Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Trojan, how do I remove it?


  • Please log in to reply
10 replies to this topic

#1 Sprinkles82

Sprinkles82

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 07 October 2014 - 06:39 PM

Im afraid my computer has been infected with a trojan, im not really sure which program is causing it but when AVG does its scans it will say it has detected a virus. Can someone please help me with this issue?

Edit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs to the more appropriate forum. Also duplicate topic deleted.~ Animal

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,561 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 AM

Posted 08 October 2014 - 11:25 AM

Hi Sprinkles, let's do these next.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Sprinkles82

Sprinkles82
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 12 October 2014 - 10:32 AM

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Hector (administrator) on 12-10-2014 at 08:12:58
Running from "C:\Users\Hector\Downloads"
Microsoft Windows 8  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe FE Family Controller = Ethernet (Connected)
Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter = Wi-Fi (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Megatron
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : nc.rr.com

Wireless LAN adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 12-16-D8-13-B7-6F
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . : nc.rr.com
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 84-34-97-8A-80-F7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::45a2:5e7:f1e3:3a94%14(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.6(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, October 12, 2014 7:56:00 AM
   Lease Expires . . . . . . . . . . : Sunday, October 12, 2014 8:56:01 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 377762967
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-06-2E-30-84-34-97-8A-80-F7
   DNS Servers . . . . . . . . . . . : 209.18.47.61
                                       209.18.47.62
   NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : nc.rr.com
   Description . . . . . . . . . . . : Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter
   Physical Address. . . . . . . . . : 20-16-D8-13-B7-6F
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:24d4:2ac9:b441:175f(Preferred)
   Link-local IPv6 Address . . . . . : fe80::24d4:2ac9:b441:175f%17(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.nc.rr.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : nc.rr.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    google.com
Addresses:  2607:f8b0:4004:801::1004
      74.125.228.0
      74.125.228.2
      74.125.228.9
      74.125.228.4
      74.125.228.5
      74.125.228.14
      74.125.228.1
      74.125.228.7
      74.125.228.8
      74.125.228.6
      74.125.228.3


Pinging google.com [173.194.121.46] with 32 bytes of data:
Reply from 173.194.121.46: bytes=32 time=42ms TTL=54
Reply from 173.194.121.46: bytes=32 time=31ms TTL=54

Ping statistics for 173.194.121.46:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 31ms, Maximum = 42ms, Average = 36ms
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=63ms TTL=48
Reply from 98.138.253.109: bytes=32 time=71ms TTL=48

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 63ms, Maximum = 71ms, Average = 67ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...12 16 d8 13 b7 6f ......Microsoft Wi-Fi Direct Virtual Adapter
 14...84 34 97 8a 80 f7 ......Realtek PCIe FE Family Controller
 13...20 16 d8 13 b7 6f ......Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.6     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.6    276
      192.168.0.6  255.255.255.255         On-link       192.168.0.6    276
    192.168.0.255  255.255.255.255         On-link       192.168.0.6    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.6    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.6    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17    306 ::/0                     On-link
  1    306 ::1/128                  On-link
 17    306 2001::/32                On-link
 17    306 2001:0:9d38:6abd:24d4:2ac9:b441:175f/128
                                    On-link
 14    276 fe80::/64                On-link
 17    306 fe80::/64                On-link
 17    306 fe80::24d4:2ac9:b441:175f/128
                                    On-link
 14    276 fe80::45a2:5e7:f1e3:3a94/128
                                    On-link
  1    306 ff00::/8                 On-link
 17    306 ff00::/8                 On-link
 14    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/12/2014 08:06:25 AM) (Source: Application Error) (User: )
Description: Faulting application name: msfeedssync.exe, version: 10.0.9200.16384, time stamp: 0x50109c69
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x536464ba
Exception code: 0xc0000005
Fault offset: 0x0000000000005491
Faulting process id: 0xf5c
Faulting application start time: 0xmsfeedssync.exe0
Faulting application path: msfeedssync.exe1
Faulting module path: msfeedssync.exe2
Report Id: msfeedssync.exe3
Faulting package full name: msfeedssync.exe4
Faulting package-relative application ID: msfeedssync.exe5

Error: (10/12/2014 08:03:22 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (10/12/2014 08:03:22 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (10/12/2014 07:58:57 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: Megatron)
Description: Package Microsoft.SkypeApp_1.9.0.2020_x86__kzf8qxf38zg5c was terminated because it took too long to suspend.

Error: (10/11/2014 09:11:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13167638

Error: (10/11/2014 09:11:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13167638

Error: (10/11/2014 09:11:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/11/2014 05:32:05 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3993

Error: (10/11/2014 05:32:05 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3993

Error: (10/11/2014 05:32:05 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (10/12/2014 07:54:49 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (10/12/2014 07:55:44 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:04:59 PM on ‎10/‎11/‎2014 was unexpected.

Error: (10/07/2014 10:57:09 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the HPWMISVC service.

Error: (10/06/2014 09:01:35 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (10/06/2014 09:00:38 AM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service did not shut down properly after receiving a preshutdown control.

Error: (10/06/2014 09:00:00 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (10/04/2014 00:28:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8007041d: Windows Update Setup Handler.

Error: (10/04/2014 02:41:14 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (10/04/2014 02:41:14 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (09/24/2014 02:49:06 PM) (Source: Service Control Manager) (User: )
Description: The Norton Internet Security service hung on starting.


Microsoft Office Sessions:
=========================
Error: (10/12/2014 08:06:25 AM) (Source: Application Error)(User: )
Description: msfeedssync.exe10.0.9200.1638450109c69ntdll.dll6.2.9200.16912536464bac00000050000000000005491f5c01cfe62dfbd9dd51C:\Windows\system32\msfeedssync.exeC:\Windows\SYSTEM32\ntdll.dll54f9d1c8-5221-11e4-bf2a-8434978a80f7

Error: (10/12/2014 08:03:22 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F2030000E5050000

Error: (10/12/2014 08:03:22 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: Performance163707000000000000000000008F020000

Error: (10/12/2014 07:58:57 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: Megatron)
Description: Microsoft.SkypeApp_1.9.0.2020_x86__kzf8qxf38zg5c

Error: (10/11/2014 09:11:29 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13167638

Error: (10/11/2014 09:11:29 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13167638

Error: (10/11/2014 09:11:29 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/11/2014 05:32:05 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3993

Error: (10/11/2014 05:32:05 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3993

Error: (10/11/2014 05:32:05 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
  Date: 2014-10-04 12:39:41.235
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-04 15:02:00.455
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:43:18.369
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:43:17.033
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:40:44.262
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:40:31.657
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:40:11.823
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:40:11.597
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:40:11.456
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 06:40:11.316
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.



=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30303 - BitTorrent Inc.)
4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)
Advanced System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1) (Version: 2.1.1000.12594 - Systweak Software)
AMD Accelerated Video Transcoding (Version: 12.5.100.20808 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{D01E0B82-7D6E-F9AC-9A7D-C6076264F419}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.3.26.0 - AppEx Networks)
AMD VISION Engine Control Center (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{21FC2093-6E43-460B-B9B0-5F5AA35BBB0F}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVG 2013 (HKLM\...\AVG) (Version: 2013.0.3485 - AVG Technologies)
AVG 2013 (Version: 13.0.3485 - AVG Technologies) Hidden
AVG 2013 (Version: 13.0.4031 - AVG Technologies) Hidden
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.1.9.799 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build-a-lot 4 - Power Source (x32 Version: 2.2.0.98 - WildTangent) Hidden
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Curse Client (HKCU\...\101a9f93b8f0bb6f) (Version: 5.1.1.810 - Curse)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5407 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.1.5407 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.1.1916 - CyberLink Corp.) Hidden
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3119 - CyberLink Corp.)
CyberLink PhotoDirector (x32 Version: 2.0.1.3119 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2110 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.2.2110 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDirector 10 (x32 Version: 10.0.1.1925 - CyberLink Corp.) Hidden
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4319 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 10.0.6.4319 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.4.5527 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.5.4.5527 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DesktopWeatherAlerts (HKCU\...\DesktopWeatherAlerts) (Version: 1.0.29.0 - Local Weather LLC)
DMUninstaller (HKLM-x32\...\DMUninstaller) (Version:  - )
DriverTuner 3.1.0.1 (HKLM-x32\...\{520C1D80-935C-42B9-9340-E883849D804F}_is1) (Version: 3.1.0.1 - LionSea SoftWare)
Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
FATE: The Cursed King (x32 Version: 2.2.0.97 - WildTangent) Hidden
FileParade Bundle (HKLM-x32\...\FileParade Bundle) (Version: 1.0.0.0 - FileParade Bundle)
Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
FlatOut 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Gigantic Savings (HKLM-x32\...\Gigantic Savings) (Version: 1.27.153.3 - Innovative Apps)
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Highlightly (HKLM-x32\...\Highlightly) (Version: 1.9.0.0 - Highlightly)
Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden
HP 3D DriveGuard (HKLM\...\{F244D07D-1876-4CDD-914D-214E15A8D327}) (Version: 4.2.5.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP CoolSense (HKLM-x32\...\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}) (Version: 2.10.51 - Hewlett-Packard Company)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{1AC082E0-049D-4C5C-9ECF-9473AD5A949D}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent)
HP MyRoom (HKLM-x32\...\{9C35EDE5-4B0F-45E7-A438-314BA889948E}) (Version: 9.0.0.0 - Hewlett-Packard Company)
HP Postscript Converter (Version: 3.1.3554 - Hewlett-Packard) Hidden
HP Quick Launch (HKLM-x32\...\{E5823036-6F09-4D0A-B05C-E2BAA129288A}) (Version: 3.0.6 - Hewlett-Packard Company)
HP Recovery Manager (x32 Version: 7.00 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Software Framework (HKLM-x32\...\{675D093B-815D-47FD-AB2C-192EC751E8E2}) (Version: 4.6.10.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{B8019B54-F9BE-490A-9619-6D06F18F129F}) (Version: 7.0.32.44 - Hewlett-Packard Company)
HP Utility Center (HKLM-x32\...\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.7 - Hewlett-Packard)
HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.6.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6417.0 - IDT)
Internet Explorer Toolbar 4.8 by SweetPacks (x32 Version: 4.8.0000 - SweetIM Technologies Ltd.) Hidden
iTunes (HKLM\...\{96B53CA8-5ABB-49D8-96F1-F6C0D73A76C6}) (Version: 11.1.4.62 - Apple Inc.)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Mahjongg Dimensions Deluxe: Tiles in Time (x32 Version: 2.2.0.98 - WildTangent) Hidden
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mortimer Beckett and the Crimson Thief Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Mozilla Firefox 29.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 en-US)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Mumble 1.2.4 (HKLM-x32\...\{E0955568-4353-4C85-8988-285A8C0F5E87}) (Version: 1.2.4 - Thorvald Natvig)
Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden
Norton Internet Security (HKLM-x32\...\NIS) (Version: 20.5.0.28 - Symantec Corporation)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.29029 - Realtek Semiconductor Corp.)
RegClean Pro (HKLM-x32\...\RegClean Pro_is1) (Version: 6.21 - Systweak Inc)
Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.12.20.154 - Conduit)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1158 - SUPERAntiSpyware.com)
SweetPacks Updater Service (HKLM-x32\...\WNLT) (Version: 5.1.4.1 - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.12 - Synaptics Incorporated)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
TelevisionFanatic Firefox Toolbar (HKLM-x32\...\TelevisionFanaticbar Uninstall Firefox) (Version:  - Mindspark Interactive Network)
TelevisionFanatic Internet Explorer Toolbar (HKLM-x32\...\TelevisionFanaticbar Uninstall Internet Explorer) (Version:  - Mindspark Interactive Network)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Updater By SweetPacks 2.0.0.586 (Version: 2.0.0.586 - SweetPacks) Hidden
Vacation Quest™ - Australia (x32 Version: 2.2.0.98 - WildTangent) Hidden
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.8 - Flagship Industries, Inc.)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
WebCake 3.00 (HKLM\...\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}) (Version: 3.00 - WebCake LLC)
WhiteSmoke New Toolbar (HKLM-x32\...\WhiteSmoke_New Toolbar) (Version: 6.12.0.11 - WhiteSmoke New)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.9.6 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3554.26 MB
Available physical RAM: 2063.54 MB
Total Pagefile: 5538.26 MB
Available Pagefile: 3848.78 MB
Total Virtual: 4095.88 MB
Available Virtual: 3986.63 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:271.96 GB) (Free:169.85 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:25.36 GB) (Free:3.02 GB) NTFS

========================= Users: ========================================

User accounts for \\MEGATRON

Administrator            Guest                    Hector                   


**** End of log ****
 

 

 



#4 Sprinkles82

Sprinkles82
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 12 October 2014 - 10:34 AM

