData\Local\Viber
2014-09-17 12:55 - 2014-09-12 02:42 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-09-16 16:59 - 2014-09-16 16:56 - 00001329 _____ () C:\Users\Iv40o\Desktop\New Text Document (2).txt
2014-09-16 00:35 - 2014-09-16 00:35 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-14 03:51 - 2009-07-14 06:45 - 00020640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-14 03:51 - 2009-07-14 06:45 - 00020640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-13 18:24 - 2014-09-12 02:42 - 00002016 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-09-13 16:48 - 2014-09-13 16:47 - 00228321 _____ () C:\Users\Iv40o\Desktop\New Text Document.txt
2014-09-13 16:08 - 2014-09-13 16:08 - 00025979 _____ () C:\Users\Iv40o\Desktop\dds.txt
2014-09-13 16:08 - 2014-09-13 16:08 - 00007928 _____ () C:\Users\Iv40o\Desktop\attach.txt
2014-09-13 08:45 - 2014-09-13 08:46 - 00046389 _____ () C:\Users\Iv40o\Desktop\avastWebShield.txt
2014-09-13 08:39 - 2014-09-13 08:39 - 00026673 _____ () C:\Users\Iv40o\Desktop\Malwarebytes.txt
2014-09-13 08:37 - 2014-09-13 08:37 - 00000239 _____ () C:\Users\Iv40o\Desktop\esetscan.txt
2014-09-13 02:32 - 2014-09-13 02:32 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-09-13 02:31 - 2014-09-13 02:31 - 00001052 _____ () C:\Users\Iv40o\Desktop\JRT.txt
2014-09-13 02:26 - 2014-09-13 02:26 - 00000000 ____D () C:\Windows\ERUNT
2014-09-13 02:24 - 2014-09-13 02:03 - 00000000 ____D () C:\AdwCleaner
2014-09-13 02:21 - 2014-09-13 16:32 - 00216854 _____ () C:\Users\Iv40o\Desktop\TDSSKiller.txt
2014-09-13 02:19 - 2014-09-13 02:19 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\WinRAR
2014-09-13 02:18 - 2014-09-13 02:17 - 00037499 _____ () C:\Users\Iv40o\Desktop\MiniInToolBox.txt
2014-09-13 02:10 - 2014-09-13 08:51 - 00006420 _____ () C:\Users\Iv40o\Desktop\AdwCleaner.txt
2014-09-13 02:03 - 2014-09-13 02:03 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-13 02:03 - 2014-09-13 02:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-13 01:50 - 2014-09-13 01:50 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-13 01:50 - 2014-09-13 01:50 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-09-13 01:50 - 2014-09-13 01:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-13 01:50 - 2014-08-11 03:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-12 05:14 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-09-12 02:59 - 2014-07-28 15:25 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-12 02:59 - 2014-07-28 15:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-12 02:59 - 2014-07-28 15:25 - 00000000 ____D () C:\Program Files\WinRAR
2014-09-12 02:58 - 2014-09-12 02:59 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-09-12 02:58 - 2014-09-12 02:59 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-09-12 02:58 - 2014-09-12 02:59 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-09-12 02:58 - 2014-09-12 02:59 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-09-12 02:57 - 2014-09-12 02:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-09-12 02:57 - 2014-09-12 02:57 - 00000000 ____D () C:\Program Files\7-Zip
2014-09-12 02:42 - 2014-09-12 02:42 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-09-12 02:42 - 2014-09-12 02:42 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-12 02:42 - 2014-09-12 02:42 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-12 02:42 - 2014-09-12 02:42 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\AVAST Software
2014-09-12 02:42 - 2014-09-12 02:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-12 02:40 - 2014-09-12 02:40 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-12 02:40 - 2014-09-12 02:40 - 00000000 ____D () C:\Program Files\AVAST Software
2014-09-12 02:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Speech
2014-09-12 02:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-09-12 02:32 - 2014-08-23 18:11 - 00000000 ____D () C:\ProgramData\dealsTer
2014-09-12 02:24 - 2014-09-12 02:24 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-12 02:18 - 2014-08-11 02:54 - 00000000 ____D () C:\Users\Iv40o\AppData\Local\CrashDumps
2014-09-11 03:02 - 2014-07-28 19:49 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-11 03:02 - 2014-07-28 15:42 - 00778000 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-11 03:00 - 2014-07-28 19:49 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-10 14:35 - 2014-07-28 15:40 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-10 14:35 - 2014-07-28 15:40 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-10 14:35 - 2014-07-28 15:40 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-09 21:08 - 2014-09-09 21:08 - 00001845 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-09-09 21:08 - 2014-07-28 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-09-09 21:08 - 2014-07-28 15:38 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-09-08 16:49 - 2014-08-06 04:05 - 00000000 ____D () C:\Windows\Minidump
2014-09-06 18:15 - 2014-07-29 00:25 - 00000000 ____D () C:\Program Files\Waterfox.bak
2014-09-06 17:47 - 2014-08-14 23:39 - 00000000 ____D () C:\ProgramData\17c96758626a8572
2014-09-05 18:40 - 2014-09-05 18:38 - 00000000 ____D () C:\Users\Iv40o\Desktop\PCX
2014-09-05 03:10 - 2014-07-28 19:46 - 00000868 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-03 02:25 - 2014-09-03 02:24 - 00000059 _____ () C:\Users\Iv40o\Desktop\grom.txt
2014-09-02 20:24 - 2014-09-02 20:24 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\NVIDIA
2014-08-28 22:02 - 2009-07-14 06:45 - 00435240 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-28 21:24 - 2014-08-01 18:39 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\TS3Client
2014-08-28 21:24 - 2014-07-28 19:46 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-25 14:52 - 2014-08-25 14:52 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\Program Files\iTunes
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\Program Files\iPod
2014-08-25 14:52 - 2014-08-25 14:52 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-08-25 14:51 - 2014-07-28 15:37 - 00000000 ____D () C:\Users\Iv40o\AppData\Roaming\Apple Computer
2014-08-25 14:50 - 2014-08-25 14:50 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-08-23 04:07 - 2014-08-28 13:43 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 03:45 - 2014-08-28 13:43 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-23 02:59 - 2014-08-28 13:43 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-19 20:05 - 2014-09-11 03:03 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-19 19:39 - 2014-09-11 03:03 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-19 01:01 - 2014-09-11 03:03 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-19 00:29 - 2014-09-11 03:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-19 00:29 - 2014-09-11 03:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-19 00:26 - 2014-09-11 03:03 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-19 00:20 - 2014-09-11 03:03 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-19 00:19 - 2014-09-11 03:03 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-19 00:15 - 2014-09-11 03:03 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-19 00:15 - 2014-09-11 03:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-19 00:14 - 2014-09-11 03:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-19 00:14 - 2014-09-11 03:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-19 00:08 - 2014-09-11 03:03 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-19 00:08 - 2014-09-11 03:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-19 00:08 - 2014-09-11 03:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-19 00:05 - 2014-09-11 03:03 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-19 00:03 - 2014-09-11 03:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-19 00:03 - 2014-09-11 03:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-19 00:03 - 2014-09-11 03:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-16 06:07

