Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Undetectable Popup + Virus


  • Please log in to reply
14 replies to this topic

#1 Marc2366

Marc2366

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 25 November 2014 - 11:06 PM

Good Evening.
 
   My name is Mark and since October 14, 2014 I have been having multiple problems with my computer... Every time I open a new page I get a
 
popup from one of few sites (e.g. http://system.updatergo.com/?source=internalp#). This site tells me to update my Google Chrome (my default
 
browser), but I know that's just a load of cr*p. Also, I play a game called Rumble Fighter which is currently being hosted by Games Campus
 
(http://www.gamescampus.com/) and it's anti-hackshield is nProtect Gameguard. Everytime I try to open this game and get to the hackshield loading,
 
it gives me Gameguard error: 100. According to online sources, Gameguard error:100 occurs when a virus, spyware, malware, etc. is affecting with
 
the anti-hackshield. I currently have AVG AntiVirus 2014 and went through a few whole computer scans in and out of Safe Mode, but my results turn 
 
out the same (no luck at all). I also used Kaspersky's TDSSKiller with no luck today. I'm at the verge of pulling hairs off of my head! If I could please
 
get some assistance I would gladly take it and none the less appreciate it! Thank you!
 
 
                                                                                   - Mark
 
P.S. I attached a screenshot of my Gameguard error .Attached File  Gameguard error 100.png   326.46KB   0 downloads
 
P.S.S. I forgot to mention that also at times I've been getting a lot of adobe glitches due to this.
 
P.S.S.S. I also have Adblocker for Google Chrome


Edited by Queen-Evie, 25 November 2014 - 11:30 PM.
moved from Windows 8 to the appropriate forum for malware removal


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,078 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 25 November 2014 - 11:33 PM

Hello marc, let's start here...

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 12:29 AM

Good Evening boopme and thank you for the quick response!

 

I am currently on the last step, ESET. Unfortunately I am also stuck here. It is asking to me to configure my proxy or something (Not

 

the BEST with configs). Could you please give me an idea what to do here?



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,078 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 26 November 2014 - 12:36 AM

If using Firefox,change Firefox proxy setting from Use System Proxy to No Proxy.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 12:37 AM

I'm using Google Chrome. "ESET Online Scanner installation consists of three steps:

1. Component download

2. Component registration

3. Start"

 

Not sure what to do.


Edited by Marc2366, 26 November 2014 - 12:42 AM.


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,078 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 26 November 2014 - 12:48 AM

Can you run it in Internet Explorer?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 12:54 AM

Okay finally got it running on IE, thank you

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,078 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 26 November 2014 - 01:01 AM

Ok.. I'll look back gotta go now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 01:01 AM

Okay Thank you for the help!

#10 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 07:58 AM

Okay! I have finished everything you have told me to do. Here are the results of everything.

-------------------------------

MiniTooBox Results

-------------------------------

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Mark (administrator) on 25-11-2014 at 23:38:53
Running from "C:\Users\Mark\Desktop\Virus Removal Attempt"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is enabled.
ProxyServer: 127.0.0.1:5050

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Qualcomm Atheros AR9485WB-EG Wireless Network Adapter = Wi-Fi (Connected)
Realtek PCIe FE Family Controller = Ethernet (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="other_1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_16" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 13" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Naz
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 12-B7-C3-FF-9B-B5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 13:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Hosted Network Virtual Adapter
   Physical Address. . . . . . . . . : 52-B7-C3-FF-9B-B5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Qualcomm Atheros AR9485WB-EG Wireless Network Adapter
   Physical Address. . . . . . . . . : 50-B7-C3-FF-9B-B5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::25b3:d6fc:538a:ccd8%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, November 25, 2014 9:49:32 PM
   Lease Expires . . . . . . . . . . : Wednesday, November 26, 2014 10:47:44 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 357611459
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-1B-F2-89-18-67-B0-23-96-D1
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 18-67-B0-23-96-D1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 3:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:2824:3b46:b853:5ceb(Preferred)
   Link-local IPv6 Address . . . . . : fe80::2824:3b46:b853:5ceb%9(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 234881024
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-1B-F2-89-18-67-B0-23-96-D1
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.home:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4006:80b::1006
   173.194.123.39
   173.194.123.34
   173.194.123.46
   173.194.123.36
   173.194.123.35
   173.194.123.33
   173.194.123.38
   173.194.123.41
   173.194.123.32
   173.194.123.40
   173.194.123.37

Pinging google.com [173.194.123.33] with 32 bytes of data:
Reply from 173.194.123.33: bytes=32 time=9ms TTL=251
Reply from 173.194.123.33: bytes=32 time=10ms TTL=251

Ping statistics for 173.194.123.33:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 9ms, Maximum = 10ms, Average = 9ms
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.138.253.109
   98.139.183.24
   206.190.36.45

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=24ms TTL=250
Reply from 98.139.183.24: bytes=32 time=26ms TTL=250

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 24ms, Maximum = 26ms, Average = 25ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...12 b7 c3 ff 9b b5 ......Microsoft Wi-Fi Direct Virtual Adapter
 10...52 b7 c3 ff 9b b5 ......Microsoft Hosted Network Virtual Adapter
  4...50 b7 c3 ff 9b b5 ......Qualcomm Atheros AR9485WB-EG Wireless Network Adapter
  3...18 67 b0 23 96 d1 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
  9...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
  8...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.3    281
      192.168.1.3  255.255.255.255         On-link       192.168.1.3    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.3    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  9    306 ::/0                     On-link
  1    306 ::1/128                  On-link
  9    306 2001::/32                On-link
  9    306 2001:0:9d38:6abd:2824:3b46:b853:5ceb/128
                                    On-link
  4    281 fe80::/64                On-link
  9    306 fe80::/64                On-link
  4    281 fe80::25b3:d6fc:538a:ccd8/128
                                    On-link
  9    306 fe80::2824:3b46:b853:5ceb/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    281 ff00::/8                 On-link
  9    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/25/2014 10:57:35 PM) (Source: MsiInstaller) (User: Naz)
Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Mark\AppData\Local\Akamai\admintool.exe.  System error 0.  Verify that you have access to that directory.

Error: (11/25/2014 10:57:11 PM) (Source: MsiInstaller) (User: Naz)
Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Mark\AppData\Local\Akamai\admintool.exe.  System error 0.  Verify that you have access to that directory.

Error: (11/25/2014 10:29:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: GameGuard.des, version: 2014.9.11.1, time stamp: 0x5411624d
Faulting module name: ntdll.dll, version: 6.3.9600.17278, time stamp: 0x53eeb4a3
Exception code: 0xc0000005
Fault offset: 0x0003d5e0
Faulting process id: 0xbc4
Faulting application start time: 0xGameGuard.des0
Faulting application path: GameGuard.des1
Faulting module path: GameGuard.des2
Report Id: GameGuard.des3
Faulting package full name: GameGuard.des4
Faulting package-relative application ID: GameGuard.des5

Error: (11/25/2014 10:13:00 PM) (Source: Application Error) (User: )
Description: Faulting application name: GameGuard.des, version: 2014.9.11.1, time stamp: 0x5411624d
Faulting module name: ntdll.dll, version: 6.3.9600.17278, time stamp: 0x53eeb4a3
Exception code: 0xc0000005
Fault offset: 0x0003d5e0
Faulting process id: 0x1e64
Faulting application start time: 0xGameGuard.des0
Faulting application path: GameGuard.des1
Faulting module path: GameGuard.des2
Report Id: GameGuard.des3
Faulting package full name: GameGuard.des4
Faulting package-relative application ID: GameGuard.des5

Error: (11/25/2014 10:01:29 PM) (Source: Application Error) (User: )
Description: Faulting application name: GameGuard.des, version: 2014.9.11.1, time stamp: 0x5411624d
Faulting module name: ntdll.dll, version: 6.3.9600.17278, time stamp: 0x53eeb4a3
Exception code: 0xc0000005
Fault offset: 0x0003d5e0
Faulting process id: 0x192c
Faulting application start time: 0xGameGuard.des0
Faulting application path: GameGuard.des1
Faulting module path: GameGuard.des2
Report Id: GameGuard.des3
Faulting package full name: GameGuard.des4
Faulting package-relative application ID: GameGuard.des5

Error: (11/25/2014 09:59:56 PM) (Source: Application Error) (User: )
Description: Faulting application name: GameGuard.des, version: 2014.9.11.1, time stamp: 0x5411624d
Faulting module name: ntdll.dll, version: 6.3.9600.17278, time stamp: 0x53eeb4a3
Exception code: 0xc0000005
Fault offset: 0x0003d5e0
Faulting process id: 0x6a4
Faulting application start time: 0xGameGuard.des0
Faulting application path: GameGuard.des1
Faulting module path: GameGuard.des2
Report Id: GameGuard.des3
Faulting package full name: GameGuard.des4
Faulting package-relative application ID: GameGuard.des5

Error: (11/25/2014 09:54:45 PM) (Source: Application Error) (User: )
Description: Faulting application name: CommonAgent.exe, version: 1.1.3.0, time stamp: 0x511b2150
Faulting module name: CommonAgent.exe, version: 1.1.3.0, time stamp: 0x511b2150
Exception code: 0x40000015
Fault offset: 0x00000000001845e5
Faulting process id: 0x9c8
Faulting application start time: 0xCommonAgent.exe0
Faulting application path: CommonAgent.exe1
Faulting module path: CommonAgent.exe2
Report Id: CommonAgent.exe3
Faulting package full name: CommonAgent.exe4
Faulting package-relative application ID: CommonAgent.exe5

Error: (11/25/2014 06:57:36 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgui.exe, version: 14.0.0.4794, time stamp: 0x545cd33e
Faulting module name: mfc110u.dll, version: 11.0.51106.1, time stamp: 0x5098ae3f
Exception code: 0xc000041d
Fault offset: 0x0023fcdb
Faulting process id: 0x210c
Faulting application start time: 0xavgui.exe0
Faulting application path: avgui.exe1
Faulting module path: avgui.exe2
Report Id: avgui.exe3
Faulting package full name: avgui.exe4
Faulting package-relative application ID: avgui.exe5

Error: (11/25/2014 06:55:32 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgui.exe, version: 14.0.0.4794, time stamp: 0x545cd33e
Faulting module name: mfc110u.dll, version: 11.0.51106.1, time stamp: 0x5098ae3f
Exception code: 0xc0000005
Fault offset: 0x0023fcdb
Faulting process id: 0x210c
Faulting application start time: 0xavgui.exe0
Faulting application path: avgui.exe1
Faulting module path: avgui.exe2
Report Id: avgui.exe3
Faulting package full name: avgui.exe4
Faulting package-relative application ID: avgui.exe5

Error: (11/25/2014 06:52:29 PM) (Source: MsiInstaller) (User: Naz)
Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Mark\AppData\Local\Akamai\admintool.exe.  System error 0.  Verify that you have access to that directory.

System errors:
=============
Error: (11/25/2014 09:57:59 PM) (Source: Service Control Manager) (User: )
Description: The Norton Online Backup service hung on starting.

Error: (11/25/2014 09:52:13 PM) (Source: DCOM) (User: Naz)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}NazMarkS-1-5-21-275444049-347170542-1178166326-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (11/25/2014 09:52:13 PM) (Source: DCOM) (User: Naz)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}NazMarkS-1-5-21-275444049-347170542-1178166326-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (11/25/2014 09:52:12 PM) (Source: DCOM) (User: Naz)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}NazMarkS-1-5-21-275444049-347170542-1178166326-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (11/25/2014 09:52:11 PM) (Source: DCOM) (User: Naz)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}NazMarkS-1-5-21-275444049-347170542-1178166326-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (11/25/2014 09:52:10 PM) (Source: DCOM) (User: Naz)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}NazMarkS-1-5-21-275444049-347170542-1178166326-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (11/25/2014 09:51:50 PM) (Source: Service Control Manager) (User: )
Description: The IHA_MessageCenter service failed to start due to the following error:
%%1053

Error: (11/25/2014 09:51:50 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the IHA_MessageCenter service to connect.

Error: (11/25/2014 09:50:52 PM) (Source: Service Control Manager) (User: )
Description: The DefaultTabSearch service failed to start due to the following error:
%%2

Error: (11/25/2014 09:41:13 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT AUTHORITY)
Description: Failed to start language pack setup wizard. Please restart the system and try running the wizard again.

Microsoft Office Sessions:
=========================
Error: (11/25/2014 10:57:35 PM) (Source: MsiInstaller)(User: Naz)
Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Mark\AppData\Local\Akamai\admintool.exe.  System error 0.  Verify that you have access to that directory.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (11/25/2014 10:57:11 PM) (Source: MsiInstaller)(User: Naz)
Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Mark\AppData\Local\Akamai\admintool.exe.  System error 0.  Verify that you have access to that directory.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (11/25/2014 10:29:20 PM) (Source: Application Error)(User: )
Description: GameGuard.des2014.9.11.15411624dntdll.dll6.3.9600.1727853eeb4a3c00000050003d5e0bc401d0092925b25ac7C:\Program Files (x86)\GamesCampus\RumbleFighter\GameGuard.desC:\WINDOWS\SYSTEM32\ntdll.dll68412b35-751c-11e4-bfa1-1867b02396d1

Error: (11/25/2014 10:13:00 PM) (Source: Application Error)(User: )
Description: GameGuard.des2014.9.11.15411624dntdll.dll6.3.9600.1727853eeb4a3c00000050003d5e01e6401d00926e1076bcbC:\Program Files (x86)\GamesCampus\RumbleFighter\GameGuard.desC:\WINDOWS\SYSTEM32\ntdll.dll1ff2d79c-751a-11e4-bfa1-1867b02396d1

Error: (11/25/2014 10:01:29 PM) (Source: Application Error)(User: )
Description: GameGuard.des2014.9.11.15411624dntdll.dll6.3.9600.1727853eeb4a3c00000050003d5e0192c01d0092545ca7246C:\Program Files (x86)\GamesCampus\RumbleFighter\GameGuard.desC:\WINDOWS\SYSTEM32\ntdll.dll8461ad98-7518-11e4-bfa1-1867b02396d1

Error: (11/25/2014 09:59:56 PM) (Source: Application Error)(User: )
Description: GameGuard.des2014.9.11.15411624dntdll.dll6.3.9600.1727853eeb4a3c00000050003d5e06a401d009250dba4ee8C:\Program Files (x86)\GamesCampus\RumbleFighter\GameGuard.desC:\WINDOWS\SYSTEM32\ntdll.dll4ceb2396-7518-11e4-bfa1-1867b02396d1

Error: (11/25/2014 09:54:45 PM) (Source: Application Error)(User: )
Description: CommonAgent.exe1.1.3.0511b2150CommonAgent.exe1.1.3.0511b21504000001500000000001845e59c801d00923c18b926fC:\Program Files\Samsung\S Agent\CommonAgent.exeC:\Program Files\Samsung\S Agent\CommonAgent.exe9362081c-7517-11e4-bfa1-1867b02396d1