08:17:25.0344 0x1044  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
08:17:25.0344 0x1044  UEFI system
08:17:38.0115 0x1044  ============================================================
08:17:38.0115 0x1044  Current date / time: 2014/10/12 08:17:38.0115
08:17:38.0115 0x1044  SystemInfo:
08:17:38.0115 0x1044  
08:17:38.0115 0x1044  OS Version: 6.2.9200 ServicePack: 0.0
08:17:38.0115 0x1044  Product type: Workstation
08:17:38.0115 0x1044  ComputerName: MEGATRON
08:17:38.0115 0x1044  UserName: Hector
08:17:38.0115 0x1044  Windows directory: C:\Windows
08:17:38.0115 0x1044  System windows directory: C:\Windows
08:17:38.0115 0x1044  Running under WOW64
08:17:38.0115 0x1044  Processor architecture: Intel x64
08:17:38.0115 0x1044  Number of processors: 2
08:17:38.0115 0x1044  Page size: 0x1000
08:17:38.0115 0x1044  Boot type: Normal boot
08:17:38.0115 0x1044  ============================================================
08:17:39.0995 0x1044  KLMD registered as C:\Windows\system32\drivers\72939581.sys
08:17:40.0441 0x1044  System UUID: {6C1A7684-9A6A-9F3F-4AEF-3E17E996406E}
08:17:41.0232 0x1044  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:17:41.0238 0x1044  ============================================================
08:17:41.0238 0x1044  \Device\Harddisk0\DR0:
08:17:41.0239 0x1044  GPT partitions:
08:17:41.0239 0x1044  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {F50B9768-8358-41F2-8C10-DD125EA953FF}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
08:17:41.0239 0x1044  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {1625DBF4-0D36-4111-B489-A52BDC7AE3BF}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
08:17:41.0239 0x1044  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {9686B2D1-7E3E-4BD0-9F8D-6AD831FF8849}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
08:17:41.0239 0x1044  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {00C72D63-CE17-4AE8-8BFB-804BE5965C67}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x21FED000
08:17:41.0239 0x1044  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F26E8DD7-4E54-491E-942D-1666B60B47D5}, Name: Basic data partition, StartLBA 0x22177800, BlocksNum 0x32B7000
08:17:41.0240 0x1044  MBR partitions:
08:17:41.0240 0x1044  ============================================================
08:17:41.0264 0x1044  C: <-> \Device\Harddisk0\DR0\Partition4
08:17:41.0295 0x1044  D: <-> \Device\Harddisk0\DR0\Partition5
08:17:41.0295 0x1044  ============================================================
08:17:41.0296 0x1044  Initialize success
08:17:41.0296 0x1044  ============================================================
08:17:43.0307 0x1a7c  ============================================================
08:17:43.0307 0x1a7c  Scan started
08:17:43.0307 0x1a7c  Mode: Manual;
08:17:43.0307 0x1a7c  ============================================================
08:17:43.0307 0x1a7c  KSN ping started
08:17:45.0817 0x1a7c  KSN ping finished: true
08:17:46.0655 0x1a7c  ================ Scan system memory ========================
08:17:46.0655 0x1a7c  System memory - ok
08:17:46.0656 0x1a7c  ================ Scan services =============================
08:17:46.0743 0x1a7c  [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
08:17:46.0748 0x1a7c  !SASCORE - ok
08:17:46.0929 0x1a7c  [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
08:17:46.0937 0x1a7c  1394ohci - ok
08:17:46.0958 0x1a7c  [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware           C:\Windows\system32\drivers\3ware.sys
08:17:46.0963 0x1a7c  3ware - ok
08:17:47.0003 0x1a7c  [ C4C5D1AB35D1F931928056D61A1C4616, E4EBEFDA6E89A61C16F2CADC908F2242907695232236B2A771A409D48EAF39DC ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
08:17:47.0005 0x1a7c  Accelerometer - ok
08:17:47.0059 0x1a7c  [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI            C:\Windows\system32\drivers\ACPI.sys
08:17:47.0072 0x1a7c  ACPI - ok
08:17:47.0097 0x1a7c  [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
08:17:47.0101 0x1a7c  acpiex - ok
08:17:47.0118 0x1a7c  [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
08:17:47.0120 0x1a7c  acpipagr - ok
08:17:47.0137 0x1a7c  [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
08:17:47.0138 0x1a7c  AcpiPmi - ok
08:17:47.0151 0x1a7c  [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
08:17:47.0153 0x1a7c  acpitime - ok
08:17:47.0261 0x1a7c  [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:17:47.0270 0x1a7c  AdobeFlashPlayerUpdateSvc - ok
08:17:47.0325 0x1a7c  [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
08:17:47.0342 0x1a7c  adp94xx - ok
08:17:47.0361 0x1a7c  [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci         C:\Windows\system32\drivers\adpahci.sys
08:17:47.0373 0x1a7c  adpahci - ok
08:17:47.0399 0x1a7c  [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
08:17:47.0405 0x1a7c  adpu320 - ok
08:17:47.0444 0x1a7c  [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
08:17:47.0451 0x1a7c  AeLookupSvc - ok
08:17:47.0528 0x1a7c  [ FE7FB9612D354EB41DF4F0FF5D6FB259, 98D5BD9C1300195C49CB0717A831A06D99F7AE631D5EA065E10BFE7C2FA57A18 ] AFD             C:\Windows\system32\drivers\afd.sys
08:17:47.0551 0x1a7c  AFD - ok
08:17:47.0591 0x1a7c  [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440          C:\Windows\system32\drivers\agp440.sys
08:17:47.0594 0x1a7c  agp440 - ok
08:17:47.0633 0x1a7c  [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG             C:\Windows\System32\alg.exe
08:17:47.0638 0x1a7c  ALG - ok
08:17:47.0654 0x1a7c  [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
08:17:47.0673 0x1a7c  AllUserInstallAgent - ok
08:17:47.0707 0x1a7c  [ 15223ECAD7D688273DADA63ADA8B6BBA, 4E6261A8E89CF0491FAE680C9A842D46E4C693300D7DA7412AF02728486CDFFF ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
08:17:47.0714 0x1a7c  AMD External Events Utility - ok
08:17:47.0740 0x1a7c  AMD FUEL Service - ok
08:17:47.0786 0x1a7c  [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
08:17:47.0789 0x1a7c  AmdK8 - ok
08:17:48.0215 0x1a7c  [ 8EEBE772FA7D2A6436D6DBDE5EC7191B, B6108A3DF9348D5500FC741AEACFD94044AE4AA5314DEDCF4A4B491F12E7AC15 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
08:17:48.0635 0x1a7c  amdkmdag - ok
08:17:48.0702 0x1a7c  [ 9B08F939F313CC8D57789C528F6B4C4B, 3CC2E9BC7EAF7F193DB53A91B706369077CAD769F3585823389564235FCD09EE ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
08:17:48.0714 0x1a7c  amdkmdap - ok
08:17:48.0737 0x1a7c  [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
08:17:48.0740 0x1a7c  AmdPPM - ok
08:17:48.0774 0x1a7c  [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata         C:\Windows\system32\drivers\amdsata.sys
08:17:48.0777 0x1a7c  amdsata - ok
08:17:48.0803 0x1a7c  [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
08:17:48.0811 0x1a7c  amdsbs - ok
08:17:48.0831 0x1a7c  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
08:17:48.0833 0x1a7c  amdxata - ok
08:17:48.0862 0x1a7c  [ A2EFE3869B976296E097DEF368280F95, 121CD4A16146A9DF59D6E415181F48CA0D1DCD4D2B6BC4CBDABC2F3D296E28C6 ] amd_sata        C:\Windows\system32\drivers\amd_sata.sys
08:17:48.0865 0x1a7c  amd_sata - ok
08:17:48.0878 0x1a7c  [ 625396421C29FB305C6C6235D01130B8, 3FAF8D3B530F1B74B2C9B0ED3377836746CE2D0A4008E1BC454095671AC9E1AF ] amd_xata        C:\Windows\system32\drivers\amd_xata.sys
08:17:48.0880 0x1a7c  amd_xata - ok
08:17:48.0930 0x1a7c  [ 823F34D1DEF120A657BB7529ABF4461F, C56D6614F6B3DA13DF7F6AC6B70ACA39D1DB146F7324CF96029CA038C3063DB3 ] AppHostSvc      C:\Windows\system32\inetsrv\apphostsvc.dll
08:17:48.0933 0x1a7c  AppHostSvc - ok
08:17:48.0955 0x1a7c  [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID           C:\Windows\system32\drivers\appid.sys
08:17:48.0958 0x1a7c  AppID - ok
08:17:48.0987 0x1a7c  [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc        C:\Windows\System32\appidsvc.dll
08:17:48.0990 0x1a7c  AppIDSvc - ok
08:17:49.0040 0x1a7c  [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo         C:\Windows\System32\appinfo.dll
08:17:49.0043 0x1a7c  Appinfo - ok
08:17:49.0134 0x1a7c  [ F518545E5B7623AD49ABE7F8776EFA46, CD39B6EC0D80C6DB857F34D4AC5C31085271B51B8851A56FEFC052B20B7CC40C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:17:49.0136 0x1a7c  Apple Mobile Device - ok
08:17:49.0172 0x1a7c  [ 44695679881DEB85CAD7C249B151066E, A44413ACA911DDB5757DE9F9ECC3968979C47617CF9DF81B24E7ECDE7E0D54BC ] APXACC          C:\Windows\system32\DRIVERS\appexDrv.sys
08:17:49.0179 0x1a7c  APXACC - ok
08:17:49.0211 0x1a7c  [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc             C:\Windows\system32\drivers\arc.sys
08:17:49.0215 0x1a7c  arc - ok
08:17:49.0242 0x1a7c  [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
08:17:49.0268 0x1a7c  arcsas - ok
08:17:49.0362 0x1a7c  [ 108FB6DDB69E537A2EA53F425363FAE5, B12A9F5338D39805E08A44A335FF7AA77F2266F535A2F5C8412CC746C75E5B1D ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:17:49.0365 0x1a7c  aspnet_state - ok
08:17:49.0383 0x1a7c  [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
08:17:49.0385 0x1a7c  AsyncMac - ok
08:17:49.0415 0x1a7c  [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi           C:\Windows\system32\drivers\atapi.sys
08:17:49.0416 0x1a7c  atapi - ok
08:17:49.0587 0x1a7c  [ F17ABC4AA1FE4989E812858261414FE5, 6C24F7F498AB7D02DF35E1FD7621C29E81BD4C774F37AAC04A49B35A930775A2 ] athr            C:\Windows\system32\DRIVERS\athw8x.sys
08:17:49.0738 0x1a7c  athr - ok
08:17:49.0777 0x1a7c  [ 506907D2E7F3A5B67DBD39C00A788B7C, 618C91FB9F49C69F88A993F164D7E9E4B7CAD0F34DCF77CF0C6F259A28448171 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
08:17:49.0781 0x1a7c  AtiHDAudioService - ok
08:17:49.0842 0x1a7c  [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
08:17:49.0848 0x1a7c  AudioEndpointBuilder - ok
08:17:49.0918 0x1a7c  [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
08:17:49.0976 0x1a7c  Audiosrv - ok
08:17:50.0019 0x1a7c  [ 58D7FAF5C81ECEFFD2EDEDA9C2619D82, FE8E1C220535DDD84934AB6FD86334CB4C24AE4C7CDBA8ABF2B8D9805622E077 ] Avgboota        C:\Windows\system32\DRIVERS\avgboota.sys
08:17:50.0021 0x1a7c  Avgboota - ok
08:17:50.0261 0x1a7c  [ 4DB93F4DB7077801D2D82013506AC1D0, 3D71655D1557021D5D828E37EAFDBA35C631061E48D64B9D376746F8FCC760B3 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
08:17:50.0443 0x1a7c  AVGIDSAgent - ok
08:17:50.0517 0x1a7c  [ 92B7689FBC131E143421A19C18320E34, D3A323015790355070A380731CA56547F518F8AF800BC71670481A646C8FEEB3 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
08:17:50.0531 0x1a7c  AVGIDSDriver - ok
08:17:50.0571 0x1a7c  [ C8D9EEACF266512C1FA52E2ECF5AD944, 01972886F4324C55BE4450F2E18F263FBF0BE7525A9390714216E6C7A1827B1D ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
08:17:50.0575 0x1a7c  AVGIDSHA - ok
08:17:50.0634 0x1a7c  [ FACD18A89FDEBC35C85CAF762B294BE2, FD6EBE87ACA6CC017AB7ED886B2BC13CA05BDA38E4B7E8A63F33EF7E5C755BB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
08:17:50.0641 0x1a7c  Avgldx64 - ok
08:17:50.0692 0x1a7c  [ 29FCDEAC6086FB7E55344B51E35D99CE, 06408D79DF92B8A31DE0CA518BD93CA211D3192496CA3783762F289549F8F615 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
08:17:50.0703 0x1a7c  Avgloga - ok
08:17:50.0719 0x1a7c  [ 85053293DCDE19829E8691A9E9E8A6FF, 1F115376DCF888C0ED928D5E7150CC4602510FDA785DE76912D415366D8D7393 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
08:17:50.0724 0x1a7c  Avgmfx64 - ok
08:17:50.0734 0x1a7c  [ E191E443B0F7B05E784279A1C29B9D2A, 24B2B048C2CE5520A6B0E6702F55B5B65411E3E3D0857301E430EF2F9D7ECAFE ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
08:17:50.0736 0x1a7c  Avgrkx64 - ok
08:17:50.0771 0x1a7c  [ 68430AD3FB0FADBFA5D1677617D1E1F5, CF732DD21B472653AB0A4063455F2E7608F3075C255B9882D18CB52026B6C972 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
08:17:50.0773 0x1a7c  avgtp - ok
08:17:50.0827 0x1a7c  [ D646FA5135A1CD795877AFE9D17FA9ED, 2F97FBCD7BD75727A77C17D75D2482AE819D5D2EB9760D96412F9C20AA7D9473 ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
08:17:50.0836 0x1a7c  avgwd - ok
08:17:50.0879 0x1a7c  [ 7900D44647018603D274D572FB83BC7F, 9EA4B23B20ACDBFA6448B1E960B172142546284F329FC0BB26D3FA382912BD3E ] Avgwfpa         C:\Windows\system32\DRIVERS\avgwfpa.sys
08:17:50.0887 0x1a7c  Avgwfpa - ok
08:17:50.0924 0x1a7c  [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
08:17:50.0942 0x1a7c  AxInstSV - ok
08:17:50.0996 0x1a7c  [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
08:17:51.0019 0x1a7c  b06bdrv - ok
08:17:51.0053 0x1a7c  [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
08:17:51.0055 0x1a7c  BasicDisplay - ok
08:17:51.0063 0x1a7c  [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
08:17:51.0065 0x1a7c  BasicRender - ok
08:17:51.0109 0x1a7c  [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC          C:\Windows\System32\bdesvc.dll
08:17:51.0126 0x1a7c  BDESVC - ok
08:17:51.0139 0x1a7c  [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep            C:\Windows\system32\drivers\Beep.sys
08:17:51.0140 0x1a7c  Beep - ok
08:17:51.0230 0x1a7c  [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE             C:\Windows\System32\bfe.dll
08:17:51.0268 0x1a7c  BFE - ok
08:17:51.0473 0x1a7c  [ B20C7345F7EAD6C5E3EFA52E044411B6, 63DC57908D77B77907A278AD219240AEDD502272D5D3D35D5339172CDE36DA86 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20140912.003\BHDrvx64.sys
08:17:51.0564 0x1a7c  BHDrvx64 - ok
08:17:51.0633 0x1a7c  [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS            C:\Windows\System32\qmgr.dll
08:17:51.0693 0x1a7c  BITS - ok
08:17:51.0752 0x1a7c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:17:51.0765 0x1a7c  Bonjour Service - ok
08:17:51.0788 0x1a7c  [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
08:17:51.0792 0x1a7c  bowser - ok
08:17:51.0844 0x1a7c  [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
08:17:51.0851 0x1a7c  BrokerInfrastructure - ok
08:17:51.0876 0x1a7c  [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser         C:\Windows\System32\browser.dll
08:17:51.0881 0x1a7c  Browser - ok
08:17:51.0919 0x1a7c  [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
08:17:51.0921 0x1a7c  BthAvrcpTg - ok
08:17:51.0958 0x1a7c  [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
08:17:51.0961 0x1a7c  BthHFEnum - ok
08:17:51.0990 0x1a7c  [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
08:17:51.0992 0x1a7c  bthhfhid - ok
08:17:52.0011 0x1a7c  [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
08:17:52.0014 0x1a7c  BTHMODEM - ok
08:17:52.0052 0x1a7c  [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv         C:\Windows\system32\bthserv.dll
08:17:52.0065 0x1a7c  bthserv - ok
08:17:52.0170 0x1a7c  [ 56685951208AC81CF923B9B08BEDF3B7, F5FF438B9A54AD8D54E82DE60E1771C9685A95D5E590D69EB1E4E78D3B9B7769 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys
08:17:52.0177 0x1a7c  ccSet_NIS - ok
08:17:52.0212 0x1a7c  [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
08:17:52.0216 0x1a7c  cdfs - ok
08:17:52.0230 0x1a7c  [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom           C:\Windows\System32\drivers\cdrom.sys
08:17:52.0236 0x1a7c  cdrom - ok
08:17:52.0268 0x1a7c  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc     C:\Windows\System32\certprop.dll
08:17:52.0273 0x1a7c  CertPropSvc - ok
08:17:52.0289 0x1a7c  [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass        C:\Windows\System32\drivers\circlass.sys
08:17:52.0291 0x1a7c  circlass - ok
08:17:52.0322 0x1a7c  [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS            C:\Windows\system32\drivers\CLFS.sys
08:17:52.0333 0x1a7c  CLFS - ok
08:17:52.0499 0x1a7c  [ F31EAD497B8CBE16895A3B7B201C4EAE, D47ACD137FCC7433C83B56B7C4F6707F2AB4460485EC44FEA1E4C377920BA923 ] CltMngSvc       C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe
08:17:52.0587 0x1a7c  CltMngSvc - ok
08:17:52.0633 0x1a7c  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
08:17:52.0637 0x1a7c  CLVirtualDrive - ok
08:17:52.0648 0x1a7c  [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
08:17:52.0650 0x1a7c  CmBatt - ok
