Holy Smokes! We got a bad one! Computer freezing, pop ups like
Started by
uFinditEazy!
, May 11 2015 07:48 PM
Freezing Farbar wont download Pop ups Memory usage thru the roof hard to use.
This topic is locked
#31
Posted 14 May 2015 - 10:16 AM
pystryker
-
- Malware Removal
-
- 3,912 posts
Trusted Helper
#32
Posted 14 May 2015 - 10:22 AM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 14-05-2015 01
Ran by Owner at 2015-05-14 09:42:49 Run:3
Running from C:\Users\Owner\Desktop
Loaded Profiles: Owner (Available profiles: Owner)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
Replace: C:\Windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_9.4.8112.20606_none_60c78d12bfd3657a\iertutil.dll C:\windows\system32\iertutil.dll
End
*****************
C:\windows\system32\iertutil.dll => Moved successfully.
C:\Windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_9.4.8112.20606_none_60c78d12bfd3657a\iertutil.dll copied successfully to C:\windows\system32\iertutil.dll
==== End of Fixlog 09:42:49 ====
#33
Posted 14 May 2015 - 10:31 AM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
=) adware ran but I am not sure about part of that post.. there is no report button. Do you mean logfile?
#34
Posted 14 May 2015 - 11:06 AM
pystryker
-
- Malware Removal
-
- 3,912 posts
Trusted Helper
=) adware ran but I am not sure about part of that post.. there is no report button. Do you mean logfile?
Yes, the logfile button. I apparently need to update my instructions.
#35
Posted 14 May 2015 - 11:32 AM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
# AdwCleaner v4.203 - Logfile created 14/05/2015 at 09:48:07
# Updated 30/04/2015 by Xplode
# Database : 2015-05-12.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Owner - OWNER-PC
# Running from : C:\Users\Owner\Desktop\adwcleaner_4.203.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\bprotector web data
File Found : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Owner\AppData\Roaming\BabMaint.exe
File Found : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\jd3r6gen.default\bprotector_extensions.sqlite
File Found : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\jd3r6gen.default\bprotector_prefs.js
File Found : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\jd3r6gen.default\user.js
File Found : C:\Windows\System32\roboot64.exe
Folder Found : C:\Program Files (x86)\SaveValet
Folder Found : C:\Program Files (x86)\w3i
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\FantastiGames
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Helper
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\ProgramData\w3i
Folder Found : C:\ProgramData\wincert
Folder Found : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc
Folder Found : C:\Users\Owner\AppData\Local\iac
Folder Found : C:\Users\Owner\AppData\LocalLow\Delta
Folder Found : C:\Users\Owner\AppData\LocalLow\iac
Folder Found : C:\Users\Owner\AppData\Roaming\Babylon
Folder Found : C:\Users\Owner\AppData\Roaming\Delta
Folder Found : C:\Users\Owner\AppData\Roaming\file scout
Folder Found : C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Ride Games
Folder Found : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\jd3r6gen.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Folder Found : C:\Users\Owner\AppData\Roaming\PerformerSoft
Folder Found : C:\Users\Owner\AppData\Roaming\StartNow Toolbar
Folder Found : C:\Users\Owner\Documents\MSR
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\857d6d1b23fb848
Key Found : HKCU\Software\AppDataLow\Software\NetNucleous
Key Found : HKCU\Software\BABSOLUTION
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\Classes\CLSID\{0696f815-a3a9-490a-bb14-9ec3350b1276}
Key Found : HKCU\Software\Classes\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\Delta
Key Found : HKCU\Software\delta LTD
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\yourtango.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a86782d8-7b41-452f-a217-1854f72dba54}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\NetNucleous
Key Found : HKCU\Software\SocialBit
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\BABSOLUTION
Key Found : [x64] HKCU\Software\BabylonToolbar
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\DataMngr_Toolbar
Key Found : [x64] HKCU\Software\Delta
Key Found : [x64] HKCU\Software\delta LTD
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\ICQ\ICQToolbar
Key Found : [x64] HKCU\Software\NetNucleous
Key Found : [x64] HKCU\Software\SocialBit
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\857d6d1b23fb848
Key Found : HKLM\SOFTWARE\Babylon