Error: (11/25/2014 06:57:36 PM) (Source: Application Error)(User: )
Description: avgui.exe14.0.0.4794545cd33emfc110u.dll11.0.51106.15098ae3fc000041d0023fcdb210c01d008cd2497156bC:\Program Files (x86)\AVG\AVG2014\avgui.exeC:\WINDOWS\SYSTEM32\mfc110u.dlld3cd8cce-74fe-11e4-bf9d-1867b02396d1

Error: (11/25/2014 06:55:32 PM) (Source: Application Error)(User: )
Description: avgui.exe14.0.0.4794545cd33emfc110u.dll11.0.51106.15098ae3fc00000050023fcdb210c01d008cd2497156bC:\Program Files (x86)\AVG\AVG2014\avgui.exeC:\WINDOWS\SYSTEM32\mfc110u.dll8a350745-74fe-11e4-bf9d-1867b02396d1

Error: (11/25/2014 06:52:29 PM) (Source: MsiInstaller)(User: Naz)
Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Mark\AppData\Local\Akamai\admintool.exe.  System error 0.  Verify that you have access to that directory.(NULL)(NULL)(NULL)(NULL)(NULL)

 

=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
Adesso CyberTablet Driver (HKLM\...\RmTablet) (Version: 4.15 - )
Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.8.0.870 - Adobe Systems Incorporated) Hidden
Adobe Photoshop 7.0.1 (HKLM-x32\...\Adobe Photoshop 7.0.1) (Version: 7.0.1 - Adobe Systems, Inc.)
Adobe Photoshop Elements 11 (HKLM-x32\...\Adobe Photoshop Elements 11) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.3) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.2.152 - Adobe Systems, Inc.)
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
AI War: Fleet Command (HKLM-x32\...\Steam App 40400) (Version:  - Arcen Games, LLC)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ares 2.2.5 (HKLM-x32\...\Ares) (Version: 2.2.5-Build#3049 - Seekar Ltd)
ArtRage 2 (HKLM-x32\...\{12766F00-807F-4978-8D24-FDD0A3D60EE4}) (Version: 2.6.0 - Ambient Design)
AruaROSE version 904 (HKLM-x32\...\{8BF09025-5FD9-4026-9F7D-6B56791C7099}_is1) (Version: 904 - AruaROSE)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoCAD 2006 - English (HKLM-x32\...\{5783F2D7-4001-0409-0002-0060B0CE6BBA}) (Version: 16.2.54.10 - Autodesk)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4794 - AVG Technologies)
AVG 2014 (Version: 14.0.4189 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4794 - AVG Technologies) Hidden
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.1.9.799 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Belltech Greeting Card Designer 5.5.0 (HKLM-x32\...\Belltech Greeting Card Designer 5.5.0_is1) (Version: 5.5.0.0 - Belltech Systems)
Bitcasa version 0.9.20.4133 (HKLM\...\{EDA09459-AD7D-4434-BA0C-647F6703EA12}_is1) (Version: 0.9.20.4133 - Bitcasa Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version:  - Dark Byte)
Constant Guard Protection Suite (HKLM-x32\...\ID Vault) (Version: 1.14.922.1 - Comcast)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{B92076C0-C5FE-4DB1-AA8D-855430CDF098}) (Version: 16.0.0.707 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 16.0.707 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 16.0.707 - Corel Corporation) Hidden
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.1912 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.1912 - CyberLink Corp.) Hidden
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4421.02 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.4421.02 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB2899521) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{E48DACEA-5789-4CC5-8584-2E268C560131}) (Version:  - Microsoft)
Easy File Share (HKLM-x32\...\{A7C37D4B-F37A-42E8-9B6A-B28C18AD4C12}) (Version: 1.3.6 - Samsung Electronics CO.,LTD.)
Elements 11 Organizer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Elsword version v4.0528.10.1 (HKLM-x32\...\{E655DDFC-24DB-4FC3-8474-271E911309B4}_is1) (Version: v4.0528.10.1 - Kill3rCombo)
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung Electronics CO., LTD.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{0C5C1177-94C5-3EFB-A8BE-3F6AF1AF887F}) (Version: 5.38.6.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Help Desk (HKLM\...\{3D85CD3F-00E0-4E14-82D6-1F9397DDD09B}) (Version: 1.0.8 - Samsung Electronics CO., LTD.)
Horizon v2.8.1.1 (HKLM-x32\...\d4cfeebc-b821-40b7-9f81-d366b1466f03_is1) (Version: 2.8.1.1 - Daring Development Inc.)
iBoardHelper (HKLM-x32\...\iBoardHelper) (Version:  - MC Squared Incorporated)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
IHA_MessageCenter (HKLM-x32\...\{834265C4-CDF4-44D3-BD24-31531617EFB8}) (Version: 1.8.70 - Verizon)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33070) (Version: 3.6.1.33070.11 - Intel)
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36702 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3368 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.2.1001 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.7 - www.leaguereplays.com)
Lost Saga (HKLM-x32\...\Lost Saga) (Version:  - G4Box)
Mabinogi (HKLM-x32\...\Mabinogi) (Version:  - devCAT)
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft1.7.9 (HKLM-x32\...\Minecraft1.7.9) (Version:  - )
Modio (HKLM-x32\...\{3DA224A5-666B-4941-8998-2F19C6D126A5}_is1) (Version:  - GameTuts)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version:  - )
Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 1.1.1 - Nexon)
NightSky (HKLM-x32\...\Steam App 99700) (Version:  - Nicalis)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in Hell Team)
Norton Identity Safe (HKLM-x32\...\NST) (Version: 2014.7.6.15 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.2.3.51 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden
OGPlanet Game Launcher (HKLM-x32\...\OGPlanet Game Launcher) (Version: 3.0.0 - OGPlanet, Inc.)
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version:  - Robot Entertainment)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version:  - PopCap Games)
PSE11 STI Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.214 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.4.907.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6772 - Realtek Semiconductor Corp.)
Recovery (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 6.0.7.2 - Samsung Electronics CO., LTD.)
Rumble Fighter (HKLM-x32\...\RumbleFighter) (Version:  - )
S Agent (Version: 1.1.30 - Samsung Electronics CO., LTD.) Hidden
S4 League (HKLM-x32\...\S4 League) (Version:  - )
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )
Samsung PC Studio 3 USB Driver Installer (HKLM-x32\...\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}) (Version: 3.2.0.70701 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Serif PagePlus X3 (HKLM-x32\...\{596DA8A2-C576-46F5-A92E-8C9CCECE4E9D}) (Version: 13.0.6.026 - Serif (Europe) Ltd)
Serif PagePlus X3 Resources (HKLM-x32\...\{D0F1732F-DE2D-4A6D-BE19-2D6CF784356C}) (Version: 13.0.2.009 - Serif (Europe) Ltd)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Settings (HKLM-x32\...\{8CB5C357-12E5-41B1-A024-D57D4E6F32D9}) (Version: 2.0.1 - Samsung Electronics CO., LTD.)
Shattered Haven (HKLM-x32\...\Steam App 234370) (Version:  - Arcen Games, LLC)
Simply Money 2.5 (HKLM-x32\...\{89D4CF06-41DE-11D8-9F0A-002078000812}) (Version: 1.00.0000 - Simply Media)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Skyward Collapse (HKLM-x32\...\Steam App 238890) (Version:  - Arcen Games, LLC)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version:  - Valve)
SpaceChem (HKLM-x32\...\Steam App 92800) (Version:  - Zachtronics)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Support Center (HKLM\...\{3EB3E946-FB88-45C2-A19B-410D254657D9}) (Version: 2.1.20 - Samsung Electronics CO., LTD.)
Support Center FAQ (x32 Version: 1.0.6 - Samsung Electronics CO., LTD.) Hidden
Surgeon Simulator 2013 (HKLM-x32\...\Steam App 233720) (Version:  - Bossa Studios)
SW Update (HKLM-x32\...\{43C711D9-67C9-4793-80D4-E957D638D531}) (Version: 2.1.14 - Samsung Electronics CO., LTD.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Tales Runner version 1.0 (HKLM-x32\...\{FB205A57-6847-4BAE-8854-ED09266CC221}_is1) (Version: 1.0 - OGPlanet, Inc)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
TERA (HKLM-x32\...\{0FCDA0F8-F3E5-402E-B9B6-13CB2B01182B}) (Version: 1.6 - En Masse Entertainment)
Terrafirma (HKLM-x32\...\{9EA1E037-86B8-496B-9C8C-31B3E3017C53}) (Version: 2.2.2.0 - Sean Kasun)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
Tidalis (HKLM-x32\...\Steam App 40420) (Version:  - Arcen Games, LLC)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889935) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{153CD843-3EDC-412C-95B1-F36237DF8415}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A4F91D60-654C-4892-BFD3-0D41ADA649B6}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{0B7744D2-1FDD-4843-9987-7CE11B79F370}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C1954E2B-1672-4E5C-B564-F8CB2D08345B}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2878251) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{521F54B6-E2E5-462D-946E-8161830DDF18}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
User Guide (HKLM-x32\...\{087EB114-ACEF-44D3-8C0A-27AE0CC8A8BB}) (Version: 1.2.00 - Samsung Electronics CO., LTD.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vz In-Home Agent (HKCU\...\VzInHomeAgent) (Version: 9.0.35.0 - Verizon)
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

========================= Memory info: ===================================

Percentage of memory in use: 68%
Total physical RAM: 3797.53 MB
Available physical RAM: 1196.46 MB
Total Pagefile: 8149.54 MB
Available Pagefile: 5047.74 MB
Total Virtual: 4095.88 MB
Available Virtual: 3976.11 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:676.17 GB) (Free:374.83 GB) NTFS

========================= Users: ========================================

User accounts for \\NAZ

Administrator            Guest                    Mark                    
Naze                    

**** End of log ****

 

 