08:17:52.0714 0x1a7c  [ DBF9E5346431557BF56F41E7F8EC0DC1, D5FA34C873DA9BE40301D53198355556506AB5145B78B14D0AA88570A0058589 ] CNG             C:\Windows\system32\Drivers\cng.sys
08:17:52.0746 0x1a7c  CNG - ok
08:17:52.0766 0x1a7c  [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
08:17:52.0768 0x1a7c  CompositeBus - ok
08:17:52.0775 0x1a7c  COMSysApp - ok
08:17:52.0784 0x1a7c  [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv          C:\Windows\system32\drivers\condrv.sys
08:17:52.0786 0x1a7c  condrv - ok
08:17:52.0822 0x1a7c  [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
08:17:52.0825 0x1a7c  CryptSvc - ok
08:17:52.0871 0x1a7c  [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam             C:\Windows\system32\drivers\dam.sys
08:17:52.0873 0x1a7c  dam - ok
08:17:52.0931 0x1a7c  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch      C:\Windows\system32\rpcss.dll
08:17:52.0966 0x1a7c  DcomLaunch - ok
08:17:53.0019 0x1a7c  [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc       C:\Windows\System32\defragsvc.dll
08:17:53.0030 0x1a7c  defragsvc - ok
08:17:53.0058 0x1a7c  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll
08:17:53.0069 0x1a7c  DeviceAssociationService - ok
08:17:53.0106 0x1a7c  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
08:17:53.0113 0x1a7c  DeviceInstall - ok
08:17:53.0143 0x1a7c  [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
08:17:53.0148 0x1a7c  Dfsc - ok
08:17:53.0209 0x1a7c  [ 41AC348DBD378F618CB4FDEE54270692, A4080C9FF314F52C52E2207E5F7B745A003E931FA42E67E742D34477B5CC0166 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
08:17:53.0214 0x1a7c  dg_ssudbus - ok
08:17:53.0286 0x1a7c  [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
08:17:53.0297 0x1a7c  Dhcp - ok
08:17:53.0308 0x1a7c  [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache        C:\Windows\system32\drivers\discache.sys
08:17:53.0312 0x1a7c  discache - ok
08:17:53.0357 0x1a7c  [ AE3786294CC246A5403783E1B86A0168, 29A7B4B490CBB16DAEF5D67D0A58A2577CF3FEE8F889484DB867F6913D9D2A28 ] disk            C:\Windows\system32\drivers\disk.sys
08:17:53.0361 0x1a7c  disk - ok
08:17:53.0402 0x1a7c  [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
08:17:53.0404 0x1a7c  dmvsc - ok
08:17:53.0451 0x1a7c  [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache        C:\Windows\System32\dnsrslvr.dll
08:17:53.0459 0x1a7c  Dnscache - ok
08:17:53.0501 0x1a7c  [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc         C:\Windows\System32\dot3svc.dll
08:17:53.0519 0x1a7c  dot3svc - ok
08:17:53.0541 0x1a7c  [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS             C:\Windows\system32\dps.dll
08:17:53.0548 0x1a7c  DPS - ok
08:17:53.0588 0x1a7c  [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
08:17:53.0589 0x1a7c  drmkaud - ok
08:17:53.0633 0x1a7c  [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
08:17:53.0649 0x1a7c  DsmSvc - ok
08:17:53.0741 0x1a7c  [ 2BB5627EB587FA995086C3D8C21B6D3F, 871E35BBE66180781324D38823B74263B660CF9254EE348A15421FAC5667F294 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
08:17:53.0798 0x1a7c  DXGKrnl - ok
08:17:53.0843 0x1a7c  [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost         C:\Windows\System32\eapsvc.dll
08:17:53.0848 0x1a7c  Eaphost - ok
08:17:54.0002 0x1a7c  [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv           C:\Windows\system32\drivers\evbda.sys
08:17:54.0132 0x1a7c  ebdrv - ok
08:17:54.0200 0x1a7c  [ 03E1B8BA59327D186C7C533A6998FEF9, 224937A697B55BD9CCD790771DBE9D135021AD1DC3E6D6AC7C431C56F0FFBBB5 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
08:17:54.0215 0x1a7c  eeCtrl - ok
08:17:54.0255 0x1a7c  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] EFS             C:\Windows\System32\lsass.exe
08:17:54.0258 0x1a7c  EFS - ok
08:17:54.0288 0x1a7c  [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
08:17:54.0292 0x1a7c  EhStorClass - ok
08:17:54.0310 0x1a7c  [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
08:17:54.0315 0x1a7c  EhStorTcgDrv - ok
08:17:54.0349 0x1a7c  [ 647C55949DD6C4C9E7C74A22E64F84FF, C4259952992FC4C8EAE560BF5CD12488673B4ABF326CF43227A241E29F10378C ] EMVSCARD        C:\Windows\System32\Drivers\EMVSCARD.sys
08:17:54.0350 0x1a7c  EMVSCARD - ok
08:17:54.0387 0x1a7c  [ 142EA7DF1851C563571F2DCFC7AFBB40, 14DE008B68D127F246A64290DFCBD7ECDE8FF7932B3BAE660EB131860E826EAD ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:17:54.0391 0x1a7c  EraserUtilRebootDrv - ok
08:17:54.0408 0x1a7c  [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
08:17:54.0410 0x1a7c  ErrDev - ok
08:17:54.0479 0x1a7c  [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem     C:\Windows\system32\es.dll
08:17:54.0494 0x1a7c  EventSystem - ok
08:17:54.0526 0x1a7c  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat           C:\Windows\system32\drivers\exfat.sys
08:17:54.0533 0x1a7c  exfat - ok
08:17:54.0560 0x1a7c  [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
08:17:54.0567 0x1a7c  fastfat - ok
08:17:54.0611 0x1a7c  [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax             C:\Windows\system32\fxssvc.exe
08:17:54.0645 0x1a7c  Fax - ok
08:17:54.0677 0x1a7c  [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc             C:\Windows\System32\drivers\fdc.sys
08:17:54.0716 0x1a7c  fdc - ok
08:17:54.0731 0x1a7c  [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost         C:\Windows\system32\fdPHost.dll
08:17:54.0747 0x1a7c  fdPHost - ok
08:17:54.0761 0x1a7c  [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub        C:\Windows\system32\fdrespub.dll
08:17:54.0771 0x1a7c  FDResPub - ok
08:17:54.0826 0x1a7c  [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc           C:\Windows\system32\fhsvc.dll
08:17:54.0840 0x1a7c  fhsvc - ok
08:17:54.0868 0x1a7c  [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
08:17:54.0871 0x1a7c  FileInfo - ok
08:17:54.0915 0x1a7c  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
08:17:54.0917 0x1a7c  Filetrace - ok
08:17:54.0938 0x1a7c  [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
08:17:54.0940 0x1a7c  flpydisk - ok
08:17:54.0958 0x1a7c  [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
08:17:54.0970 0x1a7c  FltMgr - ok
08:17:55.0050 0x1a7c  [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache       C:\Windows\system32\FntCache.dll
08:17:55.0107 0x1a7c  FontCache - ok
08:17:55.0142 0x1a7c  [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:17:55.0144 0x1a7c  FontCache3.0.0.0 - ok
08:17:55.0159 0x1a7c  [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
08:17:55.0162 0x1a7c  FsDepends - ok
08:17:55.0193 0x1a7c  [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
08:17:55.0195 0x1a7c  Fs_Rec - ok
08:17:55.0242 0x1a7c  [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
08:17:55.0256 0x1a7c  fvevol - ok
08:17:55.0298 0x1a7c  [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
08:17:55.0299 0x1a7c  FxPPM - ok
08:17:55.0321 0x1a7c  [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
08:17:55.0325 0x1a7c  gagp30kx - ok
08:17:55.0389 0x1a7c  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
08:17:55.0396 0x1a7c  GamesAppService - ok
08:17:55.0439 0x1a7c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:17:55.0441 0x1a7c  GEARAspiWDM - ok
08:17:55.0466 0x1a7c  [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
08:17:55.0467 0x1a7c  gencounter - ok
08:17:55.0512 0x1a7c  [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
08:17:55.0516 0x1a7c  GPIOClx0101 - ok
08:17:55.0591 0x1a7c  [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc           C:\Windows\System32\gpsvc.dll
08:17:55.0650 0x1a7c  gpsvc - ok
08:17:55.0698 0x1a7c  [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:17:55.0708 0x1a7c  HdAudAddService - ok
08:17:55.0740 0x1a7c  [ 58CC013EFA9893057160EDA018D8ADCE, BE8AA220CFBD90202C1B130DF349C3198E3447F3C2DC7BC5FC8816F57F78BA00 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
08:17:55.0743 0x1a7c  HDAudBus - ok
08:17:55.0784 0x1a7c  [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
08:17:55.0786 0x1a7c  HidBatt - ok
08:17:55.0814 0x1a7c  [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth          C:\Windows\System32\drivers\hidbth.sys
08:17:55.0818 0x1a7c  HidBth - ok
08:17:55.0843 0x1a7c  [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
08:17:55.0845 0x1a7c  hidi2c - ok
08:17:55.0863 0x1a7c  [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr           C:\Windows\System32\drivers\hidir.sys
08:17:55.0865 0x1a7c  HidIr - ok
08:17:55.0894 0x1a7c  [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv         C:\Windows\system32\hidserv.dll
08:17:55.0898 0x1a7c  hidserv - ok
08:17:55.0941 0x1a7c  [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
08:17:55.0942 0x1a7c  HidUsb - ok
08:17:55.0973 0x1a7c  [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc          C:\Windows\system32\kmsvc.dll
08:17:55.0994 0x1a7c  hkmsvc - ok
08:17:56.0046 0x1a7c  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:17:56.0082 0x1a7c  HomeGroupListener - ok
08:17:56.0128 0x1a7c  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:17:56.0143 0x1a7c  HomeGroupProvider - ok
08:17:56.0230 0x1a7c  [ 6515296E8F9D81BB6C4588C4878A9AC1, 4102FCA9CC6CDAA52E68F030034C6C15DF036D5E9B6E0A8007B72655A3D1E3DD ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
08:17:56.0233 0x1a7c  HP Support Assistant Service - ok
08:17:56.0270 0x1a7c  [ EF4BE0BB23BB14879050884E688F5178, C914FEB0627D17097968A9B66325305757E7A859A8F11FE69CA0F7F69E38CA2A ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
08:17:56.0272 0x1a7c  hpdskflt - ok
08:17:56.0327 0x1a7c  [ 514455F6586473791C5C6B25BA4E1BAB, 0C2CAE8F35241F1B936C502AAB7C9303C643D898BAB1D060FCA1E6B3A7D9FDB9 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
08:17:56.0353 0x1a7c  hpqwmiex - ok
08:17:56.0392 0x1a7c  [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
08:17:56.0395 0x1a7c  HpSAMD - ok
08:17:56.0411 0x1a7c  [ 13B51E53073E4555E226871C7FCEF0E8, 04713F4C8D629E81388D5438CF94781A71007A81E223D90D893FF898E4BDA6B7 ] hpsrv           C:\Windows\system32\Hpservice.exe
08:17:56.0413 0x1a7c  hpsrv - ok
08:17:56.0467 0x1a7c  [ 3C5B2067338E4EFDADE94E4A72728F23, 72E21FA1E660F9405A5E39B0F89AB21C60F20BAC13247567EF7139AC130F1897 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
08:17:56.0469 0x1a7c  HPWMISVC - ok
08:17:56.0545 0x1a7c  [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
08:17:56.0580 0x1a7c  HTTP - ok
08:17:56.0606 0x1a7c  [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
08:17:56.0608 0x1a7c  hwpolicy - ok
08:17:56.0631 0x1a7c  [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
08:17:56.0632 0x1a7c  hyperkbd - ok
08:17:56.0652 0x1a7c  [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
08:17:56.0654 0x1a7c  HyperVideo - ok
08:17:56.0665 0x1a7c  [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
08:17:56.0669 0x1a7c  i8042prt - ok
08:17:56.0749 0x1a7c  [ 050F2539E14F9D5E90A4B61738EC29BD, 0E65468B9F452FA7DB6DF2C1B2B2E9439C79031E27054FBDBDFE28A9F98721D7 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
08:17:56.0781 0x1a7c  iaStorA - ok
08:17:56.0809 0x1a7c  [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
08:17:56.0822 0x1a7c  iaStorV - ok
08:17:56.0971 0x1a7c  [ BCD9AFF5F895E3D6A320C555C2F908E3, 3C79AAAA649C7B9C3FD5463EDE1B33F5867A1B7843D1425F273B54ACBE3872D9 ] IBUpdaterService C:\Windows\system32\dmwu.exe
08:17:57.0049 0x1a7c  IBUpdaterService - ok
08:17:57.0199 0x1a7c  [ ABEFA4BD23329FD9BD47496BF2E58774, 9689D4C6380735EE1CC7F480696CDDC229E0FA511942AC813314D353584D82DD ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
08:17:57.0302 0x1a7c  IconMan_R - ok
08:17:57.0385 0x1a7c  [ 77AC93E28B5F4DCE317EFA695E3F59E3, 57D510CEE1B777CFB52CECBAB43B0698A53B048B7E0C622473DEA9E03E2D9BEF ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20141003.001\IDSvia64.sys
08:17:57.0419 0x1a7c  IDSVia64 - ok
08:17:57.0860 0x1a7c  [ 83915E05E168AB63B48302F7DC5D8E00, CD7300A5FFD5A8CE47690CDC1223F4693C536D5667F842CA457CC8716AA3F618 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
08:17:58.0299 0x1a7c  igfx - ok
08:17:58.0373 0x1a7c  [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
08:17:58.0375 0x1a7c  iirsp - ok
08:17:58.0455 0x1a7c  [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT          C:\Windows\System32\ikeext.dll
08:17:58.0500 0x1a7c  IKEEXT - ok
08:17:58.0531 0x1a7c  [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide        C:\Windows\system32\drivers\intelide.sys
08:17:58.0531 0x1a7c  intelide - ok
08:17:58.0563 0x1a7c  [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
08:17:58.0563 0x1a7c  intelppm - ok
08:17:58.0578 0x1a7c  [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:17:58.0578 0x1a7c  IpFilterDriver - ok
08:17:58.0672 0x1a7c  [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
08:17:58.0719 0x1a7c  iphlpsvc - ok
08:17:58.0769 0x1a7c  [ A4071DA3AE419F9694BFCB267C7DB8D7, 392DEE1DA51606C29418A98D2861F115E9F67C688B4281C53E87BA73A98809FB ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
08:17:58.0803 0x1a7c  IPMIDRV - ok
08:17:58.0845 0x1a7c  [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
08:17:58.0845 0x1a7c  IPNAT - ok
08:17:58.0908 0x1a7c  [ 7E4F8065367AE5BA387262D57B868DF5, 3D09A778748D30AFD37B23603CCC151B028D505FF3CB7763CE393F6CFAED3A9E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
08:17:58.0923 0x1a7c  iPod Service - ok
08:17:58.0955 0x1a7c  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM          C:\Windows\system32\drivers\irenum.sys
08:17:58.0955 0x1a7c  IRENUM - ok
08:17:58.0970 0x1a7c  [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp          C:\Windows\system32\drivers\isapnp.sys
08:17:58.0970 0x1a7c  isapnp - ok
08:17:59.0017 0x1a7c  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF, 8FFF92828C3DC20F0F42C42E58A03B59A4E0187963F728DC618C9595FB2D0239 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
08:17:59.0033 0x1a7c  iScsiPrt - ok
08:17:59.0064 0x1a7c  [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
08:17:59.0064 0x1a7c  kbdclass - ok
08:17:59.0079 0x1a7c  [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
08:17:59.0079 0x1a7c  kbdhid - ok
08:17:59.0095 0x1a7c  [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
08:17:59.0095 0x1a7c  kdnic - ok
08:17:59.0111 0x1a7c  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] KeyIso          C:\Windows\system32\lsass.exe
08:17:59.0111 0x1a7c  KeyIso - ok
08:17:59.0157 0x1a7c  [ 8B3EB6372436195B8EA8AE09A184BCE2, 9AFB7A9D6AEEBF5994C85B355155024768116E2D537C9FA169BC3F4594ECD35C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
08:17:59.0157 0x1a7c  KSecDD - ok
08:17:59.0189 0x1a7c  [ 3DD9C86EA88E8B5A51904AD87E1F2E78, F9EC9A571212117C01934CD29057EB1B3FA095F670294244AF7D9387D3F6E555 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
08:17:59.0189 0x1a7c  KSecPkg - ok
08:17:59.0220 0x1a7c  [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
08:17:59.0220 0x1a7c  ksthunk - ok
08:17:59.0267 0x1a7c  [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm           C:\Windows\system32\msdtckrm.dll
08:17:59.0282 0x1a7c  KtmRm - ok
08:17:59.0313 0x1a7c  [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer    C:\Windows\system32\srvsvc.dll
08:17:59.0313 0x1a7c  LanmanServer - ok
08:17:59.0345 0x1a7c  [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:17:59.0360 0x1a7c  LanmanWorkstation - ok
08:17:59.0376 0x1a7c  [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
08:17:59.0376 0x1a7c  lltdio - ok
08:17:59.0407 0x1a7c  [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
08:17:59.0423 0x1a7c  lltdsvc - ok
08:17:59.0438 0x1a7c  [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts         C:\Windows\System32\lmhsvc.dll
08:17:59.0438 0x1a7c  lmhosts - ok
08:17:59.0469 0x1a7c  [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
08:17:59.0469 0x1a7c  LSI_SAS - ok
08:17:59.0516 0x1a7c  [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
08:17:59.0516 0x1a7c  LSI_SAS2 - ok
08:17:59.0532 0x1a7c  [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
08:17:59.0532 0x1a7c  LSI_SCSI - ok