==================== End Of Log ============================

 

 

 

 

 Results of screen317's Security Check version 0.99.87  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Java 7 Update 67  
 Adobe Flash Player 10 Flash Player out of Date!
 Adobe Flash Player 15.0.0.152  
 Mozilla Firefox (32.0.1)
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamscheduler.exe   
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 12% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
 

Attached Files


Edited by Bless3r, 18 September 2014 - 07:55 PM.


#6 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:59 AM

Posted 19 September 2014 - 07:45 AM

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Extension: deaaLster - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\aoei@rca-.edu [2014-08-23]
FF Extension: MySearch - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\ks8726a@svvpvags.org [2014-08-14]
CHR Extension: (MySearch) - C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnhhgclcmgkapcdimjjlplnlfpgdnjbc [2014-08-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

End
Save the files as fixlist.txt into the same folder as FRST

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Remove this old version of Adobe Flash Player 10 using the Add/Remove Programs.

===
 

I still get warnings from time to time from Malwarebytes coming from C:\Users\Iv40o\AppData\Roaming\uTorrent\uTorrent.exe (most often).


C:\Users\Iv40o\AppData\Roaming\uTorrent\uTorrent.exe
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32691 - BitTorrent Inc.)


uTorrent is considered as PUP.Optional. (Potentially Unwanted Program)
It can be uninstalled with the Add/Remove Programs.
Your call if you want to keep it.
===

If all is well.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

#7 Bless3r

Bless3r
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 AM

Posted 19 September 2014 - 09:09 AM

Scan done and Adobe FP 10 is removed.

Im reading the post you suggested,thanks.

If everything is cleaned up, shall I remove all the programs and their log files?
Here is the log.

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-09-2014
Ran by Iv40o at 2014-09-19 16:00:39 Run:1
Running from C:\Users\Iv40o\Desktop\wawawawa
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Extension: deaaLster - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\aoei@rca-.edu [2014-08-23]
FF Extension: MySearch - C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\ks8726a@svvpvags.org [2014-08-14]
CHR Extension: (MySearch) - C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnhhgclcmgkapcdimjjlplnlfpgdnjbc [2014-08-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

End
*****************

C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully.
C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\aoei@rca-.edu not found.
C:\Users\Iv40o\AppData\Roaming\Mozilla\Firefox\Profiles\56djd1lx.default\Extensions\ks8726a@svvpvags.org not found.
C:\Users\Iv40o\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnhhgclcmgkapcdimjjlplnlfpgdnjbc => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
EagleX64 => Service deleted successfully.
VGPU => Service deleted successfully.


The system needed a reboot.

==== End of Fixlog ====

Attached Files


Edited by Bless3r, 19 September 2014 - 09:10 AM.


#8 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:59 AM

Posted 19 September 2014 - 01:12 PM

If everything is cleaned up, shall I remove all the programs and their log files?


You remove the AdwCleaner tool by running the application and follow the instructions.

The other you can just delete the programs and files associated with the tool.

#9 Bless3r

Bless3r
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 AM

Posted 19 September 2014 - 07:50 PM

Everything seems to be good now.

Many thanks to you, nasdaq and all of your team.
 



#10 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:59 AM

Posted 20 September 2014 - 07:56 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users