#11 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 07:59 AM

-------------------------

TDSSKiller Results

-------------------------

23:41:07.0251 0x1c14  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
23:41:07.0251 0x1c14  UEFI system
23:41:12.0172 0x1c14  ============================================================
23:41:12.0172 0x1c14  Current date / time: 2014/11/25 23:41:12.0172
23:41:12.0173 0x1c14  SystemInfo:
23:41:12.0173 0x1c14 
23:41:12.0173 0x1c14  OS Version: 6.3.9600 ServicePack: 0.0
23:41:12.0173 0x1c14  Product type: Workstation
23:41:12.0173 0x1c14  ComputerName: NAZ
23:41:12.0173 0x1c14  UserName: Mark
23:41:12.0173 0x1c14  Windows directory: C:\WINDOWS
23:41:12.0173 0x1c14  System windows directory: C:\WINDOWS
23:41:12.0173 0x1c14  Running under WOW64
23:41:12.0173 0x1c14  Processor architecture: Intel x64
23:41:12.0173 0x1c14  Number of processors: 4
23:41:12.0173 0x1c14  Page size: 0x1000
23:41:12.0173 0x1c14  Boot type: Normal boot
23:41:12.0173 0x1c14  ============================================================
23:41:13.0063 0x1c14  KLMD registered as C:\WINDOWS\system32\drivers\18522148.sys
23:41:14.0874 0x1c14  System UUID: {23B4B890-A771-6FDC-AC57-2B3B39270283}
23:41:16.0201 0x1c14  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:41:16.0209 0x1c14  ============================================================
23:41:16.0209 0x1c14  \Device\Harddisk0\DR0:
23:41:16.0209 0x1c14  GPT partitions:
23:41:16.0210 0x1c14  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {FA47AD46-33C7-4CB2-8793-16766FECA1FE}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
23:41:16.0210 0x1c14  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {EF276B64-BE1E-45BB-B0DC-23D82A676F6D}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x96000
23:41:16.0210 0x1c14  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {67BD976C-E643-4529-9014-9E9ED796F73D}, Name: Microsoft reserved partition, StartLBA 0x190000, BlocksNum 0x40000
23:41:16.0210 0x1c14  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {787D55A1-3356-4AB7-90F3-4A76101CB25E}, Name: Basic data partition, StartLBA 0x1D0000, BlocksNum 0x54855001
23:41:16.0210 0x1c14  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C6E0B117-70D4-4E79-9C78-4FE57C01B8FA}, Name: , StartLBA 0x54A25800, BlocksNum 0xE0800
23:41:16.0210 0x1c14  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2C6B3772-84D5-4A33-8DD9-617568478AEA}, Name: Basic data partition, StartLBA 0x54B06001, BlocksNum 0x2840000
23:41:16.0210 0x1c14  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {E883592A-7B6A-4A0F-4173-636C65706975}, Name: Basic data partition, StartLBA 0x57346001, BlocksNum 0x200000
23:41:16.0210 0x1c14  MBR partitions:
23:41:16.0210 0x1c14  ============================================================
23:41:16.0241 0x1c14  C: <-> \Device\Harddisk0\DR0\Partition4
23:41:16.0241 0x1c14  ============================================================
23:41:16.0241 0x1c14  Initialize success
23:41:16.0241 0x1c14  ============================================================
23:41:30.0530 0x1a44  ============================================================
23:41:30.0530 0x1a44  Scan started
23:41:30.0530 0x1a44  Mode: Manual;
23:41:30.0530 0x1a44  ============================================================
23:41:30.0530 0x1a44  KSN ping started
23:41:32.0842 0x1a44  KSN ping finished: true
23:41:38.0871 0x1a44  ================ Scan system memory ========================
23:41:38.0871 0x1a44  System memory - ok
23:41:38.0872 0x1a44  ================ Scan services =============================
23:41:39.0196 0x1a44  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
23:41:39.0210 0x1a44  1394ohci - ok
23:41:39.0321 0x1a44  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
23:41:39.0328 0x1a44  3ware - ok
23:41:39.0435 0x1a44  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
23:41:39.0461 0x1a44  ACPI - ok
23:41:39.0482 0x1a44  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
23:41:39.0486 0x1a44  acpiex - ok
23:41:39.0526 0x1a44  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
23:41:39.0529 0x1a44  acpipagr - ok
23:41:39.0569 0x1a44  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
23:41:39.0572 0x1a44  AcpiPmi - ok
23:41:39.0593 0x1a44  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
23:41:39.0595 0x1a44  acpitime - ok
23:41:39.0709 0x1a44  [ C4B1D322567F73BB5A687F907EA25507, CA11E9F5A6B70E0883B1AA75A3D03FE9112A7EC7B4BEFD9973B9A3457564FADF ] AdobeActiveFileMonitor11.0 C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
23:41:39.0717 0x1a44  AdobeActiveFileMonitor11.0 - ok
23:41:39.0845 0x1a44  [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:41:39.0849 0x1a44  AdobeARMservice - ok
23:41:39.0930 0x1a44  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
23:41:39.0970 0x1a44  ADP80XX - ok
23:41:40.0064 0x1a44  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
23:41:40.0108 0x1a44  AeLookupSvc - ok
23:41:40.0150 0x1a44  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
23:41:40.0174 0x1a44  AFD - ok
23:41:40.0227 0x1a44  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
23:41:40.0231 0x1a44  agp440 - ok
23:41:40.0280 0x1a44  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
23:41:40.0306 0x1a44  ahcache - ok
23:41:40.0408 0x1a44  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
23:41:40.0448 0x1a44  ALG - ok
23:41:40.0484 0x1a44  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
23:41:40.0496 0x1a44  AmdK8 - ok
23:41:40.0530 0x1a44  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
23:41:40.0541 0x1a44  AmdPPM - ok
23:41:40.0594 0x1a44  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
23:41:40.0598 0x1a44  amdsata - ok
23:41:40.0629 0x1a44  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
23:41:40.0641 0x1a44  amdsbs - ok
23:41:40.0663 0x1a44  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
23:41:40.0666 0x1a44  amdxata - ok
23:41:40.0673 0x1a44  AntiLog32 - ok
23:41:40.0700 0x1a44  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
23:41:40.0705 0x1a44  AppID - ok
23:41:40.0738 0x1a44  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
23:41:40.0742 0x1a44  AppIDSvc - ok
23:41:40.0795 0x1a44  [ 034ED41F13D9C1845C1E081F05B640DB, E4E17BA0B22C464DE60A6BF68D4D035D1B838DE4F0361029DED1AE00503E135C ] Appinfo         C:\WINDOWS\System32\appinfo.dll
23:41:40.0804 0x1a44  Appinfo - ok
23:41:40.0884 0x1a44  [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:41:40.0887 0x1a44  Apple Mobile Device - ok
23:41:40.0954 0x1a44  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
23:41:40.0976 0x1a44  AppReadiness - ok
23:41:41.0072 0x1a44  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
23:41:41.0127 0x1a44  AppXSvc - ok
23:41:41.0155 0x1a44  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
23:41:41.0160 0x1a44  arcsas - ok
23:41:41.0210 0x1a44  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
23:41:41.0213 0x1a44  atapi - ok
23:41:41.0277 0x1a44  [ 51C6777AD7649F6C3ED389151CFD9DE6, B010089D83A9D96DC5D1C525B8EA913CF2F80FA0254684A16DD29CCA9BE84620 ] AthBTPort       C:\WINDOWS\system32\DRIVERS\btath_flt.sys
23:41:41.0291 0x1a44  AthBTPort - ok
23:41:41.0338 0x1a44  [ 565D8842C642BCF6B4F8B84CD7C282F6, 2CE79EA067B5471E126C4033C81D94D4125352CE1BED9DE1EF1EC2C55E27981B ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
23:41:41.0348 0x1a44  AtherosSvc - ok
23:41:41.0552 0x1a44  [ 2C7676F892E88FD190F08D98048C7C6C, 44C13C103F61DA4D1A3823D37344F8C9465A611A9560808CE928925FB69604F7 ] athr            C:\WINDOWS\system32\DRIVERS\athw8x.sys
23:41:41.0721 0x1a44  athr - ok
23:41:41.0766 0x1a44  [ 7F70B1044272982AAEA7C16E83424770, A7694D38DF5A0E1040688017DB811EF0788874FE505ADD572DE4D4647073DC12 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
23:41:41.0777 0x1a44  AudioEndpointBuilder - ok
23:41:41.0837 0x1a44  [ C0484CA5C7F87E38909746B63C7FC868, 65159639E2300AEA886184E9D47D449350DAF69A8AA2F9DBD6BD8A474BA73177 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
23:41:41.0874 0x1a44  Audiosrv - ok
23:41:41.0942 0x1a44  [ 7CC8CD6F86054C563E47E7F063CE7A61, 2933B3EA7F1A5F6AF11CDFCF2702CD070B8D21E7A0F1D89DEE53F61E2C8E58ED ] Autodesk Licensing Service C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
23:41:41.0947 0x1a44  Autodesk Licensing Service - ok
23:41:41.0990 0x1a44  [ 4EB2E8EE8BA47B58E08B67139C31CB41, 196F759A2BC3E978C3FDB1E37E0D40D56D43CB0004D5333E787CD4727A46F06C ] Avgboota        C:\WINDOWS\system32\DRIVERS\avgboota.sys
23:41:41.0992 0x1a44  Avgboota - ok
23:41:42.0038 0x1a44  [ CDE60914D4ED81291F0CCFDB2CA311B9, 414D9BFF4E7DA17194695CB99B9E7F82C1616F4C228E6E9087208D290B9ED64D ] Avgdiska        C:\WINDOWS\system32\DRIVERS\avgdiska.sys
23:41:42.0052 0x1a44  Avgdiska - ok
23:41:42.0884 0x1a44  [ FE79E7D43993128D9B12EE0BAF513320, 99DC43CD1D099F45A4C1BFF74B3884F5B3FFE23A0B975206C0101CA6BA414FE6 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
23:41:43.0070 0x1a44  AVGIDSAgent - ok
23:41:43.0171 0x1a44  [ E7E1A0AB30587BF3734A2EC66BBCE743, F2D662A2CC29B9B8C1D7AA3424CAAB18A78C60E9557D992EF14BC15DB1438B54 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys
23:41:43.0195 0x1a44  AVGIDSDriver - ok
23:41:43.0276 0x1a44  [ B0E4A1F342A3F8B75C4A4ADB044761C9, 208D033EE04206FEDFC99102025A53D53EF2D3FB373882776DE43D663BE9A01B ] AVGIDSHA        C:\WINDOWS\system32\DRIVERS\avgidsha.sys
23:41:43.0288 0x1a44  AVGIDSHA - ok
23:41:43.0356 0x1a44  [ 5980222218A0773E2994E524E5BA2464, 56B39A8FFBB87B898D7206DE4BCD1E51D64A38588BFFD264CD75A2CAC19E911A ] Avgldx64        C:\WINDOWS\system32\DRIVERS\avgldx64.sys
23:41:43.0378 0x1a44  Avgldx64 - ok
23:41:43.0493 0x1a44  [ 197F28711B4B71E6575E5298CCEDC737, 16B7A9E59CA5EF8241029E16408CC1DD77004B195C9FE0677DE35A723FCA3DB4 ] Avgloga         C:\WINDOWS\system32\DRIVERS\avgloga.sys
23:41:43.0526 0x1a44  Avgloga - ok
23:41:43.0570 0x1a44  [ 53C79A07776F930EADB92F2A8DE17D81, 980E14F2C9E016AA1068D5C08EFDE1F4C61F4707CBDD0C856BDABFA4CA3C5A83 ] Avgmfx64        C:\WINDOWS\system32\DRIVERS\avgmfx64.sys
23:41:43.0581 0x1a44  Avgmfx64 - ok
23:41:43.0636 0x1a44  [ C4F9056928B26BCAF15872E46B29184F, 0A1574937D120B8872947C4C68F1706BB9713B0D00AD62BE8082499C944114BA ] Avgrkx64        C:\WINDOWS\system32\DRIVERS\avgrkx64.sys
23:41:43.0641 0x1a44  Avgrkx64 - ok
23:41:43.0688 0x1a44  [ 68430AD3FB0FADBFA5D1677617D1E1F5, CF732DD21B472653AB0A4063455F2E7608F3075C255B9882D18CB52026B6C972 ] avgtp           C:\windows\system32\drivers\avgtpx64.sys
23:41:43.0691 0x1a44  avgtp - ok
23:41:43.0740 0x1a44  [ A330DFC47F53A5815B812965DCD10D83, 9A5D814B310EE4ECE73900DF905446A14FAEA7B884EEFED87EA414016E09E5DA ] avgwd           C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
23:41:43.0752 0x1a44  avgwd - ok
23:41:43.0786 0x1a44  [ 382904E87741638CF051E2B0C62335C4, 63229883599A89354BF4ECC1FD197822FCB3797D1B1FDF29C8C3EEB92114D368 ] Avgwfpa         C:\WINDOWS\system32\DRIVERS\avgwfpa.sys
23:41:43.0798 0x1a44  Avgwfpa - ok
23:41:43.0850 0x1a44  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
23:41:43.0856 0x1a44  AxInstSV - ok
23:41:43.0952 0x1a44  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
23:41:43.0985 0x1a44  b06bdrv - ok
23:41:44.0007 0x1a44  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
23:41:44.0011 0x1a44  BasicDisplay - ok
23:41:44.0052 0x1a44  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
23:41:44.0055 0x1a44  BasicRender - ok
23:41:44.0079 0x1a44  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
23:41:44.0081 0x1a44  bcmfn2 - ok
23:41:44.0165 0x1a44  [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
23:41:44.0188 0x1a44  BDESVC - ok
23:41:44.0228 0x1a44  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
23:41:44.0230 0x1a44  Beep - ok
23:41:44.0320 0x1a44  [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE             C:\WINDOWS\System32\bfe.dll
23:41:44.0354 0x1a44  BFE - ok
23:41:44.0553 0x1a44  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
23:41:44.0660 0x1a44  BITS - ok
23:41:44.0784 0x1a44  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:41:44.0803 0x1a44  Bonjour Service - ok
23:41:44.0819 0x1a44  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
23:41:44.0825 0x1a44  bowser - ok
23:41:44.0917 0x1a44  [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
23:41:44.0957 0x1a44  BrokerInfrastructure - ok
23:41:45.0042 0x1a44  [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser         C:\WINDOWS\System32\browser.dll
23:41:45.0058 0x1a44  Browser - ok
23:41:45.0193 0x1a44  [ B600D86961C6DF87EEB637D4C4ABB663, 1847B661373AFC14607682C51A786D5E450E10A10ADCEE4A3951055552531301 ] BTATH_A2DP      C:\WINDOWS\system32\drivers\btath_a2dp.sys
23:41:45.0216 0x1a44  BTATH_A2DP - ok
23:41:45.0259 0x1a44  [ 43C965027229D9FF6E52E4C71C03B09E, AF0E39EAD8B17A65F885272BEF12BF91578289C183FB39BB803183BE0E5547D1 ] btath_avdt      C:\WINDOWS\system32\drivers\btath_avdt.sys
23:41:45.0266 0x1a44  btath_avdt - ok
23:41:45.0289 0x1a44  [ 3DD64966A764BCAFF07C9DC064BD410E, 456252339BCA224549E4CBCD5A0501AF10340211CFD567C577067ABF5DABB21F ] BTATH_HCRP      C:\WINDOWS\System32\drivers\btath_hcrp.sys
23:41:45.0300 0x1a44  BTATH_HCRP - ok
23:41:45.0348 0x1a44  [ B68EE0721EAC305AB1C9C989CDF1AEFF, 3F7CE8E244836E23456E519E48E53E4B9331C9AD9BAF13C208C922404575638A ] BTATH_LWFLT     C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys
23:41:45.0354 0x1a44  BTATH_LWFLT - ok
23:41:45.0407 0x1a44  [ 057DA8351AD21AE485A11A8237DC9263, 151C0A591A26E26C7700F00EC8E95C6D8A5406869109A0CA01A3C38D1C5FBA2A ] BTATH_RCP       C:\WINDOWS\System32\drivers\btath_rcp.sys
23:41:45.0419 0x1a44  BTATH_RCP - ok
23:41:45.0499 0x1a44  [ 239A81CC18170F3369D389DA65E74342, 5E26976176A6651B149784B1ED86ECCA133B7755EBB8B04361A8DDB705767AA3 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
23:41:45.0553 0x1a44  BtFilter - ok
23:41:45.0607 0x1a44  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
23:41:45.0618 0x1a44  BthAvrcpTg - ok
23:41:45.0638 0x1a44  [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
23:41:45.0643 0x1a44  BthEnum - ok
23:41:45.0665 0x1a44  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
23:41:45.0671 0x1a44  BthHFEnum - ok
23:41:45.0689 0x1a44  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
23:41:45.0693 0x1a44  bthhfhid - ok
23:41:45.0732 0x1a44  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
23:41:45.0746 0x1a44  BthLEEnum - ok
23:41:45.0795 0x1a44  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
23:41:45.0799 0x1a44  BTHMODEM - ok
23:41:45.0828 0x1a44  [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
23:41:45.0856 0x1a44  BthPan - ok
23:41:46.0022 0x1a44  [ 97B9076611291AE4C4C107BC915BD026, 0A77873AAF1ADB76CAB98A84D2242781E34E2699632E45EB92ED7DB20B2BE0C1 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
23:41:46.0081 0x1a44  BTHPORT - ok
23:41:46.0125 0x1a44  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
23:41:46.0131 0x1a44  bthserv - ok
23:41:46.0150 0x1a44  [ 23E75BED9076F856B36F5F934BBD5795, CCEB72B788522B7D52A6C07646005EBC68F9599D3714ECACF3A194CA47A1BE85 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