08:17:59.0547 0x1a7c  [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
08:17:59.0563 0x1a7c  LSI_SSS - ok
08:17:59.0610 0x1a7c  [ 1DC9B701F8EB7D67774035AC9C3104F6, 77371267CDA605F78674BF8FA14B134B22299CD96EADA60A68762207595F0B46 ] LSM             C:\Windows\System32\lsm.dll
08:17:59.0625 0x1a7c  LSM - ok
08:17:59.0657 0x1a7c  [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv           C:\Windows\system32\drivers\luafv.sys
08:17:59.0657 0x1a7c  luafv - ok
08:17:59.0719 0x1a7c  [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
08:17:59.0754 0x1a7c  McComponentHostService - ok
08:17:59.0784 0x1a7c  [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas         C:\Windows\system32\drivers\megasas.sys
08:17:59.0787 0x1a7c  megasas - ok
08:17:59.0814 0x1a7c  [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
08:17:59.0846 0x1a7c  MegaSR - ok
08:17:59.0887 0x1a7c  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS           C:\Windows\system32\mmcss.dll
08:17:59.0892 0x1a7c  MMCSS - ok
08:17:59.0912 0x1a7c  [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem           C:\Windows\system32\drivers\modem.sys
08:17:59.0914 0x1a7c  Modem - ok
08:17:59.0943 0x1a7c  [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor         C:\Windows\System32\drivers\monitor.sys
08:17:59.0945 0x1a7c  monitor - ok
08:17:59.0977 0x1a7c  [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
08:17:59.0977 0x1a7c  mouclass - ok
08:17:59.0992 0x1a7c  [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
08:17:59.0992 0x1a7c  mouhid - ok
08:18:00.0039 0x1a7c  [ E7E9DBFDD3F25ED0C05B99AE9FA18BDE, 6D0204BA271FD3262DAE6E6BF9C12C0D49E3C9AF40EB1E072BD5CA5E2B8598D5 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
08:18:00.0039 0x1a7c  mountmgr - ok
08:18:00.0086 0x1a7c  [ E1B6FCAE82474FC071155263E2841D54, 341E2CEB1A86586730130311C4FAF86851151D5F08EF915A5F89B6C4094AE1F4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:18:00.0086 0x1a7c  MozillaMaintenance - ok
08:18:00.0133 0x1a7c  [ 4CCBBD4944777CA100B9A6C2F149A46F, 7FC172FAF8266BFBBBBAD94FD67EA3C1872F5927DC3900A9A54DB2DFE34E7415 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
08:18:00.0148 0x1a7c  mpsdrv - ok
08:18:00.0195 0x1a7c  [ 9DE3341BD4E14BC5FADFCAD3019F2D0D, 37E0531EADABC6D4BCC496826651D4D14CF0D10156FF13C11BDE466084B44FF4 ] MpsSvc          C:\Windows\system32\mpssvc.dll
08:18:00.0258 0x1a7c  MpsSvc - ok
08:18:00.0304 0x1a7c  [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
08:18:00.0320 0x1a7c  MRxDAV - ok
08:18:00.0367 0x1a7c  [ 7A761AEE58658378BBA45D360F874CB0, 31972E63D93E07D92EF69571B7ED1E69B1358DCA5BEED62A9372F6411B4DFDB3 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
08:18:00.0382 0x1a7c  mrxsmb - ok
08:18:00.0398 0x1a7c  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:18:00.0414 0x1a7c  mrxsmb10 - ok
08:18:00.0429 0x1a7c  [ 697B78CE3925E4FBFC544232A5E9E2EB, 2D03425513572F6098BAAF82C0EDB49EBAB88438971D349CA1917DA0BDB76334 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:18:00.0445 0x1a7c  mrxsmb20 - ok
08:18:00.0476 0x1a7c  [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
08:18:00.0476 0x1a7c  MsBridge - ok
08:18:00.0507 0x1a7c  [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC           C:\Windows\System32\msdtc.exe
08:18:00.0507 0x1a7c  MSDTC - ok
08:18:00.0538 0x1a7c  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
08:18:00.0538 0x1a7c  Msfs - ok
08:18:00.0585 0x1a7c  [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
08:18:00.0585 0x1a7c  msgpiowin32 - ok
08:18:00.0601 0x1a7c  [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
08:18:00.0601 0x1a7c  mshidkmdf - ok
08:18:00.0616 0x1a7c  [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
08:18:00.0616 0x1a7c  mshidumdf - ok
08:18:00.0632 0x1a7c  [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
08:18:00.0632 0x1a7c  msisadrv - ok
08:18:00.0663 0x1a7c  [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
08:18:00.0663 0x1a7c  MSiSCSI - ok
08:18:00.0679 0x1a7c  msiserver - ok
08:18:00.0710 0x1a7c  [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
08:18:00.0710 0x1a7c  MSKSSRV - ok
08:18:00.0726 0x1a7c  [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
08:18:00.0741 0x1a7c  MsLldp - ok
08:18:00.0757 0x1a7c  [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
08:18:00.0757 0x1a7c  MSPCLOCK - ok
08:18:00.0788 0x1a7c  [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
08:18:00.0788 0x1a7c  MSPQM - ok
08:18:00.0804 0x1a7c  [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
08:18:00.0819 0x1a7c  MsRPC - ok
08:18:00.0835 0x1a7c  [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
08:18:00.0835 0x1a7c  mssmbios - ok
08:18:00.0850 0x1a7c  [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
08:18:00.0850 0x1a7c  MSTEE - ok
08:18:00.0882 0x1a7c  [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
08:18:00.0882 0x1a7c  MTConfig - ok
08:18:00.0897 0x1a7c  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup             C:\Windows\system32\Drivers\mup.sys
08:18:00.0897 0x1a7c  Mup - ok
08:18:00.0928 0x1a7c  [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
08:18:00.0928 0x1a7c  mvumis - ok
08:18:01.0022 0x1a7c  [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent        C:\Windows\system32\qagentRT.dll
08:18:01.0038 0x1a7c  napagent - ok
08:18:01.0069 0x1a7c  [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
08:18:01.0084 0x1a7c  NativeWifiP - ok
08:18:01.0162 0x1a7c  [ C180A82874D3CDC390A27F2F1E1AF025, 9F473661524D645D5C1D616BF2BEC2996DFAE9268B7CF280FCCBD19AA072E567 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20141005.001\ENG64.SYS
08:18:01.0178 0x1a7c  NAVENG - ok
08:18:01.0289 0x1a7c  [ E66CA6C321614D7BC0AFC9C8436131B9, BF732419D56E1B8AB3B11B19403087D4EDBF9108F0252ACBB561235040AB4436 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20141005.001\EX64.SYS
08:18:01.0380 0x1a7c  NAVEX15 - ok
08:18:01.0425 0x1a7c  [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc          C:\Windows\System32\ncasvc.dll
08:18:01.0440 0x1a7c  NcaSvc - ok
08:18:01.0471 0x1a7c  [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
08:18:01.0471 0x1a7c  NcdAutoSetup - ok
08:18:01.0565 0x1a7c  [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS            C:\Windows\system32\drivers\ndis.sys
08:18:01.0627 0x1a7c  NDIS - ok
08:18:01.0659 0x1a7c  [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
08:18:01.0659 0x1a7c  NdisCap - ok
08:18:01.0690 0x1a7c  [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
08:18:01.0690 0x1a7c  NdisImPlatform - ok
08:18:01.0737 0x1a7c  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
08:18:01.0737 0x1a7c  NdisTapi - ok
08:18:01.0768 0x1a7c  [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
08:18:01.0768 0x1a7c  Ndisuio - ok
08:18:01.0815 0x1a7c  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
08:18:01.0815 0x1a7c  NdisWan - ok
08:18:01.0830 0x1a7c  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY   C:\Windows\system32\DRIVERS\ndiswan.sys
08:18:01.0830 0x1a7c  NDISWANLEGACY - ok
08:18:01.0877 0x1a7c  [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
08:18:01.0893 0x1a7c  NDProxy - ok
08:18:01.0908 0x1a7c  [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu             C:\Windows\system32\drivers\Ndu.sys
08:18:01.0908 0x1a7c  Ndu - ok
08:18:01.0924 0x1a7c  [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
08:18:01.0924 0x1a7c  NetBIOS - ok
08:18:01.0939 0x1a7c  [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
08:18:01.0955 0x1a7c  NetBT - ok
08:18:01.0971 0x1a7c  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] Netlogon        C:\Windows\system32\lsass.exe
08:18:01.0971 0x1a7c  Netlogon - ok
08:18:02.0002 0x1a7c  [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman          C:\Windows\System32\netman.dll
08:18:02.0049 0x1a7c  Netman - ok
08:18:02.0113 0x1a7c  [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm        C:\Windows\System32\netprofmsvc.dll
08:18:02.0129 0x1a7c  netprofm - ok
08:18:02.0174 0x1a7c  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:18:02.0205 0x1a7c  NetTcpPortSharing - ok
08:18:02.0236 0x1a7c  [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
08:18:02.0236 0x1a7c  nfrd960 - ok
08:18:02.0345 0x1a7c  [ 1BF9D6476061B31CD7FC2BF848529A56, 95B585543240E823D7850ADEEEA7A4738EF9E18A4B07D921F145F6EF466F0271 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe
08:18:02.0345 0x1a7c  NIS - ok
08:18:02.0392 0x1a7c  [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc          C:\Windows\System32\nlasvc.dll
08:18:02.0408 0x1a7c  NlaSvc - ok
08:18:02.0439 0x1a7c  [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
08:18:02.0439 0x1a7c  Npfs - ok
08:18:02.0454 0x1a7c  [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
08:18:02.0454 0x1a7c  npsvctrig - ok
08:18:02.0470 0x1a7c  [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi             C:\Windows\system32\nsisvc.dll
08:18:02.0470 0x1a7c  nsi - ok
08:18:02.0486 0x1a7c  [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
08:18:02.0486 0x1a7c  nsiproxy - ok
08:18:02.0579 0x1a7c  [ 76929F4A69E425911A63B407E26C2589, 17896DB6EDEF2637D159432DB61E8B5FA2F4F54B5F50BCD6215827C321ED2C2A ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
08:18:02.0657 0x1a7c  Ntfs - ok
08:18:02.0688 0x1a7c  [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null            C:\Windows\system32\drivers\Null.sys
08:18:02.0688 0x1a7c  Null - ok
08:18:02.0720 0x1a7c  [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
08:18:02.0720 0x1a7c  nvraid - ok
08:18:02.0735 0x1a7c  [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
08:18:02.0735 0x1a7c  nvstor - ok
08:18:02.0766 0x1a7c  [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
08:18:02.0766 0x1a7c  nv_agp - ok
08:18:02.0813 0x1a7c  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
08:18:02.0829 0x1a7c  p2pimsvc - ok
08:18:02.0876 0x1a7c  [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc          C:\Windows\system32\p2psvc.dll
08:18:02.0907 0x1a7c  p2psvc - ok
08:18:02.0954 0x1a7c  [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport         C:\Windows\System32\drivers\parport.sys
08:18:02.0954 0x1a7c  Parport - ok
08:18:03.0016 0x1a7c  [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
08:18:03.0016 0x1a7c  partmgr - ok
08:18:03.0094 0x1a7c  [ 8AA434597BF8C129209BD9FF4835EAEF, 819F0EA6B7144F03BC0FFCE071B73EB727A0B7584A5DEEC4F7049856516E5E46 ] PasswordBox     C:\Program Files (x86)\PasswordBox\pbbtnService.exe
08:18:03.0094 0x1a7c  PasswordBox - ok
08:18:03.0141 0x1a7c  [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc          C:\Windows\System32\pcasvc.dll
08:18:03.0156 0x1a7c  PcaSvc - ok
08:18:03.0188 0x1a7c  [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci             C:\Windows\system32\drivers\pci.sys
08:18:03.0203 0x1a7c  pci - ok
08:18:03.0219 0x1a7c  [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide          C:\Windows\system32\drivers\pciide.sys
08:18:03.0219 0x1a7c  pciide - ok
08:18:03.0250 0x1a7c  [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
08:18:03.0266 0x1a7c  pcmcia - ok
08:18:03.0281 0x1a7c  [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw             C:\Windows\system32\drivers\pcw.sys
08:18:03.0281 0x1a7c  pcw - ok
08:18:03.0312 0x1a7c  [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc             C:\Windows\system32\drivers\pdc.sys
08:18:03.0328 0x1a7c  pdc - ok
08:18:03.0403 0x1a7c  [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
08:18:03.0436 0x1a7c  PEAUTH - ok
08:18:03.0518 0x1a7c  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost        C:\Windows\SysWow64\perfhost.exe
08:18:03.0533 0x1a7c  PerfHost - ok
08:18:03.0634 0x1a7c  [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla             C:\Windows\system32\pla.dll
08:18:03.0711 0x1a7c  pla - ok
08:18:03.0751 0x1a7c  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
08:18:03.0758 0x1a7c  PlugPlay - ok
08:18:03.0775 0x1a7c  [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
08:18:03.0787 0x1a7c  PNRPAutoReg - ok
08:18:03.0817 0x1a7c  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
08:18:03.0829 0x1a7c  PNRPsvc - ok
08:18:03.0879 0x1a7c  [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
08:18:03.0894 0x1a7c  PolicyAgent - ok
08:18:03.0934 0x1a7c  [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power           C:\Windows\system32\umpo.dll
08:18:03.0940 0x1a7c  Power - ok
08:18:03.0965 0x1a7c  [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
08:18:03.0970 0x1a7c  PptpMiniport - ok
08:18:04.0107 0x1a7c  [ 9D59831262CAD44E709D695FC9D5E7AB, F95C5475F91DA667C8D5C96253944CE8A0F2C9B1ED4DF8703E5D1D47A0C730B5 ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
08:18:04.0200 0x1a7c  PrintNotify - ok
08:18:04.0263 0x1a7c  [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor       C:\Windows\System32\drivers\processr.sys
08:18:04.0263 0x1a7c  Processor - ok
08:18:04.0294 0x1a7c  [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc         C:\Windows\system32\profsvc.dll
08:18:04.0310 0x1a7c  ProfSvc - ok
08:18:04.0341 0x1a7c  [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
08:18:04.0341 0x1a7c  Psched - ok
08:18:04.0388 0x1a7c  [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE           C:\Windows\system32\qwave.dll
08:18:04.0403 0x1a7c  QWAVE - ok
08:18:04.0419 0x1a7c  [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
08:18:04.0434 0x1a7c  QWAVEdrv - ok
08:18:04.0450 0x1a7c  [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
08:18:04.0450 0x1a7c  RasAcd - ok
08:18:04.0481 0x1a7c  [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
08:18:04.0481 0x1a7c  RasAgileVpn - ok
08:18:04.0528 0x1a7c  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto         C:\Windows\System32\rasauto.dll
08:18:04.0544 0x1a7c  RasAuto - ok
08:18:04.0575 0x1a7c  [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
08:18:04.0590 0x1a7c  Rasl2tp - ok
08:18:04.0622 0x1a7c  [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan          C:\Windows\System32\rasmans.dll
08:18:04.0653 0x1a7c  RasMan - ok
08:18:04.0668 0x1a7c  [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
08:18:04.0668 0x1a7c  RasPppoe - ok
08:18:04.0684 0x1a7c  [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
08:18:04.0684 0x1a7c  RasSstp - ok
08:18:04.0731 0x1a7c  [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
08:18:04.0746 0x1a7c  rdbss - ok
08:18:04.0762 0x1a7c  [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
08:18:04.0762 0x1a7c  rdpbus - ok
08:18:04.0809 0x1a7c  [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
08:18:04.0809 0x1a7c  RDPDR - ok
08:18:04.0856 0x1a7c  [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
08:18:04.0856 0x1a7c  RdpVideoMiniport - ok
08:18:04.0915 0x1a7c  [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
08:18:04.0923 0x1a7c  RDPWD - ok
08:18:04.0948 0x1a7c  [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
08:18:04.0955 0x1a7c  rdyboost - ok
08:18:04.0991 0x1a7c  [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess    C:\Windows\System32\mprdim.dll
08:18:05.0011 0x1a7c  RemoteAccess - ok
08:18:05.0055 0x1a7c  [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
08:18:05.0073 0x1a7c  RemoteRegistry - ok
08:18:05.0103 0x1a7c  [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
08:18:05.0119 0x1a7c  RpcEptMapper - ok
08:18:05.0135 0x1a7c  [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator      C:\Windows\system32\locator.exe
08:18:05.0150 0x1a7c  RpcLocator - ok
08:18:05.0197 0x1a7c  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs           C:\Windows\system32\rpcss.dll
08:18:05.0213 0x1a7c  RpcSs - ok
08:18:05.0259 0x1a7c  [ D38250F459BF60D6F4B69B79DCD948CC, E68C864C1A4C9352EA939062F28789ADE9F0672E8CB3F3909D2891786C76F06F ] RSP2STOR        C:\Windows\system32\DRIVERS\RtsP2Stor.sys
08:18:05.0259 0x1a7c  RSP2STOR - ok
08:18:05.0291 0x1a7c  [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
08:18:05.0291 0x1a7c  rspndr - ok
08:18:05.0353 0x1a7c  [ 34DA0D14F5C3F1883A331AFB975AB434, BB5D580C1DCAE59CC1DB75C411A5A4DDF435931469E7EBFF5DFDADBFE07ADEBF ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
08:18:05.0384 0x1a7c  RTL8168 - ok
08:18:05.0415 0x1a7c  [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
08:18:05.0415 0x1a7c  s3cap - ok
08:18:05.0447 0x1a7c  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] SamSs           C:\Windows\system32\lsass.exe
08:18:05.0447 0x1a7c  SamSs - ok
08:18:05.0525 0x1a7c  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
08:18:05.0525 0x1a7c  SASDIFSV - ok
08:18:05.0540 0x1a7c  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
08:18:05.0540 0x1a7c  SASKUTIL - ok
08:18:05.0571 0x1a7c  [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
08:18:05.0571 0x1a7c  sbp2port - ok
08:18:05.0603 0x1a7c  [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
08:18:05.0649 0x1a7c  SCardSvr - ok
08:18:05.0681 0x1a7c  [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
08:18:05.0681 0x1a7c  scfilter - ok
08:18:05.0774 0x1a7c  [ 03F58B3FA4B5329F21F770B1EF8D984A, 32976E64E4960E5996E3CA2F8BA9374E01201C461DE52AF0FA14BA75C784AC25 ] Schedule        C:\Windows\system32\schedsvc.dll
08:18:05.0837 0x1a7c  Schedule - ok
08:18:05.0868 0x1a7c  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
08:18:05.0883 0x1a7c  SCPolicySvc - ok
08:18:05.0915 0x1a7c  [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
08:18:05.0930 0x1a7c  sdbus - ok
08:18:05.0961 0x1a7c  [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
08:18:05.0961 0x1a7c  SDRSVC - ok
08:18:06.0020 0x1a7c  [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor          C:\Windows\System32\drivers\sdstor.sys
08:18:06.0022 0x1a7c  sdstor - ok
08:18:06.0078 0x1a7c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
08:18:06.0080 0x1a7c  secdrv - ok
08:18:06.0093 0x1a7c  [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon        C:\Windows\system32\seclogon.dll
08:18:06.0108 0x1a7c  seclogon - ok
08:18:06.0125 0x1a7c  [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS            C:\Windows\System32\sens.dll
08:18:06.0130 0x1a7c  SENS - ok
08:18:06.0151 0x1a7c  [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
08:18:06.0168 0x1a7c  SensrSvc - ok
08:18:06.0191 0x1a7c  [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
08:18:06.0194 0x1a7c  SerCx - ok
08:18:06.0212 0x1a7c  [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum         C:\Windows\System32\drivers\serenum.sys
08:18:06.0214 0x1a7c  Serenum - ok
08:18:06.0236 0x1a7c  [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial          C:\Windows\System32\drivers\serial.sys
08:18:06.0239 0x1a7c  Serial - ok
08:18:06.0258 0x1a7c  [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
08:18:06.0259 0x1a7c  sermouse - ok
08:18:06.0307 0x1a7c  [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv      C:\Windows\system32\sessenv.dll
08:18:06.0340 0x1a7c  SessionEnv - ok
08:18:06.0374 0x1a7c  [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
08:18:06.0376 0x1a7c  sfloppy - ok
08:18:06.0426 0x1a7c  [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
08:18:06.0453 0x1a7c  SharedAccess - ok
08:18:06.0503 0x1a7c  [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:18:06.0534 0x1a7c  ShellHWDetection - ok
08:18:06.0550 0x1a7c  [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
08:18:06.0550 0x1a7c  SiSRaid2 - ok
08:18:06.0581 0x1a7c  [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
08:18:06.0596 0x1a7c  SiSRaid4 - ok
08:18:06.0628 0x1a7c  [ AF5CC3F9B88F140D78FC967ABF0F4EC7, 7CE3AB7B0A36635CF00E35E84C14B8661FAF794ABCFA61AE45A0E5E8EA996A3B ] SmbDrv          C:\Windows\System32\drivers\Smb_driver_AMDASF.sys
08:18:06.0643 0x1a7c  SmbDrv - ok
08:18:06.0643 0x1a7c  [ 19555D03CB179BED8B8AAA239A36BDA4, 7B975821D52ABE077496B3CFC010B33D478CD2C36E6A74D8F72D2BF582B8C84A ] SmbDrvI         C:\Windows\System32\drivers\Smb_driver_Intel.sys
08:18:06.0643 0x1a7c  SmbDrvI - ok
08:18:06.0690 0x1a7c  [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
08:18:06.0690 0x1a7c  SNMPTRAP - ok
08:18:06.0737 0x1a7c  [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
08:18:06.0737 0x1a7c  spaceport - ok
08:18:06.0768 0x1a7c  [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
08:18:06.0784 0x1a7c  SpbCx - ok
08:18:06.0815 0x1a7c  [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler         C:\Windows\System32\spoolsv.exe
08:18:06.0862 0x1a7c  Spooler - ok
08:18:07.0127 0x1a7c  [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc          C:\Windows\system32\sppsvc.exe
08:18:07.0334 0x1a7c  sppsvc - ok
08:18:07.0486 0x1a7c  [ 2FD9346F9D76CB4192D37329CFA47A82, 4CD75B4006147D469116F3CBC10528928A592510DA8037D709CB198D89853CAB ] SRTSP           C:\Windows\System32\Drivers\NISx64\1405000.01C\SRTSP64.SYS
08:18:07.0521 0x1a7c  SRTSP - ok
08:18:07.0538 0x1a7c  [ 0E76CEF892C45734F7AED09FDDF35D4D, C25AF31E411AC3A090859C883132B9AE6A80C8D791168FF219BC0895E35A0359 ] SRTSPX          C:\Windows\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS
08:18:07.0541 0x1a7c  SRTSPX - ok
08:18:07.0571 0x1a7c  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv             C:\Windows\system32\DRIVERS\srv.sys
08:18:07.0584 0x1a7c  srv - ok
08:18:07.0644 0x1a7c  [ 8504ADDE9C146C6295B16D13A0007560, 715E3752AE4A276FA8DAFA3B52B699C45D97E747CB25FE4AE307241D206319B7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
08:18:07.0678 0x1a7c  srv2 - ok
08:18:07.0728 0x1a7c  [ BB0F9E19C5CE4DC765B263E2A5561DE1, F7DBC96E049625E4312D8F588FCF2B4AC6318C04D04758982FE9B51DABEC2DAE ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
08:18:07.0736 0x1a7c  srvnet - ok
08:18:07.0771 0x1a7c  [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
08:18:07.0783 0x1a7c  SSDPSRV - ok
08:18:07.0805 0x1a7c  [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
08:18:07.0811 0x1a7c  SstpSvc - ok
08:18:07.0859 0x1a7c  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
08:18:07.0859 0x1a7c  ssudmdm - ok
08:18:07.0921 0x1a7c  [ F452B51D895D894BF5487057E11D44CF, 4B4F54646B1069EA27D4A4F17CB85A66FF7B36A6087F3D07F12221B29DFBF8F2 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
08:18:07.0921 0x1a7c  STacSV - ok
08:18:08.0015 0x1a7c  [ AFE32AFD30464FC59CB8E88DC72F66FA, 24644F8AA47E61B98EF867BE18A9BE383822D64F3AADF2ED35E42FBFBA7B340F ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
08:18:08.0062 0x1a7c  Steam Client Service - ok
08:18:08.0093 0x1a7c  [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor        C:\Windows\system32\drivers\stexstor.sys
08:18:08.0093 0x1a7c  stexstor - ok
08:18:08.0140 0x1a7c  [ B05AEC4014FFDC1793B5CCB6D9BD28D1, ED9CC2B5954BDB12868357703B451D8A086FC9DDA0A8F0EA486E3834B0854EE6 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
08:18:08.0155 0x1a7c  STHDA - ok
08:18:08.0233 0x1a7c  [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc          C:\Windows\System32\wiaservc.dll
08:18:08.0264 0x1a7c  stisvc - ok
08:18:08.0296 0x1a7c  [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci        C:\Windows\system32\drivers\storahci.sys
08:18:08.0296 0x1a7c  storahci - ok
08:18:08.0327 0x1a7c  [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
08:18:08.0342 0x1a7c  storflt - ok
08:18:08.0374 0x1a7c  [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc         C:\Windows\system32\storsvc.dll
08:18:08.0389 0x1a7c  StorSvc - ok
08:18:08.0420 0x1a7c  [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc         C:\Windows\system32\drivers\storvsc.sys
08:18:08.0420 0x1a7c  storvsc - ok
08:18:08.0436 0x1a7c  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc           C:\Windows\system32\svsvc.dll
08:18:08.0452 0x1a7c  svsvc - ok
08:18:08.0467 0x1a7c  [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum          C:\Windows\System32\drivers\swenum.sys
08:18:08.0467 0x1a7c  swenum - ok
08:18:08.0514 0x1a7c  [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv           C:\Windows\System32\swprv.dll
08:18:08.0530 0x1a7c  swprv - ok
08:18:08.0592 0x1a7c  [ 52DC0048D667757A8A2E4C87182890AC, 7B43DF6DADFDDBBC5402477FE832052ADB6A39B90111CDA89B5E01CE900F55C5 ] SymDS           C:\Windows\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS
08:18:08.0608 0x1a7c  SymDS - ok
08:18:08.0654 0x1a7c  [ 599872BAD7CFB45C7CE47CDED4B726D8, 5B15B1B22C3ACA1BC56CAFCAFFC2E974C75C77C0AB7355FBA91F2147C0911499 ] SymEFA          C:\Windows\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS
08:18:08.0732 0x1a7c  SymEFA - ok
08:18:08.0764 0x1a7c  [ 42947647F71E9EF2167B42B372F1DDB7, AE825B7DFFAE8BCF5598C512EFAF5645C5A6C4DC90F8B3073A255223DF3AAA4A ] SymELAM         C:\Windows\system32\drivers\NISx64\1405000.01C\SymELAM.sys
08:18:08.0764 0x1a7c  SymELAM - ok
08:18:08.0795 0x1a7c  [ F19E5E37ED8134B9E5F6287F2D3A75D7, 5804D6DF529213CCF7CD2C345483940554CAA5C6EA065A1B09AA54D114C612F8 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
08:18:08.0810 0x1a7c  SymEvent - ok
08:18:08.0857 0x1a7c  [ ADF37F1A715D6C56C8E065FD8569A9A4, 33E895CB326F62D4D22E345563B0641EB88D23B2104A07E8CEBE5ED150882767 ] SymIRON         C:\Windows\system32\drivers\NISx64\1405000.01C\Ironx64.SYS
08:18:08.0857 0x1a7c  SymIRON - ok
08:18:08.0888 0x1a7c  [ 9CDCA70485BD6B9D230365F67C31F132, 137995F1F0124E3A10AAA25551F811602BB5FE8361AE8CBA899C6B98486F4CF3 ] SymNetS         C:\Windows\System32\Drivers\NISx64\1405000.01C\SYMNETS.SYS
08:18:08.0904 0x1a7c  SymNetS - ok
08:18:08.0958 0x1a7c  [ 3F45C3FE208CA5E68832B65C597A35A6, EACE9AAFC01C2BA52F4DA129AEF7BFA3CF7F10146E4F4330CD344BFC39DC959C ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
08:18:08.0973 0x1a7c  SynTP - ok
08:18:09.0051 0x1a7c  [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain         C:\Windows\system32\sysmain.dll
08:18:09.0113 0x1a7c  SysMain - ok
08:18:09.0176 0x1a7c  [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
08:18:09.0176 0x1a7c  SystemEventsBroker - ok
08:18:09.0207 0x1a7c  [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\Windows\System32\TabSvc.dll
08:18:09.0223 0x1a7c  TabletInputService - ok
08:18:09.0254 0x1a7c  [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv         C:\Windows\System32\tapisrv.dll
08:18:09.0254 0x1a7c  TapiSrv - ok
08:18:09.0379 0x1a7c  [ 0E0C16EE82E2F4EBC2FBCA24C8F00D9E, F8B2A0257442E00C5D7C5A15BBD84194D0F0C071424656CA4B8EC850B6898D10 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
08:18:09.0472 0x1a7c  Tcpip - ok
08:18:09.0566 0x1a7c  [ 0E0C16EE82E2F4EBC2FBCA24C8F00D9E, F8B2A0257442E00C5D7C5A15BBD84194D0F0C071424656CA4B8EC850B6898D10 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
08:18:09.0659 0x1a7c  TCPIP6 - ok
08:18:09.0737 0x1a7c  [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
08:18:09.0737 0x1a7c  tcpipreg - ok
08:18:09.0753 0x1a7c  [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
08:18:09.0769 0x1a7c  tdx - ok
08:18:09.0847 0x1a7c  [ 622FCF264119F7DF127BE353F796B319, 6689D8F62F860178685496EF45520967AFAEFF94CFBCC64CF77074F21577E0A2 ] TelevisionFanaticService C:\PROGRA~2\TELEVI~2\bar\1.bin\64barsvc.exe
08:18:09.0847 0x1a7c  TelevisionFanaticService - ok
08:18:09.0862 0x1a7c  [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
08:18:09.0878 0x1a7c  terminpt - ok
08:18:09.0925 0x1a7c  [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService     C:\Windows\System32\termsrv.dll
08:18:09.0956 0x1a7c  TermService - ok
08:18:09.0987 0x1a7c  [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes          C:\Windows\system32\themeservice.dll
08:18:09.0987 0x1a7c  Themes - ok
08:18:10.0018 0x1a7c  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER     C:\Windows\system32\mmcss.dll
08:18:10.0034 0x1a7c  THREADORDER - ok
08:18:10.0096 0x1a7c  [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
08:18:10.0112 0x1a7c  TimeBroker - ok
08:18:10.0161 0x1a7c  [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM             C:\Windows\system32\drivers\tpm.sys
08:18:10.0166 0x1a7c  TPM - ok
08:18:10.0191 0x1a7c  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks          C:\Windows\System32\trkwks.dll
08:18:10.0198 0x1a7c  TrkWks - ok
08:18:10.0266 0x1a7c  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:18:10.0266 0x1a7c  TrustedInstaller - ok
08:18:10.0297 0x1a7c  [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
08:18:10.0297 0x1a7c  TsUsbFlt - ok
08:18:10.0297 0x1a7c  [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
08:18:10.0313 0x1a7c  TsUsbGD - ok
08:18:10.0328 0x1a7c  [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
08:18:10.0328 0x1a7c  tunnel - ok
08:18:10.0344 0x1a7c  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35          C:\Windows\system32\drivers\uagp35.sys
08:18:10.0344 0x1a7c  uagp35 - ok
08:18:10.0360 0x1a7c  [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
08:18:10.0360 0x1a7c  UASPStor - ok
08:18:10.0422 0x1a7c  [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
08:18:10.0422 0x1a7c  UCX01000 - ok
08:18:10.0469 0x1a7c  [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
08:18:10.0484 0x1a7c  udfs - ok
08:18:10.0516 0x1a7c  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect       C:\Windows\system32\UI0Detect.exe
08:18:10.0531 0x1a7c  UI0Detect - ok
08:18:10.0562 0x1a7c  [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
08:18:10.0562 0x1a7c  uliagpkx - ok
08:18:10.0578 0x1a7c  [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus           C:\Windows\System32\drivers\umbus.sys
08:18:10.0578 0x1a7c  umbus - ok
08:18:10.0594 0x1a7c  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass          C:\Windows\System32\drivers\umpass.sys
08:18:10.0609 0x1a7c  UmPass - ok
08:18:10.0625 0x1a7c  [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService    C:\Windows\System32\umrdp.dll
08:18:10.0656 0x1a7c  UmRdpService - ok
08:18:10.0718 0x1a7c  [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost        C:\Windows\System32\upnphost.dll
08:18:10.0750 0x1a7c  upnphost - ok
08:18:10.0796 0x1a7c  [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
08:18:10.0812 0x1a7c  usbccgp - ok
08:18:10.0828 0x1a7c  [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir          C:\Windows\System32\drivers\usbcir.sys
08:18:10.0828 0x1a7c  usbcir - ok
08:18:10.0859 0x1a7c  [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
08:18:10.0859 0x1a7c  usbehci - ok
08:18:10.0890 0x1a7c  [ 4875DC63E548812C75D4FDEF84970C89, 6A29306BAB6F95F0384E16533A9588A654A6E3CFC35D55A4CEB2B14EF34EEE19 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
08:18:10.0890 0x1a7c  usbfilter - ok
08:18:10.0952 0x1a7c  [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
08:18:10.0984 0x1a7c  usbhub - ok
08:18:11.0046 0x1a7c  [ E5F7328B1D29BCE791862CD3C0DD382A, E520D75CA6E4EDB06F576D97FB6B7CFD46A3EF3A3AC881537DE3BB8C862FE8C3 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
08:18:11.0062 0x1a7c  USBHUB3 - ok
08:18:11.0108 0x1a7c  [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci         C:\Windows\System32\drivers\usbohci.sys
08:18:11.0108 0x1a7c  usbohci - ok
08:18:11.0140 0x1a7c  [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
08:18:11.0140 0x1a7c  usbprint - ok
08:18:11.0186 0x1a7c  [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
08:18:11.0186 0x1a7c  USBSTOR - ok
08:18:11.0202 0x1a7c  [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
08:18:11.0202 0x1a7c  usbuhci - ok
08:18:11.0233 0x1a7c  [ 9EF7C01D3ACCBC243B5CB1A95865B2FF, 367A7640B4992E68EB3E1BBD78D3014742F4CC4056750E389048C653251DAD33 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
08:18:11.0233 0x1a7c  usbvideo - ok
08:18:11.0280 0x1a7c  [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
08:18:11.0296 0x1a7c  USBXHCI - ok
08:18:11.0311 0x1a7c  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] VaultSvc        C:\Windows\system32\lsass.exe
08:18:11.0311 0x1a7c  VaultSvc - ok
08:18:11.0342 0x1a7c  [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
08:18:11.0358 0x1a7c  vdrvroot - ok
08:18:11.0419 0x1a7c  [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds             C:\Windows\System32\vds.exe
08:18:11.0475 0x1a7c  vds - ok
08:18:11.0486 0x1a7c  [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
08:18:11.0491 0x1a7c  VerifierExt - ok
08:18:11.0527 0x1a7c  [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