23:41:46.0168 0x1a44  BTHUSB - ok
23:41:46.0308 0x1a44  [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
23:41:46.0363 0x1a44  c2cautoupdatesvc - ok
23:41:46.0852 0x1a44  [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
23:41:46.0953 0x1a44  c2cpnrsvc - ok
23:41:47.0081 0x1a44  [ D2AAC014F1888A58DBDA67FAA15ED6CB, DBD6F4C84956CE8A14D8321EF52798F5C88E991E79BB03433BB34C8881A21FC7 ] cbfs3           C:\windows\system32\drivers\cbfs3.sys
23:41:47.0131 0x1a44  cbfs3 - ok
23:41:47.0173 0x1a44  [ E41F70406C34F1CB667B4B27D81AD162, 8869C7EB9CBF68B90640765D15DB5B8DACEF45025C1E580AA94D96E32560274B ] ccSet_NARA      C:\WINDOWS\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys
23:41:47.0215 0x1a44  ccSet_NARA - ok
23:41:47.0297 0x1a44  [ 0510396A957E9FD7205BA62D3CAE4528, C80C39EB3A87C5111132E96E966CF74ACABA36DE7714B545A707027D35995792 ] ccSet_NST       C:\WINDOWS\system32\drivers\NSTx64\7DE07060.00F\ccSetx64.sys
23:41:47.0309 0x1a44  ccSet_NST - ok
23:41:47.0332 0x1a44  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
23:41:47.0347 0x1a44  cdfs - ok
23:41:47.0417 0x1a44  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
23:41:47.0472 0x1a44  cdrom - ok
23:41:47.0556 0x1a44  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
23:41:47.0568 0x1a44  CertPropSvc - ok
23:41:47.0596 0x1a44  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
23:41:47.0605 0x1a44  circlass - ok
23:41:47.0691 0x1a44  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
23:41:47.0714 0x1a44  CLFS - ok
23:41:47.0766 0x1a44  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
23:41:47.0779 0x1a44  CLVirtualDrive - ok
23:41:47.0792 0x1a44  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
23:41:47.0807 0x1a44  CmBatt - ok
23:41:47.0930 0x1a44  [ 4E1207CE16E615B0B7A70DC889F4500E, 1778D5AC0AF5F5DD1551192F4CDBCCB9878995155CF337EBB03460A6FD5C6B78 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
23:41:47.0975 0x1a44  CNG - ok
23:41:48.0025 0x1a44  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
23:41:48.0028 0x1a44  CompositeBus - ok
23:41:48.0036 0x1a44  COMSysApp - ok
23:41:48.0082 0x1a44  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
23:41:48.0085 0x1a44  condrv - ok
23:41:48.0258 0x1a44  [ 79C32FFFAB0DFD468B0C1B761C896496, 70A56D7CE2891F06E4D08F1F763C660B099929BBF5704C175EC007FF3A1646AF ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
23:41:48.0337 0x1a44  cphs - ok
23:41:48.0384 0x1a44  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
23:41:48.0393 0x1a44  CryptSvc - ok
23:41:48.0415 0x1a44  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
23:41:48.0419 0x1a44  dam - ok
23:41:48.0595 0x1a44  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
23:41:48.0653 0x1a44  DcomLaunch - ok
23:41:48.0661 0x1a44  DefaultTabSearch - ok
23:41:48.0723 0x1a44  [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
23:41:48.0743 0x1a44  defragsvc - ok
23:41:48.0806 0x1a44  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll
23:41:48.0836 0x1a44  DeviceAssociationService - ok
23:41:48.0905 0x1a44  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
23:41:48.0918 0x1a44  DeviceInstall - ok
23:41:48.0996 0x1a44  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
23:41:49.0010 0x1a44  Dfsc - ok
23:41:49.0068 0x1a44  [ 30710AEFCE721CEEE0F35EB6A01C263C, FB062EC86474D38BBC38E11E2618A9505001C287430B495C482977BBE58017C8 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
23:41:49.0163 0x1a44  dg_ssudbus - ok
23:41:49.0243 0x1a44  [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
23:41:49.0258 0x1a44  Dhcp - ok
23:41:49.0409 0x1a44  [ F7364CA670E0C581791E964D76A6606E, D5292179750E23587F549315D806E7B1B7CDA2990071A533569CB2D3EBF78CC0 ] Diagnostics     C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe
23:41:49.0442 0x1a44  Diagnostics - ok
23:41:49.0461 0x1a44  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
23:41:49.0466 0x1a44  disk - ok
23:41:49.0511 0x1a44  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
23:41:49.0513 0x1a44  dmvsc - ok
23:41:49.0587 0x1a44  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
23:41:49.0599 0x1a44  Dnscache - ok
23:41:49.0647 0x1a44  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
23:41:49.0660 0x1a44  dot3svc - ok
23:41:49.0689 0x1a44  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
23:41:49.0697 0x1a44  DPS - ok
23:41:49.0713 0x1a44  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
23:41:49.0715 0x1a44  drmkaud - ok
23:41:49.0739 0x1a44  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
23:41:49.0749 0x1a44  DsmSvc - ok
23:41:49.0891 0x1a44  [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
23:41:49.0960 0x1a44  DXGKrnl - ok
23:41:49.0970 0x1a44  EagleX64 - ok
23:41:50.0019 0x1a44  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
23:41:50.0039 0x1a44  Eaphost - ok
23:41:50.0271 0x1a44  [ E6649F1F23937411DF9BB02964C2A332, E33710623AACF71B301E97923241775358A981142804834B6D413D1DFC3B313B ] Easy Launcher   C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
23:41:50.0351 0x1a44  Easy Launcher - ok
23:41:50.0583 0x1a44  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
23:41:50.0751 0x1a44  ebdrv - ok
23:41:50.0803 0x1a44  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
23:41:50.0808 0x1a44  EFS - ok
23:41:50.0858 0x1a44  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
23:41:50.0862 0x1a44  EhStorClass - ok
23:41:50.0905 0x1a44  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
23:41:50.0910 0x1a44  EhStorTcgDrv - ok
23:41:50.0936 0x1a44  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
23:41:50.0948 0x1a44  ErrDev - ok
23:41:51.0026 0x1a44  [ B3E0F7A0BC85D5E996B137B8882C4130, 2C241AF1EE61CB04681197639B3E8EF1457411021C80EA19E6096B9C8510FFE9 ] ETD             C:\WINDOWS\system32\DRIVERS\ETD.sys
23:41:51.0040 0x1a44  ETD - ok
23:41:51.0115 0x1a44  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
23:41:51.0133 0x1a44  EventSystem - ok
23:41:51.0174 0x1a44  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
23:41:51.0183 0x1a44  exfat - ok
23:41:51.0252 0x1a44  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
23:41:51.0261 0x1a44  fastfat - ok
23:41:51.0333 0x1a44  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
23:41:51.0361 0x1a44  Fax - ok
23:41:51.0388 0x1a44  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
23:41:51.0391 0x1a44  fdc - ok
23:41:51.0425 0x1a44  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
23:41:51.0429 0x1a44  fdPHost - ok
23:41:51.0448 0x1a44  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
23:41:51.0452 0x1a44  FDResPub - ok
23:41:51.0495 0x1a44  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
23:41:51.0502 0x1a44  fhsvc - ok
23:41:51.0542 0x1a44  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
23:41:51.0546 0x1a44  FileInfo - ok
23:41:51.0563 0x1a44  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
23:41:51.0572 0x1a44  Filetrace - ok
23:41:51.0602 0x1a44  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
23:41:51.0604 0x1a44  flpydisk - ok
23:41:51.0647 0x1a44  [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
23:41:51.0665 0x1a44  FltMgr - ok
23:41:51.0767 0x1a44  [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache       C:\WINDOWS\system32\FntCache.dll
23:41:51.0821 0x1a44  FontCache - ok
23:41:51.0973 0x1a44  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:41:51.0976 0x1a44  FontCache3.0.0.0 - ok
23:41:52.0023 0x1a44  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
23:41:52.0027 0x1a44  FsDepends - ok
23:41:52.0048 0x1a44  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:41:52.0051 0x1a44  Fs_Rec - ok
23:41:52.0102 0x1a44  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
23:41:52.0128 0x1a44  fvevol - ok
23:41:52.0180 0x1a44  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
23:41:52.0183 0x1a44  FxPPM - ok
23:41:52.0212 0x1a44  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
23:41:52.0220 0x1a44  gagp30kx - ok
23:41:52.0288 0x1a44  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
23:41:52.0301 0x1a44  GEARAspiWDM - ok
23:41:52.0363 0x1a44  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
23:41:52.0365 0x1a44  gencounter - ok
23:41:52.0402 0x1a44  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
23:41:52.0408 0x1a44  GPIOClx0101 - ok
23:41:52.0501 0x1a44  [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
23:41:52.0555 0x1a44  gpsvc - ok
23:41:52.0612 0x1a44  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:41:52.0617 0x1a44  gupdate - ok
23:41:52.0627 0x1a44  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:41:52.0633 0x1a44  gupdatem - ok
23:41:52.0677 0x1a44  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
23:41:52.0683 0x1a44  HDAudBus - ok
23:41:52.0705 0x1a44  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
23:41:52.0707 0x1a44  HidBatt - ok
23:41:52.0770 0x1a44  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
23:41:52.0786 0x1a44  HidBth - ok
23:41:52.0816 0x1a44  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
23:41:52.0820 0x1a44  hidi2c - ok
23:41:52.0847 0x1a44  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
23:41:52.0850 0x1a44  HidIr - ok
23:41:52.0896 0x1a44  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
23:41:52.0900 0x1a44  hidserv - ok
23:41:52.0945 0x1a44  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
23:41:52.0949 0x1a44  HidUsb - ok
23:41:52.0998 0x1a44  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
23:41:53.0014 0x1a44  hkmsvc - ok
23:41:53.0045 0x1a44  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
23:41:53.0059 0x1a44  HomeGroupListener - ok
23:41:53.0123 0x1a44  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
23:41:53.0145 0x1a44  HomeGroupProvider - ok
23:41:53.0193 0x1a44  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
23:41:53.0197 0x1a44  HpSAMD - ok
23:41:53.0409 0x1a44  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
23:41:53.0464 0x1a44  HTTP - ok
23:41:53.0486 0x1a44  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
23:41:53.0489 0x1a44  hwpolicy - ok
23:41:53.0511 0x1a44  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
23:41:53.0513 0x1a44  hyperkbd - ok
23:41:53.0551 0x1a44  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
23:41:53.0553 0x1a44  HyperVideo - ok
23:41:53.0582 0x1a44  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
23:41:53.0589 0x1a44  i8042prt - ok
23:41:53.0610 0x1a44  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
23:41:53.0613 0x1a44  iaLPSSi_GPIO - ok
23:41:53.0655 0x1a44  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
23:41:53.0667 0x1a44  iaLPSSi_I2C - ok
23:41:53.0743 0x1a44  [ 050F2539E14F9D5E90A4B61738EC29BD, 0E65468B9F452FA7DB6DF2C1B2B2E9439C79031E27054FBDBDFE28A9F98721D7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
23:41:53.0766 0x1a44  iaStorA - ok
23:41:53.0835 0x1a44  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
23:41:53.0862 0x1a44  iaStorAV - ok
23:41:53.0900 0x1a44  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
23:41:53.0917 0x1a44  iaStorV - ok
23:41:53.0963 0x1a44  [ 053FA8AB3ACF75D5BFA08BB44B1DEB35, 8B602451B2C743B9FD4CB7C4D57BD019506FDDA782CCC447CD85E3AC5980341F ] IDVaultSvc      C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe
23:41:53.0965 0x1a44  IDVaultSvc - ok
23:41:53.0975 0x1a44  IEEtwCollectorService - ok
23:41:54.0394 0x1a44  [ F618A6E08277A9FB7D206E074FA813EA, BB9EFEA6732D7024D36BFEE284BAE88F3274CFD82422C081EAA126D76A246CEF ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
23:41:54.0605 0x1a44  igfx - ok
23:41:54.0727 0x1a44  [ 23E1BCADABE423C35C19BBDFF10CCE6D, 94430F9AFECD604EB7230E7AD8EFD680E610C54AF15A0682B366A4F73F1F9744 ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
23:41:54.0741 0x1a44  IHA_MessageCenter - ok
23:41:54.0832 0x1a44  [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
23:41:54.0877 0x1a44  IKEEXT - ok
23:41:54.0933 0x1a44  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
23:41:54.0947 0x1a44  intaud_WaveExtensible - ok
23:41:55.0187 0x1a44  [ 06A84D8EBDA8D7D073F67C5A5AE9487D, FF75A26B4E2921E2AD9BC69A38F299869AB28F8B0590FBB205D88DCB566EAAA6 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
23:41:55.0393 0x1a44  IntcAzAudAddService - ok
23:41:55.0458 0x1a44  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
23:41:55.0474 0x1a44  IntcDAud - ok
23:41:55.0658 0x1a44  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
23:41:55.0691 0x1a44  Intel® Capability Licensing Service Interface - ok
23:41:55.0780 0x1a44  [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
23:41:55.0786 0x1a44  Intel® ME Service - ok
23:41:55.0831 0x1a44  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
23:41:55.0840 0x1a44  intelide - ok
23:41:55.0878 0x1a44  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
23:41:55.0881 0x1a44  intelpep - ok
23:41:55.0903 0x1a44  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
23:41:55.0909 0x1a44  intelppm - ok
23:41:55.0931 0x1a44  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:41:55.0936 0x1a44  IpFilterDriver - ok
23:41:56.0038 0x1a44  [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
23:41:56.0082 0x1a44  iphlpsvc - ok
23:41:56.0110 0x1a44  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
23:41:56.0115 0x1a44  IPMIDRV - ok
23:41:56.0141 0x1a44  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
23:41:56.0148 0x1a44  IPNAT - ok
23:41:56.0223 0x1a44  [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
23:41:56.0251 0x1a44  iPod Service - ok
23:41:56.0302 0x1a44  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
23:41:56.0305 0x1a44  IRENUM - ok
23:41:56.0344 0x1a44  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
23:41:56.0346 0x1a44  isapnp - ok
23:41:56.0377 0x1a44  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
23:41:56.0390 0x1a44  iScsiPrt - ok
23:41:56.0435 0x1a44  [ EE03564B7FAFE2E44EDA33D52E83B4A3, 53C917EEC92B813EB0C86B225E9887C9CDFDD7708AEA71BFAC0A3039E26D7BEB ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
23:41:56.0438 0x1a44  iwdbus - ok
23:41:56.0494 0x1a44  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
23:41:56.0502 0x1a44  jhi_service - ok
23:41:56.0544 0x1a44  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
23:41:56.0548 0x1a44  kbdclass - ok
23:41:56.0577 0x1a44  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
23:41:56.0580 0x1a44  kbdhid - ok
23:41:56.0612 0x1a44  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
23:41:56.0614 0x1a44  kdnic - ok
23:41:56.0621 0x1a44  keycrypt - ok
23:41:56.0637 0x1a44  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
23:41:56.0641 0x1a44  KeyIso - ok
23:41:56.0692 0x1a44  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
23:41:56.0697 0x1a44  KSecDD - ok
23:41:56.0751 0x1a44  [ 6D2EE96150E35B9EA49F2B481DE0369A, AC5915219FD81D89E444F6E86D71F7C495108FC35E7BD683321FC7006161AFE1 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
23:41:56.0766 0x1a44  KSecPkg - ok
23:41:56.0787 0x1a44  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
23:41:56.0789 0x1a44  ksthunk - ok
23:41:56.0871 0x1a44  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
23:41:56.0920 0x1a44  KtmRm - ok
23:41:57.0017 0x1a44  [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
23:41:57.0041 0x1a44  LanmanServer - ok
23:41:57.0137 0x1a44  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
23:41:57.0162 0x1a44  LanmanWorkstation - ok
23:41:57.0248 0x1a44  [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
23:41:57.0288 0x1a44  lfsvc - ok
23:41:57.0311 0x1a44  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
23:41:57.0315 0x1a44  lltdio - ok
23:41:57.0366 0x1a44  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
23:41:57.0383 0x1a44  lltdsvc - ok
23:41:57.0426 0x1a44  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
23:41:57.0440 0x1a44  lmhosts - ok
23:41:57.0481 0x1a44  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:41:57.0495 0x1a44  LMS - ok
23:41:57.0547 0x1a44  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
23:41:57.0553 0x1a44  LSI_SAS - ok
23:41:57.0579 0x1a44  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
23:41:57.0584 0x1a44  LSI_SAS2 - ok
23:41:57.0608 0x1a44  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
23:41:57.0613 0x1a44  LSI_SAS3 - ok
23:41:57.0654 0x1a44  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
23:41:57.0667 0x1a44  LSI_SSS - ok
23:41:57.0841 0x1a44  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\WINDOWS\System32\lsm.dll
23:41:57.0872 0x1a44  LSM - ok
23:41:57.0917 0x1a44  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
23:41:57.0923 0x1a44  luafv - ok
23:41:57.0983 0x1a44  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
23:41:57.0987 0x1a44  megasas - ok
23:41:58.0037 0x1a44  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
23:41:58.0068 0x1a44  megasr - ok
23:41:58.0116 0x1a44  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
23:41:58.0120 0x1a44  MEIx64 - ok
23:41:58.0200 0x1a44  Microsoft SharePoint Workspace Audit Service - ok
23:41:58.0236 0x1a44  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
23:41:58.0242 0x1a44  MMCSS - ok
23:41:58.0271 0x1a44  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
23:41:58.0287 0x1a44  Modem - ok
23:41:58.0359 0x1a44  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
23:41:58.0362 0x1a44  monitor - ok
23:41:58.0377 0x1a44  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
23:41:58.0381 0x1a44  mouclass - ok
23:41:58.0425 0x1a44  [ 21B7ACEA1BB49C3371DD5427BF309D6A, 39055A4D9BC293BD5DE5519FC6B95E7345089B32027E1799FA642606E6298856 ] moufiltr        C:\WINDOWS\System32\drivers\moufiltr.sys
23:41:58.0427 0x1a44  moufiltr - ok
23:41:58.0483 0x1a44  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
23:41:58.0486 0x1a44  mouhid - ok
23:41:58.0510 0x1a44  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
23:41:58.0515 0x1a44  mountmgr - ok
23:41:58.0534 0x1a44  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
23:41:58.0538 0x1a44  mpsdrv - ok
23:41:58.0630 0x1a44  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
23:41:58.0668 0x1a44  MpsSvc - ok
23:41:58.0698 0x1a44  [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
23:41:58.0706 0x1a44  MRxDAV - ok
23:41:58.0764 0x1a44  [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:41:58.0786 0x1a44  mrxsmb - ok
23:41:58.0843 0x1a44  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
23:41:58.0855 0x1a44  mrxsmb10 - ok
23:41:58.0880 0x1a44  [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
23:41:58.0890 0x1a44  mrxsmb20 - ok
23:41:58.0942 0x1a44  [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
23:41:58.0948 0x1a44  MsBridge - ok
23:41:59.0024 0x1a44  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
23:41:59.0035 0x1a44  MSDTC - ok
23:41:59.0059 0x1a44  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
23:41:59.0062 0x1a44  Msfs - ok
23:41:59.0106 0x1a44  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
23:41:59.0112 0x1a44  msgpiowin32 - ok
23:41:59.0382 0x1a44  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
23:41:59.0394 0x1a44  mshidkmdf - ok
23:41:59.0440 0x1a44  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
23:41:59.0452 0x1a44  mshidumdf - ok
23:41:59.0501 0x1a44  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
23:41:59.0503 0x1a44  msisadrv - ok
23:41:59.0545 0x1a44  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
23:41:59.0557 0x1a44  MSiSCSI - ok
23:41:59.0566 0x1a44  msiserver - ok
23:41:59.0587 0x1a44  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
23:41:59.0589 0x1a44  MSKSSRV - ok
23:41:59.0638 0x1a44  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
23:41:59.0644 0x1a44  MsLldp - ok
23:41:59.0829 0x1a44  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
23:41:59.0988 0x1a44  MSPCLOCK - ok
23:42:00.0017 0x1a44  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
23:42:00.0056 0x1a44  MSPQM - ok
23:42:00.0095 0x1a44  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
23:42:00.0117 0x1a44  MsRPC - ok
23:42:00.0156 0x1a44  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
23:42:00.0160 0x1a44  mssmbios - ok
23:42:00.0206 0x1a44  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
23:42:00.0209 0x1a44  MSTEE - ok
23:42:00.0235 0x1a44  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
23:42:00.0238 0x1a44  MTConfig - ok
23:42:00.0375 0x1a44  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
23:42:00.0378 0x1a44  Mup - ok
23:42:00.0489 0x1a44  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
23:42:00.0630 0x1a44  mvumis - ok
23:42:00.0818 0x1a44  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
23:42:00.0870 0x1a44  napagent - ok
23:42:01.0052 0x1a44  [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
23:42:01.0115 0x1a44  NativeWifiP - ok
23:42:01.0215 0x1a44  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
23:42:01.0346 0x1a44  NcaSvc - ok
23:42:01.0403 0x1a44  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
23:42:01.0454 0x1a44  NcbService - ok
23:42:01.0483 0x1a44  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
23:42:01.0491 0x1a44  NcdAutoSetup - ok
23:42:01.0840 0x1a44  [ 92B7298F81106B4C2626A879431DE19B, 1D6187570215C50165E833ABBE727C8D2AD6832C60C7EA318C0AE500D0147139 ] NCO             C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.6.15\NST.exe
23:42:01.0846 0x1a44  NCO - ok
23:42:02.0215 0x1a44  [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
23:42:02.0281 0x1a44  NDIS - ok
23:42:02.0302 0x1a44  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
23:42:02.0309 0x1a44  NdisCap - ok
23:42:02.0347 0x1a44  [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
23:42:02.0360 0x1a44  NdisImPlatform - ok
23:42:02.0446 0x1a44  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:42:02.0449 0x1a44  NdisTapi - ok
23:42:02.0538 0x1a44  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
23:42:02.0697 0x1a44  Ndisuio - ok
23:42:02.0720 0x1a44  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
23:42:02.0723 0x1a44  NdisVirtualBus - ok
23:42:02.0756 0x1a44  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:42:02.0768 0x1a44  NdisWan - ok
23:42:02.0788 0x1a44  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:42:02.0799 0x1a44  NdisWanLegacy - ok
23:42:02.0825 0x1a44  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
23:42:02.0846 0x1a44  NDProxy - ok
23:42:02.0907 0x1a44  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
23:42:02.0915 0x1a44  Ndu - ok
23:42:03.0091 0x1a44  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
23:42:03.0231 0x1a44  NetBIOS - ok
23:42:03.0330 0x1a44  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
23:42:03.0366 0x1a44  NetBT - ok
23:42:03.0393 0x1a44  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
23:42:03.0398 0x1a44  Netlogon - ok
23:42:03.0453 0x1a44  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
23:42:03.0485 0x1a44  Netman - ok
23:42:03.0970 0x1a44  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
23:42:04.0036 0x1a44  netprofm - ok
23:42:04.0541 0x1a44  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:04.0611 0x1a44  NetTcpPortSharing - ok
23:42:04.0651 0x1a44  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
23:42:04.0656 0x1a44  netvsc - ok
23:42:04.0724 0x1a44  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
23:42:04.0744 0x1a44  NlaSvc - ok
23:42:05.0376 0x1a44  [ 9B70CE32DD84A674B100BEA37F756016, 4B52FDA1FB24B02AE149AC70F46F3605B85A2A8AC5B948260BF53A5F076A674A ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
23:42:05.0650 0x1a44  NOBU - ok
23:42:05.0788 0x1a44  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
23:42:05.0807 0x1a44  Npfs - ok
23:42:05.0815 0x1a44  npggsvc - ok
23:42:05.0853 0x1a44  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
23:42:05.0857 0x1a44  npsvctrig - ok
23:42:05.0985 0x1a44  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
23:42:05.0993 0x1a44  nsi - ok
23:42:06.0209 0x1a44  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
23:42:06.0225 0x1a44  nsiproxy - ok
23:42:06.0556 0x1a44  [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
23:42:06.0669 0x1a44  Ntfs - ok
23:42:06.0767 0x1a44  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
23:42:06.0850 0x1a44  Null - ok
23:42:06.0902 0x1a44  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
23:42:06.0909 0x1a44  nvraid - ok
23:42:06.0942 0x1a44  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
23:42:06.0950 0x1a44  nvstor - ok
23:42:06.0979 0x1a44  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
23:42:06.0988 0x1a44  nv_agp - ok
23:42:07.0167 0x1a44  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:42:07.0278 0x1a44  ose - ok
23:42:07.0705 0x1a44  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:42:08.0024 0x1a44  osppsvc - ok
23:42:08.0340 0x1a44  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
23:42:08.0387 0x1a44  p2pimsvc - ok
23:42:08.0456 0x1a44  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
23:42:08.0483 0x1a44  p2psvc - ok
23:42:08.0696 0x1a44  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
23:42:08.0733 0x1a44  Parport - ok
23:42:08.0754 0x1a44  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
23:42:08.0758 0x1a44  partmgr - ok
23:42:08.0820 0x1a44  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
23:42:08.0847 0x1a44  PcaSvc - ok
23:42:09.0071 0x1a44  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
23:42:09.0151 0x1a44  pci - ok
23:42:09.0198 0x1a44  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
23:42:09.0201 0x1a44  pciide - ok
23:42:09.0269 0x1a44  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
23:42:09.0277 0x1a44  pcmcia - ok
23:42:09.0328 0x1a44  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
23:42:09.0332 0x1a44  pcw - ok
23:42:09.0433 0x1a44  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
23:42:09.0437 0x1a44  pdc - ok
23:42:09.0685 0x1a44  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
23:42:09.0727 0x1a44  PEAUTH - ok
23:42:10.0034 0x1a44  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
23:42:10.0039 0x1a44  PerfHost - ok
23:42:10.0440 0x1a44  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
23:42:10.0533 0x1a44  pla - ok
23:42:10.0663 0x1a44  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
23:42:10.0739 0x1a44  PlugPlay - ok
23:42:10.0802 0x1a44  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
23:42:10.0808 0x1a44  PNRPAutoReg - ok
23:42:10.0841 0x1a44  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
23:42:10.0865 0x1a44  PNRPsvc - ok
23:42:10.0921 0x1a44  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
23:42:10.0940 0x1a44  PolicyAgent - ok
23:42:11.0027 0x1a44  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
23:42:11.0130 0x1a44  Power - ok
23:42:11.0398 0x1a44  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
23:42:11.0845 0x1a44  PrintNotify - ok
23:42:11.0977 0x1a44  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
23:42:11.0986 0x1a44  Processor - ok
23:42:12.0031 0x1a44  [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
23:42:12.0047 0x1a44  ProfSvc - ok
23:42:12.0288 0x1a44  [ F7364CA670E0C581791E964D76A6606E, D5292179750E23587F549315D806E7B1B7CDA2990071A533569CB2D3EBF78CC0 ] Proxy           C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe
23:42:12.0325 0x1a44  Proxy - ok
23:42:12.0383 0x1a44  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
23:42:12.0393 0x1a44  Psched - ok
23:42:12.0437 0x1a44  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\WINDOWS\system32\Drivers\PxHlpa64.sys
23:42:12.0442 0x1a44  PxHlpa64 - ok
23:42:12.0516 0x1a44  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
23:42:12.0537 0x1a44  QWAVE - ok
23:42:12.0680 0x1a44  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
23:42:12.0707 0x1a44  QWAVEdrv - ok
23:42:12.0745 0x1a44  [ 194ED3C117525613E701FF257882303E, F9D771B573078C6335F352812E24918CB79529BAE2262117E8E0DD4C57AA64C1 ] RadioHIDMini    C:\WINDOWS\System32\drivers\RadioHIDMini.sys
23:42:12.0747 0x1a44  RadioHIDMini - ok
23:42:12.0786 0x1a44  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:42:12.0836 0x1a44  RasAcd - ok
23:42:12.0915 0x1a44  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
23:42:12.0933 0x1a44  RasAuto - ok
23:42:12.0997 0x1a44  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\WINDOWS\System32\rasmans.dll
23:42:13.0027 0x1a44  RasMan - ok
23:42:13.0180 0x1a44  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:42:13.0185 0x1a44  RasPppoe - ok
23:42:13.0368 0x1a44  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:42:13.0386 0x1a44  rdbss - ok
23:42:13.0494 0x1a44  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
23:42:13.0497 0x1a44  rdpbus - ok
23:42:13.0585 0x1a44  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
23:42:13.0599 0x1a44  RDPDR - ok
23:42:13.0685 0x1a44  [ 9F08A6608F98B5407E7DDBCF306573EF, 92812F97CFDB2EC128BC48143DE215B7D012B15D3FB4D2199222AD8C31DA5016 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
23:42:13.0688 0x1a44  RdpVideoMiniport - ok
23:42:13.0806 0x1a44  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
23:42:13.0820 0x1a44  rdyboost - ok
23:42:14.0148 0x1a44  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
23:42:14.0375 0x1a44  ReFS - ok
23:42:14.0483 0x1a44  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
23:42:14.0504 0x1a44  RemoteAccess - ok
23:42:14.0548 0x1a44  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
23:42:14.0568 0x1a44  RemoteRegistry - ok
23:42:14.0607 0x1a44  [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
23:42:14.0621 0x1a44  RFCOMM - ok
23:42:14.0666 0x1a44  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
23:42:14.0683 0x1a44  RpcEptMapper - ok
23:42:14.0753 0x1a44  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
23:42:14.0770 0x1a44  RpcLocator - ok
23:42:14.0982 0x1a44  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
23:42:15.0036 0x1a44  RpcSs - ok