08:18:11.0543 0x1a7c  vhdmp - ok
08:18:11.0558 0x1a7c  [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide          C:\Windows\system32\drivers\viaide.sys
08:18:11.0560 0x1a7c  viaide - ok
08:18:11.0571 0x1a7c  [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
08:18:11.0577 0x1a7c  vmbus - ok
08:18:11.0584 0x1a7c  [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
08:18:11.0587 0x1a7c  VMBusHID - ok
08:18:11.0621 0x1a7c  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
08:18:11.0652 0x1a7c  vmicheartbeat - ok
08:18:11.0668 0x1a7c  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\Windows\System32\ICSvc.dll
08:18:11.0678 0x1a7c  vmickvpexchange - ok
08:18:11.0694 0x1a7c  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv         C:\Windows\System32\ICSvc.dll
08:18:11.0704 0x1a7c  vmicrdv - ok
08:18:11.0720 0x1a7c  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown    C:\Windows\System32\ICSvc.dll
08:18:11.0731 0x1a7c  vmicshutdown - ok
08:18:11.0751 0x1a7c  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync    C:\Windows\System32\ICSvc.dll
08:18:11.0762 0x1a7c  vmictimesync - ok
08:18:11.0777 0x1a7c  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss         C:\Windows\System32\ICSvc.dll
08:18:11.0787 0x1a7c  vmicvss - ok
08:18:11.0814 0x1a7c  [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
08:18:11.0818 0x1a7c  volmgr - ok
08:18:11.0848 0x1a7c  [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
08:18:11.0861 0x1a7c  volmgrx - ok
08:18:11.0910 0x1a7c  [ 78A5BBA3819FFFC62FFEC3E2220D102D, A95797B97D576374C2CDA8A09E6C51A89BADE428AAA89D5093579C85062E5874 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
08:18:11.0920 0x1a7c  volsnap - ok
08:18:11.0934 0x1a7c  [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci            C:\Windows\System32\drivers\vpci.sys
08:18:11.0938 0x1a7c  vpci - ok
08:18:11.0950 0x1a7c  [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
08:18:11.0956 0x1a7c  vsmraid - ok
08:18:12.0043 0x1a7c  [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] VSS             C:\Windows\system32\vssvc.exe
08:18:12.0109 0x1a7c  VSS - ok
08:18:12.0157 0x1a7c  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
08:18:12.0168 0x1a7c  VSTXRAID - ok
08:18:12.0340 0x1a7c  [ C22E26DEDA8CDDCD45B5E0751CD9ABCC, B913266BCB85F1C67AD5A44A53F4DAF4026D46B058EE6174FEC355FF2EA0F338 ] vToolbarUpdater18.1.9 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
08:18:12.0407 0x1a7c  vToolbarUpdater18.1.9 - ok
08:18:12.0443 0x1a7c  [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
08:18:12.0445 0x1a7c  vwifibus - ok
08:18:12.0463 0x1a7c  [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
08:18:12.0467 0x1a7c  vwififlt - ok
08:18:12.0475 0x1a7c  [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
08:18:12.0477 0x1a7c  vwifimp - ok
08:18:12.0531 0x1a7c  [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time         C:\Windows\system32\w32time.dll
08:18:12.0545 0x1a7c  W32Time - ok
08:18:12.0572 0x1a7c  [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
08:18:12.0574 0x1a7c  WacomPen - ok
08:18:12.0620 0x1a7c  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
08:18:12.0624 0x1a7c  Wanarp - ok
08:18:12.0633 0x1a7c  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
08:18:12.0636 0x1a7c  Wanarpv6 - ok
08:18:12.0700 0x1a7c  [ 901CC968412F8155B08D7ABE0171166A, D05A8E3D4D159546394E902C618D0583FE497B51C8F1C86D8E3B9E046819DD53 ] WAS             C:\Windows\system32\inetsrv\iisw3adm.dll
08:18:12.0731 0x1a7c  WAS - ok
08:18:12.0821 0x1a7c  [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine        C:\Windows\system32\wbengine.exe
08:18:12.0888 0x1a7c  wbengine - ok
08:18:12.0921 0x1a7c  [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
08:18:12.0935 0x1a7c  WbioSrvc - ok
08:18:12.0978 0x1a7c  [ AF1349386D4C6786EF4E34FACEF15042, 6B33778409BC54C1955B92508ADDEBAFD629141961B71C94A91DC4CFE8391A13 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
08:18:12.0978 0x1a7c  Wcmsvc - ok
08:18:13.0041 0x1a7c  [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
08:18:13.0072 0x1a7c  wcncsvc - ok
08:18:13.0119 0x1a7c  [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:18:13.0134 0x1a7c  WcsPlugInService - ok
08:18:13.0150 0x1a7c  [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd              C:\Windows\system32\drivers\wd.sys
08:18:13.0150 0x1a7c  Wd - ok
08:18:13.0197 0x1a7c  [ 3772FF85F0098686B0DCD77076AE0786, 8B0221F6003C53856676FFD9CDCFF43DF29B410AB2F340C10BB858F0E6EC14CE ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
08:18:13.0197 0x1a7c  WdBoot - ok
08:18:13.0259 0x1a7c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
08:18:13.0290 0x1a7c  Wdf01000 - ok
08:18:13.0322 0x1a7c  [ AB6F7DE8BFBF61A42F8764D9A621BD8B, DEFDC9FDC0B234403EE1339105B8D12B486D77B3BA01A703339B5DB8B95FA4D8 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
08:18:13.0337 0x1a7c  WdFilter - ok
08:18:13.0384 0x1a7c  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost  C:\Windows\system32\wdi.dll
08:18:13.0384 0x1a7c  WdiServiceHost - ok
08:18:13.0400 0x1a7c  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost   C:\Windows\system32\wdi.dll
08:18:13.0400 0x1a7c  WdiSystemHost - ok
08:18:13.0446 0x1a7c  [ 9B1384CE8E681D2D77BB3524B8E86311, BDEF9D0A79A7C26A88088A306F91632F300E587736CDD2C64717EC54DD6E89FF ] WebClient       C:\Windows\System32\webclnt.dll
08:18:13.0462 0x1a7c  WebClient - ok
08:18:13.0493 0x1a7c  [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc          C:\Windows\system32\wecsvc.dll
08:18:13.0509 0x1a7c  Wecsvc - ok
08:18:13.0524 0x1a7c  [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
08:18:13.0524 0x1a7c  wercplsupport - ok
08:18:13.0571 0x1a7c  [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc          C:\Windows\System32\WerSvc.dll
08:18:13.0571 0x1a7c  WerSvc - ok
08:18:13.0618 0x1a7c  [ 44BB9C31E6242C4BD1CE7C2B440C2533, E603BB001028918B687818E930340008C752679B133037367A8A8E41DA559FFE ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
08:18:13.0618 0x1a7c  WFPLWFS - ok
08:18:13.0649 0x1a7c  [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc          C:\Windows\System32\wiarpc.dll
08:18:13.0665 0x1a7c  WiaRpc - ok
08:18:13.0696 0x1a7c  [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
08:18:13.0712 0x1a7c  WIMMount - ok
08:18:13.0727 0x1a7c  WinDefend - ok
08:18:13.0832 0x1a7c  [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
08:18:13.0888 0x1a7c  WinHttpAutoProxySvc - ok
08:18:13.0955 0x1a7c  [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
08:18:13.0955 0x1a7c  Winmgmt - ok
08:18:14.0095 0x1a7c  [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM           C:\Windows\system32\WsmSvc.dll
08:18:14.0236 0x1a7c  WinRM - ok
08:18:14.0283 0x1a7c  [ BB20956C424531003F7FA6CD36F11D5D, 2C55F1C7553A527A7C4C34E730BE943269AE23928731C64D3DC945E07AE1771E ] WinUsb          C:\Windows\system32\DRIVERS\WinUSB.sys
08:18:14.0283 0x1a7c  WinUsb - ok
08:18:14.0323 0x1a7c  [ 4F2A80D65AE6F845776E2F06AE6782ED, 2455537C048115435D9EDE4B18F9F54C43912076AEF36BDEFEC35AF2140B8B2E ] WirelessButtonDriver C:\Windows\System32\drivers\WirelessButtonDriver64.sys
08:18:14.0323 0x1a7c  WirelessButtonDriver - ok
08:18:14.0401 0x1a7c  [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc         C:\Windows\System32\wlansvc.dll
08:18:14.0464 0x1a7c  WlanSvc - ok
08:18:14.0573 0x1a7c  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
08:18:14.0651 0x1a7c  wlidsvc - ok
08:18:14.0682 0x1a7c  [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
08:18:14.0698 0x1a7c  WmiAcpi - ok
08:18:14.0729 0x1a7c  [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
08:18:14.0744 0x1a7c  wmiApSrv - ok
08:18:14.0791 0x1a7c  WMPNetworkSvc - ok
08:18:14.0822 0x1a7c  [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
08:18:14.0822 0x1a7c  wpcfltr - ok
08:18:14.0869 0x1a7c  [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
08:18:14.0869 0x1a7c  WPCSvc - ok
08:18:14.0916 0x1a7c  [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
08:18:14.0932 0x1a7c  WPDBusEnum - ok
08:18:14.0947 0x1a7c  [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
08:18:14.0947 0x1a7c  WpdUpFltr - ok
08:18:14.0994 0x1a7c  [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
08:18:14.0994 0x1a7c  ws2ifsl - ok
08:18:15.0041 0x1a7c  [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc          C:\Windows\System32\wscsvc.dll
08:18:15.0041 0x1a7c  wscsvc - ok
08:18:15.0056 0x1a7c  WSearch - ok
08:18:15.0182 0x1a7c  [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService       C:\Windows\System32\WSService.dll
08:18:15.0300 0x1a7c  WSService - ok
08:18:15.0459 0x1a7c  [ F2463B2E9818D242B4F72B237E9BD545, 3ACD98FB3BD8E12E6A66390CF0ED88050AB90A5B888C1E55914D362E03A1EB93 ] wuauserv        C:\Windows\system32\wuaueng.dll
08:18:15.0585 0x1a7c  wuauserv - ok
08:18:15.0632 0x1a7c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
08:18:15.0636 0x1a7c  WudfPf - ok
08:18:15.0660 0x1a7c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
08:18:15.0666 0x1a7c  WUDFRd - ok
08:18:15.0680 0x1a7c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys
08:18:15.0686 0x1a7c  WUDFSensorLP - ok
08:18:15.0720 0x1a7c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
08:18:15.0726 0x1a7c  wudfsvc - ok
08:18:15.0740 0x1a7c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
08:18:15.0746 0x1a7c  WUDFWpdFs - ok
08:18:15.0757 0x1a7c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
08:18:15.0763 0x1a7c  WUDFWpdMtp - ok
08:18:15.0819 0x1a7c  [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc         C:\Windows\System32\wwansvc.dll
08:18:15.0850 0x1a7c  WwanSvc - ok
08:18:15.0865 0x1a7c  ================ Scan global ===============================
08:18:15.0912 0x1a7c  [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\system32\basesrv.dll
08:18:15.0959 0x1a7c  [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\system32\winsrv.dll
08:18:16.0006 0x1a7c  [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\system32\sxssrv.dll
08:18:16.0021 0x1a7c  [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\system32\services.exe
08:18:16.0037 0x1a7c  [ Global ] - ok
08:18:16.0037 0x1a7c  ================ Scan MBR ==================================
08:18:16.0053 0x1a7c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
08:18:16.0068 0x1a7c  \Device\Harddisk0\DR0 - ok
08:18:16.0068 0x1a7c  ================ Scan VBR ==================================
08:18:16.0084 0x1a7c  [ 6283A6969F1961B2062C61E47F828024 ] \Device\Harddisk0\DR0\Partition1
08:18:16.0099 0x1a7c  \Device\Harddisk0\DR0\Partition1 - ok
08:18:16.0099 0x1a7c  [ 9558EB4768A6C905F00B688030E25C5B ] \Device\Harddisk0\DR0\Partition2
08:18:16.0115 0x1a7c  \Device\Harddisk0\DR0\Partition2 - ok
08:18:16.0131 0x1a7c  [ 7DEF83FFE83D8CEE2AEE86CC7D4A2319 ] \Device\Harddisk0\DR0\Partition3
08:18:16.0131 0x1a7c  \Device\Harddisk0\DR0\Partition3 - ok
08:18:16.0146 0x1a7c  [ 902123F84731D9AA738FDF8A94F69D4A ] \Device\Harddisk0\DR0\Partition4
08:18:16.0162 0x1a7c  \Device\Harddisk0\DR0\Partition4 - ok
08:18:16.0193 0x1a7c  [ 43C15657A0BD675045636CAD1FD356A4 ] \Device\Harddisk0\DR0\Partition5
08:18:16.0209 0x1a7c  \Device\Harddisk0\DR0\Partition5 - ok
08:18:16.0209 0x1a7c  ================ Scan generic autorun ======================
08:18:16.0305 0x1a7c  [ 21247A9F74DA9C8AF98E6847F82D07A8, BE84D3CD0A2149E3FC5EDC78C09C0A94FD3CE354B7C5C3F88457C6C1FAF82ECF ] C:\Program Files\IDT\WDM\sttray64.exe
08:18:16.0358 0x1a7c  SysTrayApp - ok
08:18:16.0361 0x1a7c  SynTPEnh - ok
08:18:16.0417 0x1a7c  [ F6DC4156B10629B1BCB37152D3523326, 468546874C24817222DA03AE6308005A4CE3243B2D0559D88C5466837E8AADDA ] C:\PROGRA~2\TELEVI~2\bar\1.bin\AppIntegrator64.exe
08:18:16.0431 0x1a7c  TelevisionFanatic Home Page Guard 64 bit - ok
08:18:16.0517 0x1a7c  [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
08:18:16.0517 0x1a7c  NCPluginUpdater - ok
08:18:16.0610 0x1a7c  [ 38161F642AA7A2882914DDB0E90FF41C, 76236F618A6646BFD286641543E068285B71169FBF44381BB7EE6396EA67EC24 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
08:18:16.0673 0x1a7c  StartCCC - ok
08:18:16.0720 0x1a7c  [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
08:18:16.0720 0x1a7c  RemoteControl10 - ok
08:18:16.0829 0x1a7c  [ D1C8B0DC04347B6B9B5B3B9204DF6756, DA4D1CC98DCDFDF674F83164843A6B4E8830232700BE13CC755F94638351DA8B ] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
08:18:16.0860 0x1a7c  HP CoolSense - ok
08:18:16.0954 0x1a7c  [ D35AC3FFDBF9FAB743024FC88AA90056, FCF39545D3F9C21E444C5A9E02B33B809E5545F6886123D034C6AF35AD11C1EB ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
08:18:16.0969 0x1a7c  CLVirtualDrive - ok
08:18:17.0188 0x1a7c  [ 8335E440B93C3FD3B699B74583DDE295, CE9C574954EB46674A5753E389FDA6C362C53FDEED3D781A23952F70AEEB1CC9 ] C:\Program Files (x86)\AVG\AVG2013\avgui.exe
08:18:17.0359 0x1a7c  AVG_UI - ok
08:18:17.0531 0x1a7c  [ A7D6721D90AB8D3EE1DB118F23FEB653, 25570EFF59410E2FB9082202091F7F8A375F3AD7A3C8090D3CFF8FEFC23E6AAE ] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
08:18:17.0656 0x1a7c  vProt - ok
08:18:17.0718 0x1a7c  [ 6198A9BC15ED77F318D5DDD1918CF1D1, 6C7E619BB053F09021F5867E3A70A3A2890E2318CF1A5CE294A5F894CB3A4890 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
08:18:17.0734 0x1a7c  HP Quick Launch - ok
08:18:17.0765 0x1a7c  [ FB85F333D10B1475650C4304F99A1ECE, BED200CCCBAB9D0B7F5FF299B74A0FF52731366DA956960FC3EA45EDAAF9CB10 ] C:\PROGRA~2\TELEVI~2\bar\1.bin\64srchmn.exe
08:18:17.0780 0x1a7c  TelevisionFanatic Search Scope Monitor - ok
08:18:17.0780 0x1a7c  [ 35D6CAAA9E4D82974A74DBDB53801F98, 5418B7BB40B097DA6370ADA1194F8B2D2D3EEFA3CA36A6EB31D39DF7791A25A3 ] C:\PROGRA~2\TELEVI~2\bar\1.bin\64brmon.exe
08:18:17.0780 0x1a7c  TelevisionFanatic Browser Plugin Loader - ok
08:18:17.0862 0x1a7c  [ B4E6C1B28AF8806008CB654C716ABAFA, A42929D47D6D77D0A4B2BDAB61F11B2D5CAB0DE1AECEF29AE37BBF47E076BDB5 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
08:18:17.0862 0x1a7c  iTunesHelper - ok
08:18:18.0018 0x1a7c  [ 9E1807541A68FBE2166F544B27BA2223, ECFDD287CCC937062BC8A83A0B387766E5912FB9643558E2F297AE2A1B395F4C ] C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
08:18:18.0065 0x1a7c  Power2GoExpress8 - ok
08:18:18.0190 0x1a7c  [ 918007C1311C833B58F50B59B454266D, D41F20AF6D1664BEDC12DF152849BC058D31D9563B9FA973B71BCCEEE17EDB80 ] C:\Users\Hector\AppData\Roaming\Betcat\WebCakeDesktop.exe
08:18:18.0190 0x1a7c  WebCake Desktop - ok
08:18:18.0268 0x1a7c  [ 224F6B374852153C8C24BED141AE3A20, 9F73B0E980DF0AEA1CA13A3418DB2434AB8E3C56E97F150A5FD62489583A9D20 ] C:\Windows\SysWOW64\rundll32.exe
08:18:18.0268 0x1a7c  NextLive - ok
08:18:18.0611 0x1a7c  [ AB8A460FCEF1AFBFF25F35069795E521, 3F4F97FE5DAD758E58262C431498BEB136AA85929F2BEA9F47C56D805E1CC45F ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
08:18:18.0939 0x1a7c  SUPERAntiSpyware - ok
08:18:19.0579 0x1a7c  [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe
08:18:19.0969 0x1a7c  CCleaner Monitoring - ok
08:18:19.0992 0x1a7c  Waiting for KSN requests completion. In queue: 138
08:18:21.0002 0x1a7c  Waiting for KSN requests completion. In queue: 138
08:18:22.0016 0x1a7c  Waiting for KSN requests completion. In queue: 138
08:18:23.0077 0x1a7c  AV detected via SS2: AVG AntiVirus Free Edition 2013, C:\Program Files (x86)\AVG\AVG2013\avgwsc.exe ( 13.0.0.3300 ), 0x41000 ( enabled : updated )
08:18:23.0093 0x1a7c  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x60100 ( disabled : updated )
08:18:23.0093 0x1a7c  AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\WSCStub.exe ( 20.5.0.0 ), 0x54010 ( disabled : outofdate )
08:18:23.0093 0x1a7c  FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\WSCStub.exe ( 20.5.0.0 ), 0x50010 ( disabled )
08:18:23.0124 0x1a7c  Win FW state via NFP2: enabled
08:18:25.0698 0x1a7c  ============================================================
08:18:25.0698 0x1a7c  Scan finished
08:18:25.0698 0x1a7c  ============================================================
08:18:25.0714 0x18e8  Detected object count: 0
08:18:25.0714 0x18e8  Actual detected object count: 0
 