23:42:15.0147 0x1a44  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
23:42:15.0158 0x1a44  rspndr - ok
23:42:15.0284 0x1a44  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
23:42:15.0327 0x1a44  RTL8168 - ok
23:42:15.0365 0x1a44  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
23:42:15.0377 0x1a44  s3cap - ok
23:42:15.0439 0x1a44  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
23:42:15.0446 0x1a44  SamSs - ok
23:42:15.0519 0x1a44  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
23:42:15.0534 0x1a44  sbp2port - ok
23:42:15.0643 0x1a44  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
23:42:15.0665 0x1a44  SCardSvr - ok
23:42:15.0698 0x1a44  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
23:42:15.0716 0x1a44  ScDeviceEnum - ok
23:42:15.0758 0x1a44  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
23:42:15.0762 0x1a44  scfilter - ok
23:42:16.0011 0x1a44  [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
23:42:16.0087 0x1a44  Schedule - ok
23:42:16.0267 0x1a44  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
23:42:16.0310 0x1a44  SCPolicySvc - ok
23:42:16.0397 0x1a44  [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
23:42:16.0415 0x1a44  sdbus - ok
23:42:16.0475 0x1a44  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
23:42:16.0482 0x1a44  sdstor - ok
23:42:16.0542 0x1a44  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
23:42:16.0545 0x1a44  secdrv - ok
23:42:16.0615 0x1a44  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
23:42:16.0632 0x1a44  seclogon - ok
23:42:16.0664 0x1a44  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
23:42:16.0673 0x1a44  SENS - ok
23:42:16.0747 0x1a44  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
23:42:16.0771 0x1a44  SensrSvc - ok
23:42:16.0834 0x1a44  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
23:42:16.0839 0x1a44  SerCx - ok
23:42:16.0896 0x1a44  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
23:42:16.0905 0x1a44  SerCx2 - ok
23:42:16.0961 0x1a44  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
23:42:16.0967 0x1a44  Serenum - ok
23:42:17.0109 0x1a44  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
23:42:17.0177 0x1a44  Serial - ok
23:42:17.0196 0x1a44  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
23:42:17.0199 0x1a44  sermouse - ok
23:42:17.0523 0x1a44  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
23:42:17.0542 0x1a44  SessionEnv - ok
23:42:17.0582 0x1a44  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
23:42:17.0585 0x1a44  sfloppy - ok
23:42:17.0661 0x1a44  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
23:42:17.0684 0x1a44  SharedAccess - ok
23:42:17.0756 0x1a44  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:42:17.0784 0x1a44  ShellHWDetection - ok
23:42:17.0824 0x1a44  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
23:42:17.0827 0x1a44  SiSRaid2 - ok
23:42:17.0854 0x1a44  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
23:42:17.0861 0x1a44  SiSRaid4 - ok
23:42:17.0998 0x1a44  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:42:18.0011 0x1a44  SkypeUpdate - ok
23:42:18.0068 0x1a44  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
23:42:18.0074 0x1a44  smphost - ok
23:42:18.0131 0x1a44  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
23:42:18.0136 0x1a44  SNMPTRAP - ok
23:42:18.0227 0x1a44  [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
23:42:18.0252 0x1a44  spaceport - ok
23:42:18.0280 0x1a44  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
23:42:18.0285 0x1a44  SpbCx - ok
23:42:18.0357 0x1a44  [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
23:42:18.0391 0x1a44  Spooler - ok
23:42:19.0130 0x1a44  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
23:42:19.0435 0x1a44  sppsvc - ok
23:42:19.0550 0x1a44  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
23:42:19.0580 0x1a44  srv - ok
23:42:19.0654 0x1a44  [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
23:42:19.0681 0x1a44  srv2 - ok
23:42:19.0706 0x1a44  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
23:42:19.0717 0x1a44  srvnet - ok
23:42:19.0793 0x1a44  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
23:42:19.0815 0x1a44  SSDPSRV - ok
23:42:19.0867 0x1a44  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
23:42:19.0879 0x1a44  SstpSvc - ok
23:42:19.0918 0x1a44  [ 91310683D7B6B292B746D60734B59322, 2C56C3E4AA7356FB544B52F80ABDA39A80473390CB2059C69BDCCAD40FE56325 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
23:42:19.0929 0x1a44  ssudmdm - ok
23:42:20.0307 0x1a44  [ ADA04D0DC075479DC24AD3AE29EC33E2, 66E76E8BB44AC91C35CADC2403B67476844ECF2EBFA751E87BC6D92D602E9D05 ] ss_conn_service C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
23:42:20.0352 0x1a44  ss_conn_service - ok
23:42:20.0584 0x1a44  [ 7E815DDD79CC73A02A33DF11FABE4E1E, A05A85CDB0CB0AA1AAC93AA801C39242BFE59082E2BC580F04EBFA71B5B61F07 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:42:20.0635 0x1a44  Steam Client Service - ok
23:42:20.0663 0x1a44  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
23:42:20.0674 0x1a44  stexstor - ok
23:42:20.0746 0x1a44  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
23:42:20.0777 0x1a44  stisvc - ok
23:42:20.0817 0x1a44  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
23:42:20.0822 0x1a44  storahci - ok
23:42:20.0837 0x1a44  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
23:42:20.0841 0x1a44  storflt - ok
23:42:20.0865 0x1a44  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
23:42:20.0870 0x1a44  stornvme - ok
23:42:20.0942 0x1a44  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
23:42:20.0952 0x1a44  StorSvc - ok
23:42:20.0991 0x1a44  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
23:42:20.0994 0x1a44  storvsc - ok
23:42:21.0037 0x1a44  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
23:42:21.0045 0x1a44  svsvc - ok
23:42:21.0056 0x1a44  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
23:42:21.0059 0x1a44  swenum - ok
23:42:21.0121 0x1a44  [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv           C:\WINDOWS\System32\swprv.dll
23:42:21.0153 0x1a44  swprv - ok
23:42:21.0183 0x1a44  SWUpdateService - ok
23:42:21.0288 0x1a44  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
23:42:21.0337 0x1a44  SysMain - ok
23:42:21.0410 0x1a44  [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
23:42:21.0465 0x1a44  SystemEventsBroker - ok
23:42:21.0540 0x1a44  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
23:42:21.0552 0x1a44  TabletInputService - ok
23:42:21.0599 0x1a44  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
23:42:21.0637 0x1a44  TapiSrv - ok
23:42:21.0794 0x1a44  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
23:42:21.0925 0x1a44  Tcpip - ok
23:42:22.0041 0x1a44  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
23:42:22.0130 0x1a44  TCPIP6 - ok
23:42:22.0186 0x1a44  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
23:42:22.0189 0x1a44  tcpipreg - ok
23:42:22.0242 0x1a44  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
23:42:22.0248 0x1a44  tdx - ok
23:42:22.0551 0x1a44  [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
23:42:22.0787 0x1a44  TeamViewer9 - ok
23:42:22.0846 0x1a44  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
23:42:22.0855 0x1a44  terminpt - ok
23:42:22.0939 0x1a44  [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService     C:\WINDOWS\System32\termsrv.dll
23:42:22.0982 0x1a44  TermService - ok
23:42:23.0011 0x1a44  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
23:42:23.0017 0x1a44  Themes - ok
23:42:23.0071 0x1a44  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
23:42:23.0080 0x1a44  THREADORDER - ok
23:42:23.0133 0x1a44  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
23:42:23.0147 0x1a44  TimeBroker - ok
23:42:23.0175 0x1a44  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
23:42:23.0185 0x1a44  TPM - ok
23:42:23.0210 0x1a44  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
23:42:23.0222 0x1a44  TrkWks - ok
23:42:23.0313 0x1a44  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
23:42:23.0318 0x1a44  TrustedInstaller - ok
23:42:23.0345 0x1a44  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
23:42:23.0349 0x1a44  TsUsbFlt - ok
23:42:23.0375 0x1a44  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
23:42:23.0378 0x1a44  TsUsbGD - ok
23:42:23.0429 0x1a44  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
23:42:23.0437 0x1a44  tunnel - ok
23:42:23.0498 0x1a44  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
23:42:23.0502 0x1a44  uagp35 - ok
23:42:23.0520 0x1a44  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
23:42:23.0526 0x1a44  UASPStor - ok
23:42:23.0559 0x1a44  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
23:42:23.0569 0x1a44  UCX01000 - ok
23:42:23.0625 0x1a44  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
23:42:23.0639 0x1a44  udfs - ok
23:42:23.0661 0x1a44  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
23:42:23.0664 0x1a44  UEFI - ok
23:42:23.0721 0x1a44  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
23:42:23.0733 0x1a44  UI0Detect - ok
23:42:23.0748 0x1a44  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
23:42:23.0752 0x1a44  uliagpkx - ok
23:42:23.0795 0x1a44  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
23:42:23.0799 0x1a44  umbus - ok
23:42:23.0816 0x1a44  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
23:42:23.0819 0x1a44  UmPass - ok
23:42:23.0866 0x1a44  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
23:42:23.0883 0x1a44  UmRdpService - ok
23:42:23.0998 0x1a44  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:42:24.0013 0x1a44  UNS - ok
23:42:24.0069 0x1a44  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
23:42:24.0091 0x1a44  upnphost - ok
23:42:24.0129 0x1a44  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
23:42:24.0133 0x1a44  USBAAPL64 - ok
23:42:24.0164 0x1a44  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
23:42:24.0173 0x1a44  usbccgp - ok
23:42:24.0227 0x1a44  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
23:42:24.0233 0x1a44  usbcir - ok
23:42:24.0280 0x1a44  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
23:42:24.0286 0x1a44  usbehci - ok
23:42:24.0352 0x1a44  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
23:42:24.0384 0x1a44  usbhub - ok
23:42:24.0428 0x1a44  [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
23:42:24.0453 0x1a44  USBHUB3 - ok
23:42:24.0494 0x1a44  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
23:42:24.0498 0x1a44  usbohci - ok
23:42:24.0521 0x1a44  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
23:42:24.0524 0x1a44  usbprint - ok
23:42:24.0571 0x1a44  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
23:42:24.0580 0x1a44  USBSTOR - ok
23:42:24.0618 0x1a44  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
23:42:24.0622 0x1a44  usbuhci - ok
23:42:24.0681 0x1a44  [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
23:42:24.0693 0x1a44  usbvideo - ok
23:42:24.0748 0x1a44  [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
23:42:24.0765 0x1a44  USBXHCI - ok
23:42:24.0794 0x1a44  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
23:42:24.0799 0x1a44  VaultSvc - ok
23:42:24.0843 0x1a44  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
23:42:24.0847 0x1a44  vdrvroot - ok
23:42:24.0937 0x1a44  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\WINDOWS\System32\vds.exe
23:42:24.0990 0x1a44  vds - ok
23:42:25.0018 0x1a44  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
23:42:25.0026 0x1a44  VerifierExt - ok
23:42:25.0071 0x1a44  [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
23:42:25.0099 0x1a44  vhdmp - ok
23:42:25.0133 0x1a44  [ C2C95D62C90CA809240112B41C1765F2, FAFBA11CE7D273D28D1C27D01BEB4E62AB4ADA7517183F46E505D335E1117CA0 ] vhidmini        C:\WINDOWS\System32\drivers\walvhid.sys
23:42:25.0135 0x1a44  vhidmini - ok
23:42:25.0187 0x1a44  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
23:42:25.0190 0x1a44  viaide - ok
23:42:25.0225 0x1a44  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
23:42:25.0231 0x1a44  vmbus - ok
23:42:25.0249 0x1a44  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
23:42:25.0251 0x1a44  VMBusHID - ok
23:42:25.0319 0x1a44  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
23:42:25.0343 0x1a44  vmicguestinterface - ok
23:42:25.0374 0x1a44  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
23:42:25.0402 0x1a44  vmicheartbeat - ok
23:42:25.0444 0x1a44  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
23:42:25.0465 0x1a44  vmickvpexchange - ok
23:42:25.0491 0x1a44  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
23:42:25.0511 0x1a44  vmicrdv - ok
23:42:25.0539 0x1a44  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
23:42:25.0561 0x1a44  vmicshutdown - ok
23:42:25.0590 0x1a44  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
23:42:25.0610 0x1a44  vmictimesync - ok
23:42:25.0638 0x1a44  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
23:42:25.0659 0x1a44  vmicvss - ok
23:42:25.0681 0x1a44  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
23:42:25.0686 0x1a44  volmgr - ok
23:42:25.0747 0x1a44  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
23:42:25.0762 0x1a44  volmgrx - ok
23:42:25.0798 0x1a44  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
23:42:25.0814 0x1a44  volsnap - ok
23:42:25.0855 0x1a44  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
23:42:25.0866 0x1a44  vpci - ok
23:42:25.0893 0x1a44  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
23:42:25.0903 0x1a44  vsmraid - ok
23:42:26.0008 0x1a44  [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS             C:\WINDOWS\system32\vssvc.exe
23:42:26.0091 0x1a44  VSS - ok
23:42:26.0155 0x1a44  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
23:42:26.0174 0x1a44  VSTXRAID - ok
23:42:26.0354 0x1a44  [ C22E26DEDA8CDDCD45B5E0751CD9ABCC, B913266BCB85F1C67AD5A44A53F4DAF4026D46B058EE6174FEC355FF2EA0F338 ] vToolbarUpdater18.1.9 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
23:42:26.0465 0x1a44  vToolbarUpdater18.1.9 - ok
23:42:26.0539 0x1a44  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
23:42:26.0544 0x1a44  vwifibus - ok
23:42:26.0597 0x1a44  [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
23:42:26.0601 0x1a44  vwififlt - ok
23:42:26.0619 0x1a44  [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
23:42:26.0622 0x1a44  vwifimp - ok
23:42:26.0684 0x1a44  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
23:42:26.0705 0x1a44  W32Time - ok
23:42:26.0730 0x1a44  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
23:42:26.0733 0x1a44  WacomPen - ok
23:42:26.0853 0x1a44  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
23:42:26.0919 0x1a44  wbengine - ok
23:42:26.0975 0x1a44  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
23:42:27.0005 0x1a44  WbioSrvc - ok
23:42:27.0029 0x1a44  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
23:42:27.0054 0x1a44  Wcmsvc - ok
23:42:27.0125 0x1a44  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
23:42:27.0170 0x1a44  wcncsvc - ok
23:42:27.0194 0x1a44  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
23:42:27.0209 0x1a44  WcsPlugInService - ok
23:42:27.0243 0x1a44  [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
23:42:27.0247 0x1a44  WdBoot - ok
23:42:27.0419 0x1a44  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
23:42:27.0487 0x1a44  Wdf01000 - ok
23:42:27.0534 0x1a44  [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
23:42:27.0548 0x1a44  WdFilter - ok
23:42:27.0591 0x1a44  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
23:42:27.0599 0x1a44  WdiServiceHost - ok
23:42:27.0608 0x1a44  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
23:42:27.0616 0x1a44  WdiSystemHost - ok
23:42:27.0633 0x1a44  [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
23:42:27.0639 0x1a44  WdNisDrv - ok
23:42:27.0675 0x1a44  WdNisSvc - ok
23:42:27.0727 0x1a44  [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient       C:\WINDOWS\System32\webclnt.dll
23:42:27.0740 0x1a44  WebClient - ok
23:42:27.0768 0x1a44  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
23:42:27.0782 0x1a44  Wecsvc - ok
23:42:27.0803 0x1a44  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
23:42:27.0809 0x1a44  WEPHOSTSVC - ok
23:42:27.0855 0x1a44  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
23:42:27.0863 0x1a44  wercplsupport - ok
23:42:27.0880 0x1a44  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
23:42:27.0890 0x1a44  WerSvc - ok
23:42:27.0932 0x1a44  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
23:42:27.0938 0x1a44  WFPLWFS - ok
23:42:27.0979 0x1a44  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
23:42:27.0987 0x1a44  WiaRpc - ok
23:42:28.0025 0x1a44  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
23:42:28.0028 0x1a44  WIMMount - ok
23:42:28.0033 0x1a44  WinDefend - ok
23:42:28.0228 0x1a44  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
23:42:28.0296 0x1a44  WinHttpAutoProxySvc - ok
23:42:28.0496 0x1a44  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
23:42:28.0530 0x1a44  Winmgmt - ok
23:42:28.0879 0x1a44  [ 9CE162EB9057CF079736F4DD00FC0D6C, 412C34557866D2A3B3CDAFA5A03B87C01AACF75E349802E511098B20137028D9 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
23:42:29.0009 0x1a44  WinRM - ok
23:42:29.0043 0x1a44  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\WINDOWS\system32\DRIVERS\WinUsb.sys
23:42:29.0049 0x1a44  WinUsb - ok
23:42:29.0166 0x1a44  [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
23:42:29.0228 0x1a44  WlanSvc - ok
23:42:29.0358 0x1a44  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
23:42:29.0438 0x1a44  wlidsvc - ok
23:42:29.0485 0x1a44  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
23:42:29.0487 0x1a44  WmiAcpi - ok
23:42:29.0541 0x1a44  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
23:42:29.0550 0x1a44  wmiApSrv - ok
23:42:29.0588 0x1a44  WMPNetworkSvc - ok
23:42:29.0610 0x1a44  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
23:42:29.0618 0x1a44  Wof - ok
23:42:29.0748 0x1a44  [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
23:42:29.0815 0x1a44  workfolderssvc - ok
23:42:29.0861 0x1a44  [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
23:42:29.0865 0x1a44  wpcfltr - ok
23:42:29.0911 0x1a44  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
23:42:29.0919 0x1a44  WPCSvc - ok
23:42:29.0938 0x1a44  [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
23:42:29.0947 0x1a44  WPDBusEnum - ok
23:42:29.0968 0x1a44  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
23:42:29.0972 0x1a44  WpdUpFltr - ok
23:42:30.0016 0x1a44  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
23:42:30.0019 0x1a44  ws2ifsl - ok
23:42:30.0071 0x1a44  [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
23:42:30.0081 0x1a44  wscsvc - ok
23:42:30.0088 0x1a44  WSearch - ok
23:42:30.0292 0x1a44  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\WINDOWS\System32\WSService.dll
23:42:30.0453 0x1a44  WSService - ok
23:42:30.0468 0x1a44  WTService - ok
23:42:30.0664 0x1a44  [ DCD090318EC800CF6275C6835900B0C6, 9E72762EEE46CC0606B909850E6D22E9C8E5C88E82F7C974B2B7C1E5160BEBA7 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
23:42:30.0843 0x1a44  wuauserv - ok
23:42:30.0904 0x1a44  [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
23:42:30.0923 0x1a44  WudfPf - ok
23:42:30.0960 0x1a44  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
23:42:31.0003 0x1a44  WUDFRd - ok
23:42:31.0020 0x1a44  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFSensorLP    C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:42:31.0029 0x1a44  WUDFSensorLP - ok
23:42:31.0068 0x1a44  [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
23:42:31.0078 0x1a44  wudfsvc - ok
23:42:31.0107 0x1a44  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:42:31.0116 0x1a44  WUDFWpdFs - ok
23:42:31.0149 0x1a44  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:42:31.0158 0x1a44  WUDFWpdMtp - ok
23:42:31.0214 0x1a44  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
23:42:31.0292 0x1a44  WwanSvc - ok
23:42:31.0526 0x1a44  X6va027 - ok
23:42:31.0641 0x1a44  [ 03CD249A16CF815FFFD347DC61EF9E6D, 3DE860B1BACF3F1D48B773FD6F4E25977F5193F01897278AED6CD276595356CE ] ZAtheros Bt and Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
23:42:31.0656 0x1a44  ZAtheros Bt and Wlan Coex Agent - ok
23:42:31.0683 0x1a44  ================ Scan global ===============================
23:42:31.0748 0x1a44  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
23:42:31.0799 0x1a44  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll
23:42:31.0836 0x1a44  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
23:42:31.0900 0x1a44  [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\WINDOWS\system32\services.exe
23:42:31.0920 0x1a44  [ Global ] - ok
23:42:31.0920 0x1a44  ================ Scan MBR ==================================
23:42:31.0940 0x1a44  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
23:42:31.0950 0x1a44  \Device\Harddisk0\DR0 - ok
23:42:31.0951 0x1a44  ================ Scan VBR ==================================
23:42:31.0954 0x1a44  [ 8314BF11DB4918294358EF3C6433DF11 ] \Device\Harddisk0\DR0\Partition1
23:42:31.0973 0x1a44  \Device\Harddisk0\DR0\Partition1 - ok
23:42:31.0992 0x1a44  [ F751B191ED56E61CAF0843C0C4EB2D6D ] \Device\Harddisk0\DR0\Partition2
23:42:32.0004 0x1a44  \Device\Harddisk0\DR0\Partition2 - ok
23:42:32.0018 0x1a44  [ D12D8E526D06D5B3A3B442A1215C19D8 ] \Device\Harddisk0\DR0\Partition3
23:42:32.0018 0x1a44  \Device\Harddisk0\DR0\Partition3 - ok
23:42:32.0030 0x1a44  [ 324811ABC37016A4B4821DD2F77EA723 ] \Device\Harddisk0\DR0\Partition4
23:42:32.0047 0x1a44  \Device\Harddisk0\DR0\Partition4 - ok
23:42:32.0085 0x1a44  [ C732DCF4293ECA2A25396C0F212DE527 ] \Device\Harddisk0\DR0\Partition5
23:42:32.0106 0x1a44  \Device\Harddisk0\DR0\Partition5 - ok
23:42:32.0118 0x1a44  [ EB534C4E67BB162BBA5D26EC9ABC6EE0 ] \Device\Harddisk0\DR0\Partition6
23:42:32.0138 0x1a44  \Device\Harddisk0\DR0\Partition6 - ok
23:42:32.0158 0x1a44  [ 0844447CED4B92BC73531706CA389162 ] \Device\Harddisk0\DR0\Partition7
23:42:32.0160 0x1a44  \Device\Harddisk0\DR0\Partition7 - ok
23:42:32.0161 0x1a44  ================ Scan generic autorun ======================
23:42:32.0951 0x1a44  [ C011D29B33D79AEA40450634F0266943, B22F153CE68F43B3B06B286E87C5C479EF6D082244BB037B4402EAC8E8AA1127 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:42:33.0528 0x1a44  RtHDVCpl - ok
23:42:33.0614 0x1a44  [ 8B74E828C963385395DE10FD7EA0E5EF, F5CF669E51BE3888395EFD8A564B6C62E1CCBD56A8A8F27FF9005F2DE5C17F36 ] C:\WINDOWS\system32\igfxtray.exe
23:42:33.0631 0x1a44  IgfxTray - ok
23:42:33.0688 0x1a44  [ C8DEB0D7725307CBEB27BCE3B316D374, 49F7A0F21A174CAF3BA5B117DB37FDE160E6788FAB90BB82211872A97891E118 ] C:\WINDOWS\system32\hkcmd.exe
23:42:33.0720 0x1a44  HotKeysCmds - ok
23:42:33.0764 0x1a44  [ 77AF6B1BCA863AE4782985D332986DF9, 8CB7DD9E3EC9F19BB692EF8C7318F171775AFE628561036E94F6D55EEE80818F ] C:\WINDOWS\system32\igfxpers.exe
23:42:33.0795 0x1a44  Persistence - ok
23:42:33.0867 0x1a44  [ 22ABE03E569F93E0A6EDE41366EE4604, C818EBF234C6907DA2ADBA0549C3A4786986E1704A21BA54DC298F4FFDE55EC8 ] C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
23:42:33.0896 0x1a44  BtTray - ok
23:42:33.0918 0x1a44  [ 45D7C498FB3BFEDC1241878DEECE3C96, 3A25C8DEDAB4E1EC1DA448070E9798A524FB4DB7E06A359FA849A9B9A248B3EB ] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
23:42:33.0925 0x1a44  BtvStack - ok
23:42:34.0242 0x1a44  [ F9C48B76DA59CF5FF2ED937B62F5ED39, BABC2638F6C92947C79C918DFD3E605B196672B23745226DFA64F68867B7C257 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
23:42:34.0321 0x1a44  AdobeAAMUpdater-1.0 - ok
23:42:35.0731 0x1a44  [ 86FD92020CDA42D0889782E53DAD427E, 86F6E885EC2B8D2B196C5056A021B3C8751E84B27C16CA55A52D3699F30FC56B ] C:\Program Files\Bitcasa\Bitcasa.exe
23:42:35.0965 0x1a44  Bitcasa - ok
23:42:36.0850 0x1a44  [ 63632A59BB00E8688FF2E45AD9DBAB05, 8456E69674ED6B360DF51266A45C54AC437B4AA98443C2ACAAF2FEE26917759C ] C:\WINDOWS\system32\WTMKM.exe
23:42:37.0429 0x1a44  MacrokeyManager - ok
23:42:37.0510 0x1a44  [ AE29724E282EDBE7D0F49E9982642EFD, E7637C08A35F1D7AF810500804FAC45557C5598FA887BE26484B50D305213658 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
23:42:37.0514 0x1a44  RemoteControl10 - ok
23:42:37.0566 0x1a44  [ 724CB7A116F7E1A67009D751BCF86586, F0C4BE7451C5573AD584F5EF125C0702841E30D928909B5B3EA702831EF2FD9B ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
23:42:37.0571 0x1a44  CLMLServer_For_P2G8 - ok
23:42:37.0612 0x1a44  [ 44C5C8A5DF192FDC4D530F57612FA49C, DD8D69698361CBD042AEB69BC040DAD92BB642429B68A9169247E1A8A96D391D ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
23:42:37.0632 0x1a44  CLVirtualDrive - ok
23:42:37.0766 0x1a44  [ 07CDD5732A8A084BA8EC10287CADDD36, 94381CA5F99861028D3BA9DFBE8AB3843F871105C642DF6842B6A3C2570DB964 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
23:42:37.0769 0x1a44  Adobe Reader Speed Launcher - ok
23:42:37.0846 0x1a44  [ B8E421C0890356CD4A793D8A346D9096, 1FDA1E3C530DF98A258D95F6ED129D8AB11FBC90167E9455C0A85C24A6249F13 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
23:42:37.0878 0x1a44  Adobe ARM - ok
23:42:37.0964 0x1a44  [ 43E946AAD268FEAFB1E286677E70CB5D, 7798926B3CF11D1CF7DFF9B3D67AD3DC67010A62F3132CAEA273EB299A61B176 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
23:42:37.0972 0x1a44  Intel AppUp(SM) center - ok
23:42:38.0612 0x1a44  [ C46229075C0CE88B2BB71AC5664601CE, 0B8CAD993148AF73EA07D375AA9A1EAA1EADC409DF3E21ECBACF91204D191125 ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
23:42:38.0767 0x1a44  Norton Online Backup - ok
23:42:38.0933 0x1a44  [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
23:42:38.0982 0x1a44  BCSSync - ok
23:42:39.0076 0x1a44  [ 09E60B4FE341A94A300830C008907099, 5F07868953FAA8FFA9E6477F6BAC52DEEDF3EA4A3F8AF5B4E15878D8240223AB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
23:42:39.0079 0x1a44  APSDaemon - ok
23:42:39.0550 0x1a44  [ 55101D02E0F55D3ABA03AF8B81D2B3C8, A1A914A2A9129D8E5ECB960DCC7175364AD6AF44B3042B695AE9079C01CA7C7D ] C:\Program Files (x86)\iBoards\iBoardHelper\iBoardHelper.exe
23:42:39.0964 0x1a44  iBoardHelper - ok
23:42:40.0108 0x1a44  [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:42:40.0130 0x1a44  SunJavaUpdateSched - ok
23:42:40.0579 0x1a44  [ 80086ED442941DE2CA18CB6DAE8C1422, F7BE958F2E8E17970C238E3806F4A742B12DA09EB21093BD6371CF4B580C5BE4 ] C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
23:42:40.0678 0x1a44  Aeria Ignite - ok
23:42:41.0764 0x1a44  [ C038485F5A537A60A19EAC8C15D98161, 3AB29FDBD5E17533537339ED670B01030776F59A474F30CE2A77F543AA00D5D6 ] C:\Program Files (x86)\AVG\AVG2014\avgui.exe
23:42:42.0022 0x1a44  AVG_UI - ok
23:42:42.0367 0x1a44  [ A7D6721D90AB8D3EE1DB118F23FEB653, 25570EFF59410E2FB9082202091F7F8A375F3AD7A3C8090D3CFF8FEFC23E6AAE ] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
23:42:42.0504 0x1a44  vProt - ok
23:42:42.0573 0x1a44  [ 0EF0822810009D58118CCDFD098FA9F4, 9FAA263057898BCDBCB0A064C463F48D149474AA339A3C4C47626CC118750D2D ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
23:42:42.0581 0x1a44  iTunesHelper - ok
23:42:42.0584 0x1a44  PC Health Kit - ok
23:42:42.0722 0x1a44  [ BE1DAE43DFBCA94FB6B4157C1B16923E, 889A5B65315613B8D29EF66EFEC7198C5EF13A698FC0B237948A5443BD27C9DA ] C:\windows\SysWOW64\Rundll32.exe
23:42:42.0740 0x1a44  BackgroundContainerV2 - ok
23:42:43.0271 0x1a44  [ 776F1F9447FDA3F568EC6D1FB74DDD27, A53409B29ACDDB901D395EC4217F5BF366B3F8AFF2817B007AC7558505D18863 ] C:\Program Files (x86)\Steam\Steam.exe
23:42:43.0392 0x1a44  Steam - ok
23:42:43.0561 0x1a44  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\Mark\AppData\Local\Google\Update\GoogleUpdate.exe
23:42:43.0566 0x1a44  Google Update - ok
23:42:43.0618 0x1a44  [ 2A3FB4C98F139038E23330D2439DB8A4, DE9253AD362B03FA5D3D4912662398E5C4AC76F7274B83E51C251A6921A5B838 ] C:\Users\Mark\AppData\Local\Facebook\Update\FacebookUpdate.exe
23:42:43.0625 0x1a44  Facebook Update - ok
23:42:43.0834 0x1a44  [ C10E5EF1B85DE5B79AC2815C9A677D1F, 33162556A7F41CF107480A788104DD28A0C73C4AFFB224124A6C474D9B47A4DD ] C:\Users\Mark\AppData\Roaming\uTorrent\uTorrent.exe
23:42:43.0904 0x1a44  uTorrent - ok
23:42:44.0026 0x1a44  [ 085FCC89B98B037E298EF35E12681AB7, 841F089702B69A760DD57A88C6E71D0635A055A347CDCC14A2F378A26B8701FD ] C:\Program Files (x86)\Ares\Ares.exe
23:42:44.0061 0x1a44  ares - ok
23:42:44.0207 0x1a44  [ 48C3EBD6D5E52AFCB1A0FA9B7F9802FA, 4F2E27AA8305FFC94F65C65C5FDB8462C92ED02A7B37627404382C3CAB65AC59 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
23:42:44.0218 0x1a44  iCloudServices - ok
23:42:44.0256 0x1a44  [ 799BCC829F48F19C5689478179060435, 495C6E363982F7BE1785A46C12ED4AC99E0AF98F340F1CE3C55D39EBE6FE33AA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
23:42:44.0262 0x1a44  ApplePhotoStreams - ok
23:42:44.0621 0x1a44  [ 70F81D6EEFCA1E1943828306F57EA55C, F554F5BA0E6C02FC9C00DA04AE7DE73FF80DCDF3F09783C8882ED7235560FF98 ] C:\Users\Mark\AppData\Local\Akamai\netsession_win.exe
23:42:44.0853 0x1a44  Akamai NetSession Interface - ok
23:42:45.0163 0x1a44  [ 46C65974CA912E5751905432D649BC25, FEA2E185F2C8517F6A5B923BE320D2BB1B648C88CF2E1902B04A3EADA66ABA4A ] C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe
23:42:45.0304 0x1a44  AVG-Secure-Search-Update_0414c - ok
23:42:45.0355 0x1a44  Skype - ok
23:42:45.0360 0x1a44  Waiting for KSN requests completion. In queue: 186
23:42:46.0417 0x1a44  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files (x86)\AVG\AVG2014\avgwsc.exe ( 14.0.0.4794 ), 0x41000 ( enabled : updated )
23:42:46.0499 0x1a44  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.6.305.0 ), 0x60100 ( disabled : updated )
23:42:46.0504 0x1a44  Win FW state via NFP2: enabled
23:42:48.0921 0x1a44  ============================================================
23:42:48.0921 0x1a44  Scan finished
23:42:48.0921 0x1a44  ============================================================
23:42:48.0944 0x22a0  Detected object count: 0
23:42:48.0944 0x22a0  Actual detected object count: 0
 