#5 Sprinkles82

Sprinkles82
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 12 October 2014 - 10:45 AM

# AdwCleaner v3.311 - Report created 12/10/2014 at 08:39:15
# Updated 30/09/2014 by Xplode
# Operating System : Windows 8  (64 bits)
# Username : Hector - MEGATRON
# Running from : C:\Users\Hector\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : CltMngSvc
[#] Service Deleted : IBUpdaterService
Service Deleted : TelevisionFanaticService

***** [ Files / Folders ] *****

Folder Deleted : C:\SearchProtect
Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\eSafe
Folder Deleted : C:\ProgramData\Systweak
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files (x86)\Advanced System Protector
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\AVG Security Toolbar
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Desk 365
Folder Deleted : C:\Program Files (x86)\Highlightly
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\RegClean Pro
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\Program Files (x86)\sweetpacks bundle uninstaller
Folder Deleted : C:\Program Files (x86)\TelevisionFanatic
Folder Deleted : C:\Program Files (x86)\WebCake
Folder Deleted : C:\Program Files (x86)\WhiteSmoke_New
Folder Deleted : C:\Program Files (x86)\Gigantic Savings
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Windows\SysWOW64\ARFC
Folder Deleted : C:\Windows\SysWOW64\jmdp
Folder Deleted : C:\Windows\SysWOW64\SearchProtect
Folder Deleted : C:\Windows\SysWOW64\WNLT
Folder Deleted : C:\Program Files\Highlightly
Folder Deleted : C:\Program Files\Level Quality Watcher
Folder Deleted : C:\Program Files\Uninstaller
Folder Deleted : C:\Program Files\Updater By SweetPacks
Folder Deleted : C:\Windows\System32\ljkb
Folder Deleted : C:\Users\Hector\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Hector\AppData\Local\Conduit
Folder Deleted : C:\Users\Hector\AppData\Local\genienext
Folder Deleted : C:\Users\Hector\AppData\Local\iac
Folder Deleted : C:\Users\Hector\AppData\Local\Local_Weather_LLC
Folder Deleted : C:\Users\Hector\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Hector\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Hector\AppData\Local\TelevisionFanatic
Folder Deleted : C:\Users\Hector\AppData\Local\WeatherAlerts
Folder Deleted : C:\Users\Hector\AppData\Local\Temp\Smartbar
Folder Deleted : C:\Users\Hector\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Hector\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Hector\AppData\LocalLow\iac
Folder Deleted : C:\Users\Hector\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Hector\AppData\LocalLow\TelevisionFanatic
Folder Deleted : C:\Users\Hector\AppData\LocalLow\WhiteSmoke_New
Folder Deleted : C:\Users\Hector\AppData\Roaming\Betcat
Folder Deleted : C:\Users\Hector\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\Hector\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Hector\AppData\Roaming\WebCake
Folder Deleted : C:\Users\Hector\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weather Alerts
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\gethighlightly@gethighlightly.com
File Deleted : C:\END
File Deleted : C:\Users\Public\Desktop\eBay.lnk
File Deleted : C:\Windows\System32\dmwu.exe
File Deleted : C:\Windows\System32\ImhxxpComm.dll
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Windows\System32\sasnative64.exe
File Deleted : C:\Users\Hector\daemonprocess.txt
File Deleted : C:\Users\Hector\AppData\LocalLow\SkwConfig.bin
File Deleted : C:\Users\Hector\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopWeatherAlerts.lnk
File Deleted : C:\Users\Hector\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Weather Alerts.lnk
File Deleted : C:\Users\Hector\AppData\Roaming\Mozilla\Firefox\Profiles\2vi6v8ij.default-1397080867383\searchplugins\conduit-search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml

***** [ Scheduled Tasks ] *****

Task Deleted : Advanced System Protector_startup
Task Deleted : Desk 365 RunAsStdUser
Task Deleted : RegClean Pro
Task Deleted : RegClean Pro_DEFAULT
Task Deleted : RegClean Pro_UPDATES

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{7D4F1959-3F72-49d5-8E59-F02F8AA6815D}]
Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{7D4F1959-3F72-49d5-8E59-F02F8AA6815D}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [64ffxtbr@TelevisionFanatic.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [gethighlightly@gethighlightly.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [WebCake Desktop]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\DesktopWeatherAlertsApp_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\DesktopWeatherAlertsApp_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032116.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032116.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032116.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032116.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289847
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [TelevisionFanatic Browser Plugin Loader]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{04D2B915-19FF-41E9-994D-95DC898BEA43}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5D79F641-C168-40DF-A32F-BACEA7509E75}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6D4506CE-F855-4657-AA38-DB6B1F733982}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C98D5B61-B0EA-4D48-9839-1079D352D880}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CB41FC95-F1B3-4797-8BB6-1012FF62ABBA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F02C0832-C85C-4B93-8C6F-9DF20121A10D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{739DF940-C5EE-4BAB-9D7E-270894AE687A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1BB8B3AE-757D-443F-B3A4-0629E709B0D9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311211116}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322212216}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355215516}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366216616}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344214416}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5D79F641-C168-40DF-A32F-BACEA7509E75}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CB41FC95-F1B3-4797-8BB6-1012FF62ABBA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{739DF940-C5EE-4BAB-9D7E-270894AE687A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311211116}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D79F641-C168-40DF-A32F-BACEA7509E75}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C98D5B61-B0EA-4D48-9839-1079D352D880}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CB41FC95-F1B3-4797-8BB6-1012FF62ABBA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{739DF940-C5EE-4BAB-9D7E-270894AE687A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BB8B3AE-757D-443F-B3A4-0629E709B0D9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311211116}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5D79F641-C168-40DF-A32F-BACEA7509E75}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C98D5B61-B0EA-4D48-9839-1079D352D880}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CB41FC95-F1B3-4797-8BB6-1012FF62ABBA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{739DF940-C5EE-4BAB-9D7E-270894AE687A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110311211116}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{04D2B915-19FF-41E9-994D-95DC898BEA43}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F02C0832-C85C-4B93-8C6F-9DF20121A10D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1BB8B3AE-757D-443F-B3A4-0629E709B0D9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{60FD2486-D81A-4A07-BD62-4801694FC996}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{702E3638-F433-4899-94CF-3FC6A5F9CB5D}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5B9C0F5-5616-47CD-A95F-E43B488FACCF}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A5B9C0F5-5616-47CD-A95F-E43B488FACCF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{C98D5B61-B0EA-4D48-9839-1079D352D880}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{739DF940-C5EE-4BAB-9D7E-270894AE687A}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C98D5B61-B0EA-4D48-9839-1079D352D880}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{739DF940-C5EE-4BAB-9D7E-270894AE687A}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{0696F815-A3A9-490A-BB14-9EC3350B1276}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{739DF940-C5EE-4BAB-9D7E-270894AE687A}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355215516}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366216616}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\AVG Security Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\SweetIM
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\TelevisionFanatic
Key Deleted : HKCU\Software\WEDLMNGR
Key Deleted : HKCU\Software\WNLT
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\TelevisionFanatic
Key Deleted : HKCU\Software\AppDataLow\Software\WhiteSmoke_New
Key Deleted : HKCU\Software\AppDataLow\Software\Gigantic Savings
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Desksvc
Key Deleted : HKLM\SOFTWARE\eSafeSecControl
Key Deleted : HKLM\SOFTWARE\hdcode
Key Deleted : HKLM\SOFTWARE\SavingsBullFilter
Key Deleted : HKLM\SOFTWARE\SearchProtect
Key Deleted : HKLM\SOFTWARE\SweetIM
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\TelevisionFanatic
Key Deleted : HKLM\SOFTWARE\Updater By Sweetpacks
Key Deleted : HKLM\SOFTWARE\WhiteSmoke_New
Key Deleted : HKLM\SOFTWARE\Gigantic Savings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DesktopWeatherAlerts
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DD85D6BF-4787-4A93-99A5-3F0CF0AE8834}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DMUninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WhiteSmoke_New Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Gigantic Savings
Key Deleted : [x64] HKCU\Software\WNLT
Key Deleted : [x64] HKLM\SOFTWARE\DomaIQ
Key Deleted : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\Updater By Sweetpacks
Key Deleted : [x64] HKLM\SOFTWARE\WNLT
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.17054

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]

-\\ Mozilla Firefox v29.0.1 (en-US)

[ File : C:\Users\Hector\AppData\Roaming\Mozilla\Firefox\Profiles\2vi6v8ij.default-1397080867383\prefs.js ]

Line Deleted : user_pref("avg.install.Revert_HP", "hxxp://start.sweetpacks.com/?barid={37415E43-DC22-11E2-BE86-8434978A80F7}&src=10&crg=3.5000006.10042&st=23");
Line Deleted : user_pref("avg.userPreferences.URLBarFocus.whiteList", "bing\\.com|google\\.\\w+|yahoo\\.\\w+|gmail\\.\\w+|hotmail\\.\\w+|live\\.\\w+|isearch\\.avg\\.com|mysearch\\.avg\\.com");
Line Deleted : user_pref("browser.newtab.url", "hxxp://start.sweetpacks.com/?barid={37415E43-DC22-11E2-BE86-8434978A80F7}&src=97&&st=23");
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=2E2B6813-877D-4086-A03C-26F8C47A4938&n=780bd353&p2=^XP^xdm488^YYA^us&si=CJHRlO-pvLkCFRDxOgodk1wAl[...]
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.initialized", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.installation.contextKey", "");
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.installation.partnerId", "^XP^xdm488^YYA^us");
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.installation.partnerSubId", "CJHRlO-pvLkCFRDxOgodk1wAlQ");
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.installation.success", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.installation.toolbarId", "2E2B6813-877D-4086-A03C-26F8C47A4938");
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.lastActivePing", "1413126006400");
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.options.defaultSearch", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.options.homePageEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.options.keywordEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.options.tabEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.weather.location", "28301");
Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "televisionfanatic@mindspark.com");
Line Deleted : user_pref("keyword.URL", "hxxp://start.sweetpacks.com?src=6&barid={37415E43-DC22-11E2-BE86-8434978A80F7}&&st=23&q=");

*************************

AdwCleaner[R0].txt - [31247 octets] - [12/10/2014 08:36:35]
AdwCleaner[S0].txt - [29051 octets] - [12/10/2014 08:39:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [29112 octets] ##########
 



#6 Sprinkles82

Sprinkles82
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 12 October 2014 - 10:57 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.2 (10.09.2014:1)
OS: Windows 8 x64
Ran by Hector on Sun 10/12/2014 at  8:49:56.73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TelevisionFanatic Search Scope Monitor



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{31CFFB60-8AB6-4374-80CB-EFA889C469B0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{3CCF60A9-E611-4ADC-8FFD-0F3D3DAB8E30}



~~~ Files

Successfully deleted: [File] "C:\Users\Hector\appdata\locallow\skwconfig.bin"



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\highlightly"