#12 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 08:03 AM

---------------------

ADW Cleaner Res.

---------------------

# AdwCleaner v4.102 - Report created 25/11/2014 at 23:52:44
# Updated 23/11/2014 by Xplode
# Database : 2014-11-25.1 [Live]
# Operating System : Windows 8.1  (64 bits)
# Username : Mark - NAZ
# Running from : C:\Users\Mark\Desktop\Virus Removal Attempt\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : DefaultTabSearch
Service Deleted : vToolbarUpdater18.1.9

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\374311380
Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Browser
Folder Deleted : C:\ProgramData\StarApp
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\conttinuuetoosoave
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Kit
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\conttinuuetoosoave
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Optimizer Pro
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\Program Files (x86)\Tbccint
Folder Deleted : C:\Program Files (x86)\TidyNetwork
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Common Files\DealAlly
Folder Deleted : C:\Program Files (x86)\Common Files\Hoist Search
[!] Folder Deleted : C:\Users\Mark\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Mark\AppData\Local\Conduit
Folder Deleted : C:\Users\Mark\AppData\Local\Rocket
Folder Deleted : C:\Users\Mark\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Mark\AppData\Local\Zoom_Downloader
Folder Deleted : C:\Users\Mark\AppData\Local\CrashRpt
Folder Deleted : C:\Users\Mark\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Mark\AppData\LocalLow\comcasttb
Folder Deleted : C:\Users\Mark\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Mark\AppData\LocalLow\Delta
Folder Deleted : C:\Users\Mark\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Mark\AppData\LocalLow\conttinuuetoosoave
Folder Deleted : C:\Users\Mark\AppData\Roaming\AppCloudUpdater
Folder Deleted : C:\Users\Mark\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Mark\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Mark\AppData\Roaming\RocketUpdater
Folder Deleted : C:\Users\Mark\Documents\Optimizer Pro
Folder Deleted : C:\Users\Naze\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Naze\AppData\Local\Conduit
Folder Deleted : C:\Users\Naze\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Naze\AppData\Local\Zoom_Downloader
Folder Deleted : C:\Users\Naze\AppData\Local\speed browser
Folder Deleted : C:\Users\Naze\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Naze\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Naze\AppData\LocalLow\MixiDJ_V30
Folder Deleted : C:\Users\Naze\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Naze\AppData\LocalLow\xfin_portal
Folder Deleted : C:\Users\Naze\AppData\LocalLow\DownloadManager
Folder Deleted : C:\Users\Naze\AppData\LocalLow\conttinuuetoosoave
Folder Deleted : C:\Users\Naze\AppData\Roaming\24x7 help
Folder Deleted : C:\Users\Naze\AppData\Roaming\defaulttab
Folder Deleted : C:\Users\Naze\AppData\Roaming\PC Health Kit
Folder Deleted : C:\Users\Naze\AppData\Roaming\PCFixSpeed
Folder Deleted : C:\Users\Naze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Folder Deleted : C:\Users\Naze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Folder Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Folder Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Folder Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob
File Deleted : C:\END
File Deleted : C:\Users\Naze\Desktop\PC Health Kit.lnk
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_app.mam.conduit.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_app.mam.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_facebook.conduitapps.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_facebook.conduitapps.com_0.localstorage-journal
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fastcontent.conduit.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fastcontent.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_storage.conduit.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_storage.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage
File Deleted : C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal
File Deleted : C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Deleted : C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

Task Deleted : AppCloudUpdater
Task Deleted : Rocket Updater

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fdkednngfjmpnljkolbapdednncafhen
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Key Deleted : HKCU\Software\Google\Chrome\Extensions\pcajpdcjfekhfnapaiphaecoajeollnc
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pcajpdcjfekhfnapaiphaecoajeollnc
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\nppllibpnmahfaklnpggkibhkapjkeob
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\conduit.com
Key Deleted : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\babylon.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\conduit.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3298566
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3299568
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3302997
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{38495740-0035-4471-851E-F5BBB86AB085}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08635077-8829-49E2-B338-C968817EB460}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{20A3F109-F7C1-47B4-8098-8E654B264B1D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8C7478AB-3155-463E-936F-55F91F0F10D0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9E1B65EE-A131-42B4-94CA-847505E2F611}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6B1E97B3-C47F-F460-7A2C-F27C4C58FB00}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B7D0EE50-0530-B29C-87DC-8C78BDD23AA7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A11A6BD-7880-49BD-92D4-6F09D0BD3250}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{68DE31F7-43FF-4EE2-B88B-10665016970D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6B1E97B3-C47F-F460-7A2C-F27C4C58FB00}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B7D0EE50-0530-B29C-87DC-8C78BDD23AA7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6B1E97B3-C47F-F460-7A2C-F27C4C58FB00}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B7D0EE50-0530-B29C-87DC-8C78BDD23AA7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5D38A10B-7CF0-4217-8878-830957243435}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8F169252-A86D-4203-A7F6-2BD562B37A9D}
Key Deleted : HKCU\Software\AppCloudUpdater
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\BABSOLUTION
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DefaultTab
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\Rocket Browser
Key Deleted : HKCU\Software\RocketUpdater
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\UpToDown
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\BackgroundContainer
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\DefaultTab
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\xfin_portal
Key Deleted : HKCU\Software\AppDataLow\Software\BackgroundContainerV2
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Default Tab
Key Deleted : HKLM\SOFTWARE\DefaultTab
Key Deleted : HKLM\SOFTWARE\SearchProtect
Key Deleted : HKLM\SOFTWARE\SpeedBrowser
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\conduit-services.com

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Google Chrome v39.0.2171.71

[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN47020818232365553&ctid=CT3298566&UM=2
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN47020818232365553&ctid=CT3298566&UM=2
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN47020818232365553&ctid=CT3298566&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN47020818232365553&ctid=CT3298566&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN47020818232365553&ctid=CT3298566&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN47020818232365553&ctid=CT3298566&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : fdkednngfjmpnljkolbapdednncafhen
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : fjoijdanhaiflhibkljeklcghcmmfffh
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : kdidombaedgpfiiedeimiebkmbilgmlc
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : nppllibpnmahfaklnpggkibhkapjkeob
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://search.conduit.com/?ctid=CT3298566&SearchSource=48&CUI=UN47020818232365553&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Startup_URLs] : hxxp://search.conduit.com/?ctid=CT3298566&SearchSource=48&CUI=UN47020818232365553&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://search.conduit.com/?ctid=CT3298566&SearchSource=48&CUI=UN47020818232365553&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=
[C:\Users\Naze\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Startup_URLs] : hxxp://search.conduit.com/?ctid=CT3298566&SearchSource=48&CUI=UN47020818232365553&UM=2&UP=SP160278E2-216D-46A0-B264-7FC8D7ACB215&SSPV=

*************************

AdwCleaner[R0].txt - [26372 octets] - [25/11/2014 23:46:40]
AdwCleaner[S0].txt - [24343 octets] - [25/11/2014 23:52:44]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [24404 octets] ##########


----------------

JRT Res.

----------------

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.9 (11.15.2014:2)
OS: Windows 8.1 x64
Ran by Mark on Wed 11/26/2014 at  0:09:26.31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-275444049-347170542-1178166326-1002\Software\Microsoft\Internet Explorer\Main\\Start Page

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7E1BF015-83D9-48A9-9779-EFFF838BDDE8}

 

~~~ Files

Successfully deleted: [File] "C:\Users\Mark\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage"
Successfully deleted: [File] "C:\Users\Mark\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage-journal"
Successfully deleted: [File] C:\WINDOWS\prefetch\TOOLBARUPDATER.EXE-7E0BF6F3.pf

 

~~~ Folders

Successfully deleted: [Folder] C:\ProgramData\SearchNewTab
Successfully deleted: [Folder] "C:\Users\Mark\appdata\local\cre"
Successfully deleted: [Folder] "C:\ai_recyclebin"
Successfully deleted: [Folder] "C:\WINDOWS\syswow64\ai_recyclebin"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 11/26/2014 at  0:15:13.17
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#13 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 08:04 AM

-------------------

ESETScan Res.

-------------------

C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\DealAlly\node\conf.js.vir Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\DealAlly\node\service.exe.vir Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\Hoist Search\node\conf.js.vir Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\Hoist Search\node\service.exe.vir Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe_1391407784766.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1389821285398.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1389821285530.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1390826404019.vir Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1390826404860.vir Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1391035472528.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1391035473076.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1391407781046.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1391517718623.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1391517719143.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll_1392180827037.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TidyNetwork\petn.dll.vir Win32/TidyNetwork.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\TidyNetwork\petn64.dll.vir Win64/TidyNetwork.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Mark\AppData\Local\Conduit\Community Alerts\Alert.dll.vir a variant of Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Mark\AppData\Local\Rocket\User Data\Default\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom\0.2.4_0\js\background.js.vir JS/Astromenda.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Mark\AppData\Local\Rocket\User Data\Default\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom\0.2.4_0\js\bootstrap.js.vir JS/Astromenda.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Mark\AppData\Local\Rocket\User Data\Default\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom\0.2.4_0\js\newtab.js.vir JS/Astromenda.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Mark\AppData\Local\Rocket\User Data\Default\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom\0.2.4_0\js\opentab.js.vir JS/Astromenda.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Mark\AppData\Roaming\OpenCandy\D426930EA4754026BBD8AB8FF2C5144E\mconduitinstaller.exe.vir Win32/Toolbar.Conduit.S potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll.vir a variant of Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Local\Conduit\BackgroundContainer\TBUpdaterLogic_1.0.0.1.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Local\Conduit\BackgroundContainer\TBUpdaterLogic_1.0.0.2.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Local\Conduit\Community Alerts\Alert.dll.vir a variant of Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\hk64tbMix0.dll.vir a variant of Win64/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\hk64tbMix2.dll.vir Win64/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\hk64tbMixi.dll.vir a variant of Win64/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\hktbMix0.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\hktbMix2.dll.vir Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\hktbMixi.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\ldrtbMix2.dll.vir a variant of Win32/Toolbar.Conduit.P potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\ldrtbMixi.dll.vir a variant of Win32/Toolbar.Conduit.P potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\tbMix0.dll.vir a variant of Win32/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\tbMix1.dll.vir a variant of Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\tbMix2.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\tbMixi.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\LocalLow\MixiDJ_V30\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.12\bin\PriceGongIE.dll.vir a variant of Win32/PriceGong.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\DefaultTabBHO.dll.vir a variant of Win32/Toolbar.DefaultTab.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\DefaultTabStart.exe.vir a variant of Win32/Toolbar.DefaultTab.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\DefaultTabStart64.exe.vir Win64/Toolbar.DefaultTab.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\DefaultTabUninstaller.exe.vir Win32/Toolbar.DefaultTab.E potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\DefaultTabWrap.dll.vir a variant of Win32/Toolbar.DefaultTab.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\DefaultTabWrap64.dll.vir a variant of Win64/Toolbar.DefaultTab.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\DTUpdate.exe.vir Win32/Toolbar.DefaultTab.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\uninstalldt.exe.vir a variant of Win32/Toolbar.DefaultTab.E potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Naze\AppData\Roaming\defaulttab\DefaultTab\update.exe.vir a variant of Win32/Toolbar.DefaultTab.B potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Cache utility\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Cache utility\node\service.exe Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Diagnostics\node\8jcd9zrd344.exe Win32/UnlimitedDownloads.A potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Diagnostics\node\8jcda70kmw4.exe Win32/UnlimitedDownloads.A potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Diagnostics\node\8jcdag9yy84.exe Win32/UnlimitedDownloads.A potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Diagnostics\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Display settings\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Common Files\Display settings\node\service.exe Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined
C:\Users\Mark\AppData\Local\Temp\tbMix0.dll a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\Users\Mark\AppData\Local\Temp\7742500.Uninstall\uninstaller.exe Win32/InstallCore.PC potentially unwanted application deleted - quarantined
C:\Users\Mark\Lost Saga\iopac.dll a variant of Win32/Packed.Themida potentially unwanted application deleted - quarantined
C:\Users\Naze\AppData\Local\CRE\fdkednngfjmpnljkolbapdednncafhen.crx a variant of Win32/Toolbar.Conduit.AH potentially unwanted application deleted - quarantined
C:\Users\Naze\Desktop\Microsoft Office 2010 Pro Plus.rar a variant of MSIL/HackKMS.A potentially unsafe application deleted - quarantined
C:\Users\Naze\Downloads\cbsidlm-tr1_13-Greeting_Card_Studio-SEO-10784228.exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined
C:\Users\Naze\Downloads\MapsGalaxySetup2.5.14.31.pd^UX^xdm011^YYA^us.maps4pc.exe a variant of Win32/Toolbar.MyWebSearch.V potentially unwanted application deleted - quarantined
C:\Users\Naze\Downloads\MyFunCards.exe Win32/AdInstaller potentially unwanted application deleted - quarantined
C:\Users\Naze\Downloads\zip.exe a variant of Win32/InstallIQ potentially unwanted application deleted - quarantined
C:\Windows 8\Other\Cheat Engine 6.2\cheatengine-i386.exe a variant of Win32/HackTool.CheatEngine.AB potentially unsafe application deleted - quarantined
C:\Windows 8\Other\Cheat Engine 6.2\standalonephase1.dat a variant of Win32/HackTool.CheatEngine.AF potentially unsafe application deleted - quarantined

 



#14 Marc2366

Marc2366
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:03:30 PM

Posted 26 November 2014 - 08:05 AM

I broke it down into 5 posts because it was telling me I had too much in my singular post. Well there you have it, tell me what you find please? Have a great day.



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,078 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 26 November 2014 - 12:13 PM

OK.. we cleaned a lot of pop up and hijackers...

Run these last 2 and see how it is. They are not long.

Please download Malwarebytes Anti-Malware and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
  • Double-click on the renamed file to install, then follow these instructions
  • for doing a Quick Scan in normal mode.
  • Don't forget to check for database definition updates through the program's interface (preferable method) before scanning.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • After completing the scan, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab .
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, use Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).


>>


Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users