~~~ FireFox

Successfully deleted the following from C:\Users\Hector\AppData\Roaming\mozilla\firefox\profiles\2vi6v8ij.default-1397080867383\prefs.js

user_pref("avg.install.extHomepage", "hxxps://mysearch.avg.com?pid=safeguard&sg=0&cid=%7Bdca10d85-6d33-4930-bb5a-f2714cd419ad%7D&mid=6882dbedd97047d39d3c557dd16e6904-887105ee4
user_pref("browser.startup.homepage", "hxxps://mysearch.avg.com?pid=safeguard&sg=0&cid=%7Bdca10d85-6d33-4930-bb5a-f2714cd419ad%7D&mid=6882dbedd97047d39d3c557dd16e6904-887105ee
Emptied folder: C:\Users\Hector\AppData\Roaming\mozilla\firefox\profiles\2vi6v8ij.default-1397080867383\minidumps [2 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 10/12/2014 at  8:55:23.00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,561 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 AM

Posted 12 October 2014 - 11:37 AM

After ESET we have some things to do.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Sprinkles82

Sprinkles82
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 12 October 2014 - 05:03 PM

Ok, waiting on the scan to finsh so I can post the results

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,561 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 AM

Posted 12 October 2014 - 07:02 PM

Ok...I'll be back.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Sprinkles82

Sprinkles82
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 13 October 2014 - 04:39 PM

C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\Betcat\WebCakeDesktop.exe.vir    MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\Betcat\dat\Desktop.OS.dll.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\Betcat\dat\Dora.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\Betcat\dat\Maintain.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\Betcat\dat\Paladin.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\Betcat\dat\Phoenix.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\Systweak\ssd\SSDPTstub.exe.vir    Win32/Systweak.G potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\WebCake\WebCakeDesktop.exe.vir    MSIL/WebCake.B potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\WebCake\dat\Dora.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\WebCake\dat\Maintain.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\WebCake\dat\Paladin.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Roaming\WebCake\dat\Phoenix.dat.vir    a variant of MSIL/WebCake.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Windows\System32\roboot64.exe.vir    a variant of Win64/Systweak.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Windows\System32\sasnative64.exe.vir    Win64/AdvancedSystemProtector.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\jmdp\SweetNT.crx.vir    Win32/SweetIM.J potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\WNLT\Installation\NTSetup.exe.vir    Win32/SweetIM.J potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\WNLT\Installation\SKSetup.exe.vir    Win32/SweetIM.J potentially unwanted application    
C:\temp\InstallFilter64.msi    multiple threats    
C:\temp\t.msi    multiple threats    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LRAEDVH5\Buzz-it_2090-5295[1].exe    multiple threats    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LRAEDVH5\SPSetup[1].exe    Win32/Conduit.SearchProtect.Q potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LRAEDVH5\statisticsstub[1].exe    Win32/Toolbar.Conduit potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LRAEDVH5\tbedrs[1].dll    a variant of Win32/Toolbar.Conduit.Y potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PDUB4QV8\mgsqlite3[1].7z    Win32/SweetIM.K potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PDUB4QV8\SPSetup[1].exe    Win32/Conduit.SearchProtect.Q potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RB5PS7HM\checktbexist[1].exe    Win32/Toolbar.Conduit.AF potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RB5PS7HM\DesktopWeatherAlertsSetup[1].exe    a variant of MSIL/Adware.StrongVault.A application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RB5PS7HM\SearchProtectGeneric2[1].exe    Win32/OutBrowse.Q potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RB5PS7HM\SPSetup[1].exe    Win32/Conduit.SearchProtect.A potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RB5PS7HM\spstub[1].exe    Win32/Conduit.SearchProtect.L potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RB5PS7HM\stubinst_pkg_en-us[1].cab    Win32/OpenCandy potentially unsafe application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RB5PS7HM\updater[1].exe    Win32/Packed.ScrambleWrapper.E potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYNU8EJ6\RegClean2[1].exe    a variant of Win32/Reporter.A potentially unwanted application    
C:\Users\Hector\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYNU8EJ6\WhiteSmoke_New[1].exe    Win32/Toolbar.Conduit potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\1_Offer_10.exe    multiple threats    
C:\Users\Hector\AppData\Local\Temp\DefaultTabSetup.exe    a variant of Win32/Toolbar.DefaultTab.B potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\dl_1372005027.exe    a variant of Win32/ELEX.Q potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DM1393897792.exe    a variant of Win32/OutBrowse.D potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DM1393897854.exe    a variant of Win32/OutBrowse.D potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\mgsqlite3.7z    Win32/SweetIM.K potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\mgsqlite3.dll    Win32/SweetIM.K potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\nsj73CE.exe    Win32/Conduit.SearchProtect.S potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\nso108C.exe    Win32/Conduit.SearchProtect.S potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\SearchProtectINT.exe    Win32/Toolbar.Conduit.R potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\SecondStepInstaller.exe    Win32/Conduit.SearchProtect.A potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\setup.exe    a variant of Win32/Amonetize.N potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\Shortcut_SweetIPacks.exe    a variant of Win32/SweetIM.C potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\ToolbarHelper.exe    Win32/Toolbar.Conduit.V potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\UpdUninstall.exe    a variant of Win32/Amonetize.I potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\v2_fu0nd.exe.part    a variant of Win32/AirAdInstaller.A potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\WSSetup.exe    Win32/SweetIM.E potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\AU\SPSetup.exe    Win32/Conduit.SearchProtect.Q potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\ct3289847\ctbe.exe    Win32/Toolbar.Conduit.AF potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\ct3289847\ieLogic.exe    Win32/Toolbar.Conduit potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\ct3289847\statisticsStub.exe    Win32/Toolbar.Conduit potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\AVG-Anti-Virus-Free-Edition-2012_081\AVG-Anti-Virus-Free-Edition-2012_V.a.exe    a variant of Win32/DomaIQ.AI potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\AVG-Anti-Virus-Free-Edition-2012_081\setup__120.exe    a variant of Win32/Amonetize.H potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\AVG-Anti-Virus-Free-Edition-2012_081\software\Desk365.exe    a variant of Win32/ELEX.Q potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\AVG-Anti-Virus-Free-Edition-2012_081\software\OptimizerPro.exe    a variant of Win32/SpeedingUpMyPC.B application    
C:\Users\Hector\AppData\Local\Temp\DIQM\AVG-Anti-Virus-Free-Edition-2012_081\software\SweetIPacks.exe    a variant of Win32/SweetIM.C potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\AVG-Anti-Virus-Free-Edition-2012_081\software\Webcake.exe    Win32/WebCake.A potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\FlashPlayer_151\exes.zip    Win32/DomaIQ.E potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\FlashPlayer_151\setup__120.exe    a variant of Win32/Amonetize.H potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\FlashPlayer_151\software\DefaultTabSetup.exe    a variant of Win32/Toolbar.DefaultTab.B potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\DIQM\FlashPlayer_151\software\Downloadterms.exe    a variant of Win32/AdWare.Toolbar.AmyBar.A application    
C:\Users\Hector\AppData\Local\Temp\DIQM\FlashPlayer_151\software\lesstabs-setup.exe    a variant of Win32/AdWare.Vitruvian.A application    
C:\Users\Hector\AppData\Local\Temp\DIQM\FlashPlayer_151\software\OptimizerPro.exe    a variant of Win32/SpeedingUpMyPC.B application    
C:\Users\Hector\AppData\Local\Temp\DIQM\FlashPlayer_151\software\Setup__120_i17670524.exe    a variant of Win32/Amonetize.H potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\is1275519350\53471582_stp\Mobogenie_Setup_UN.exe    Win32/Mobogenie.B potentially unwanted application    
C:\Users\Hector\AppData\Local\Temp\nsoC57\SpSetup.exe    Win32/Conduit.SearchProtect.Q potentially unwanted application    
C:\Users\Hector\AppData\Local\Updater32116\Updater32116.exe    a variant of Win32/Toolbar.CrossRider.C potentially unwanted application    
C:\Users\Hector\Desktop\Old Firefox Data\stowgkcc.default\extensions\64ffxtbr@TelevisionFanatic.com\plugins\FF-NativeMessagingDispatcher.dll    a variant of Win32/Toolbar.MyWebSearch.AI potentially unwanted application    
C:\Users\Hector\Downloads\Kanye_West_Ft._Kim_Kardashian_-_Bound_2__[Explicit]_1080p_[Sbyky.exe    a variant of Win32/AdWare.iBryte.Q application    
C:\Users\Hector\Downloads\Kim.Kardashian.Superstar.XXX.DVDRiP.XviD-DivXfacTory(1).exe    a variant of Win32/AdWare.iBryte.Q application    
C:\Users\Hector\Downloads\Kim.Kardashian.Superstar.XXX.DVDRiP.XviD-DivXfacTory(2).exe    a variant of Win32/AdWare.iBryte.Q application    
C:\Users\Hector\Downloads\Kim.Kardashian.Superstar.XXX.DVDRiP.XviD-DivXfacTory.exe    a variant of Win32/AdWare.iBryte.Q application    
C:\Users\Hector\Downloads\Mumble_TSV215PR1.exe    a variant of Win32/Toolbar.Conduit.AE potentially unwanted application    
C:\Users\Hector\Downloads\Mumble_TSV31HV9Z.exe    a variant of Win32/Toolbar.Conduit.AE potentially unwanted application    
C:\Users\Hector\Downloads\Setup(2).exe    a variant of Win32/AirAdInstaller.A potentially unwanted application    
C:\Users\Hector\Downloads\Xvid_RocketFuelInstaller.exe    a variant of Win32/Verti.A potentially unwanted application    
C:\Windows\Installer\71ac037.msi    Win32/Toolbar.Linkury.D potentially unwanted application    
C:\Windows\Installer\9ea9dad.msi    a variant of Win32/SweetIM.L potentially unwanted application    
C:\Windows\Installer\MSIE2C5.tmp    a variant of MSIL/Toolbar.Linkury.G potentially unwanted application    
C:\Windows\System32\mjcm\SweetNT.crx    Win32/SweetIM.J potentially unwanted application    
C:\Windows\SysWOW64\mjcm\SweetNT.crx    Win32/SweetIM.J potentially unwanted application    
C:\Windows\Temp\nsw847D.exe    Win32/Conduit.SearchProtect.S potentially unwanted application    
C:\Windows\Temp\Optimizer_Pro.exe    multiple threats    
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Gigantic Savings\Gigantic Savings-helper.exe.vir    a variant of Win32/Toolbar.CrossRider.I potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Gigantic Savings\Uninstall.exe.vir    a variant of Win32/Packed.VMDetector.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\nengine.dll.vir    Win32/NextLive.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RegClean Pro\Cloud_Backup_Setup_Intl.exe.vir    Win32/MyPCBackup.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RegClean Pro\systweakasp.exe.vir    MSIL/AdvancedSystemProtector.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir    Win32/Conduit.SearchProtect.Q potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir    a variant of Win32/Conduit.SearchProtect.I potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll.vir    a variant of Win64/Conduit.SearchProtect.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir    a variant of Win32/Conduit.SearchProtect.I potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\ClearHist.exe.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgcommon.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgconfig.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mghooking.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mglogger.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll.vir    a variant of Win32/SweetIM.L potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64auxstb.dll.vir    Win32/Toolbar.MyWebSearch.W potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64bar.dll.vir    a variant of Win32/Toolbar.MyWebSearch.W potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64barsvc.exe.vir    Win32/Toolbar.MyWebSearch.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64brmon.exe.vir    Win32/Toolbar.MyWebSearch.W potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64brstub.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64datact.dll.vir    a variant of Win32/Toolbar.MyWebSearch.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64dlghk.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64dyn.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64feedmg.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64highin.exe.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64hkstub.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64htmlmu.dll.vir    a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64httpct.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64idle.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64ieovr.dll.vir    a variant of Win32/Toolbar.MyWebSearch.P potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64impipe.exe.vir    Win32/Toolbar.MyWebSearch.W potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64medint.exe.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64mlbtn.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64msg.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64Plugin.dll.vir    a variant of Win32/Toolbar.MyWebSearch potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64radio.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64regfft.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64reghk.dll.vir    Win32/Toolbar.MyWebSearch.W potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64regiet.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64script.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64skin.dll.vir    a variant of Win32/Toolbar.MyWebSearch.P potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64sknlcr.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64skplay.exe.vir    Win32/Toolbar.MyWebSearch.W potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64SrcAs.dll.vir    a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64SrchMn.exe.vir    Win32/Toolbar.MyWebSearch.W potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64tpinst.dll.vir    a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\64uabtn.dll.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\AppIntegrator64.exe.vir    Win64/Toolbar.MyWebSearch.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\AppIntegratorStub64.dll.vir    Win64/Toolbar.MyWebSearch.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\CREXT.DLL.vir    a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\CrExtP64.exe.vir    a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\DPNMNGR.DLL.vir    a variant of Win32/Toolbar.MyWebSearch.AI potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\EXEMANAGER.DLL.vir    a variant of Win32/Toolbar.MyWebSearch.AI potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\Hpg64.dll.vir    Win64/Toolbar.MyWebSearch.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\T8EXTEX.DLL.vir    a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\T8EXTPEX.DLL.vir    Win32/Toolbar.MyWebSearch.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\T8HTML.DLL.vir    a variant of Win32/Toolbar.MyWebSearch.F potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\T8TICKER.DLL.vir    a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TelevisionFanatic\bar\1.bin\VERIFY.DLL.vir    a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WhiteSmoke_New\hk64tbWhit.dll.vir    a variant of Win64/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WhiteSmoke_New\hktbWhit.dll.vir    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WhiteSmoke_New\ldrtbWhit.dll.vir    a variant of Win32/Toolbar.Conduit.P potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WhiteSmoke_New\prxtbWhit.dll.vir    Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WhiteSmoke_New\tbWhit.dll.vir    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WhiteSmoke_New\WhiteSmoke_NewToolbarHelper.exe.vir    Win32/Toolbar.Conduit.V potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\_Setupx.dll.vir    a variant of Win32/Adware.Yontoo.B application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Local\Conduit\CT3289847\WhiteSmoke_NewAutoUpdateHelper.exe.vir    Win32/Toolbar.Conduit.G potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\Local\WeatherAlerts\DesktopWeatherAlertsApp.exe.vir    a variant of MSIL/Adware.StrongVault.A application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\hk64tbWhi0.dll.vir    a variant of Win64/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\hk64tbWhit.dll.vir    a variant of Win64/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\hktbWhi0.dll.vir    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\hktbWhit.dll.vir    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\ldrtbWhi0.dll.vir    a variant of Win32/Toolbar.Conduit.P potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\ldrtbWhit.dll.vir    a variant of Win32/Toolbar.Conduit.P potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\tbWhi0.dll.vir    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\tbWhi1.dll.vir    a variant of Win32/Toolbar.Conduit.Y potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\tbWhit.dll.vir    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Hector\AppData\LocalLow\WhiteSmoke_New\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.12\bin\PriceGongIE.dll.vir    a variant of Win32/PriceGong.A potentially unwanted application    deleted - quarantined
 



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,561 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:25 AM

Posted 14 October 2014 - 12:05 PM

Looks like you may have torrented all this onto your machine,especially with the outdated AV.


Lets also run this then we will clear up some programs.


Malwarebytes Anti-Malware Free and Malwarebytes Chameleon

----------
  • Download Malwarebytes Anti-Malware Free and save it to your desktop
  • Double click the desktop icon, click Run, then OK
  • Click Next
  • Select I accept the agreement then continue to click Next then finally click Install
  • Uncheck Enable free trial of Malwarebytes Anti-Malware Premium if you do not want the free trial of the paid version, then click Finish
  • If you are notified the Database is out of date click Update Now
  • Click Scan Now >>
----------
  • Note: If Malwarebytes will not launch please do the following to launch Malwarebytes Chameleon:
  • Click Start (Start, Search, All files and folders for Windows XP) then type mbam
  • Double click one of the four following files (if one does not work try the next one, and so on) - A black command window will open. Follow those instructions until the Malwarebytes program starts the scan

mbam-chameleon.scr
mbam-chameleon
mbam-chameleon.exe
mbam-chameleon.com

----------
  • When completed click the down arrow on Export Log and select Text file (*.txt)
  • Save the file to your desktop as MBAM
  • Click Apply Actions then restart your computer if requested
  • Copy and past the contents of MBAM.txt in your reply

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users