Key Found : HKLM\SOFTWARE\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02515cef-2063-4d64-b87a-d504c99d40dd}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{07494721-dfcf-41c1-8a03-b3fffb0f8409}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0e8a6cb6-3b14-491d-8bba-86a95a62ff72}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1D7E63AF-274B-426B-B51D-ADF161DF7F24}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{387dface-9e46-415f-8c86-18083b7d6ead}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{38deffd9-9379-4ac4-baa9-1a883dba9cd2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3d429207-4689-492d-a0e5-cdc5dfbb5005}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3d429207-4689-492d-a0e5-cdc5dfbb5005}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{52d3c28f-c9ac-40b5-848f-1fb63d2badef}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{67d33c35-62e9-4f77-a284-9e9d256f7846}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6ffb45e3-cffc-4b3a-95eb-334cb53c85b0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7895609d-c8b4-4cf5-a2c7-28223d0c3d92}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7952f465-ac46-4a82-b383-870f3784d1cd}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7ad9c324-3672-4d33-8477-d9c8e627f4bf}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{84b7b98f-e018-4dbb-ab4c-4ddd3dfcb5fb}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8be781d8-5e70-423d-82de-9e4756fce53c}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{91a8da6b-8013-44aa-b63f-00195312999a}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{a86782d8-7b41-452f-a217-1854f72dba54}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{d09094b3-b426-4f16-a6d9-e211fe222127}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{d09094b3-b426-4f16-a6d9-e211fe222127}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{fba7cbb1-fc93-4149-8862-d94451a7d167}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{ff48dba6-5dd8-4d10-9eb0-0fa968502e66}
Key Found : HKLM\SOFTWARE\Classes\d
Key Found : HKLM\SOFTWARE\Classes\delta.deltaappCore
Key Found : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Key Found : HKLM\SOFTWARE\Classes\delta.deltadskBnd
Key Found : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
Key Found : HKLM\SOFTWARE\Classes\delta.deltaHlpr
Key Found : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
Key Found : HKLM\SOFTWARE\Classes\Installer\Features\E5C2FB287A9731A45B805D6EA4B541E1
Key Found : HKLM\SOFTWARE\Classes\Installer\Products\E5C2FB287A9731A45B805D6EA4B541E1
Key Found : HKLM\SOFTWARE\Classes\Interface\{0328b630-ea94-4fa3-9f27-8250b6324ddb}
Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2d9083ce-8758-4704-ba57-3c891d7452bd}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{42CB7963-EFE0-4737-A927-CE076FAA3BA0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4B8E39FD-ED07-4A41-9681-3D78DAFCEE66}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E7F49ED-8C94-4AAA-A407-3010D099B11A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4e7f49ed-8c94-4aaa-a407-3010d099b11a}
Key Found : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9103c314-c4e2-4463-8934-b19bcb46236d}
Key Found : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9989BC14-9B5B-4B3B-8040-478FD1685E34}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B8445FED-900C-4137-AD15-DDD2F6306B62}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BB27DF2F-6F05-4A42-9FFD-14696D795750}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C00F4B2B-A33C-40FC-8E47-4D18DCD4B01E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncher
Key Found : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncher.1
Key Found : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncherSettings
Key Found : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncherSettings.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{192F487E-E812-40C0-B0DE-CB4BFA20F37B}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{192f487e-e812-40c0-b0de-cb4bfa20f37b}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{79332472-47f3-4e32-b07f-cf8df4c58499}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncherSettings
Key Found : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncherSettings.1
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\DataMngr
Key Found : HKLM\SOFTWARE\Delta
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc
Key Found : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\InstallIQ
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0328b630-ea94-4fa3-9f27-8250b6324ddb}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22714877-95e3-480e-a313-4ec440965e4f}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22714877-95E3-480E-A313-4EC440965E4F}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2d9083ce-8758-4704-ba57-3c891d7452bd}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3d429207-4689-492d-a0e5-cdc5dfbb5005}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3d429207-4689-492d-a0e5-cdc5dfbb5005}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4e7f49ed-8c94-4aaa-a407-3010d099b11a}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E7F49ED-8C94-4AAA-A407-3010D099B11A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89cc5a31-b592-4bb3-82f5-bd8aca3e0bf0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89CC5A31-B592-4BB3-82F5-BD8ACA3E0BF0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9103c314-c4e2-4463-8934-b19bcb46236d}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97cef41c-5055-474a-855a-892d4fe3e596}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d09094b3-b426-4f16-a6d9-e211fe222127}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d09094b3-b426-4f16-a6d9-e211fe222127}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d375ee64-f893-498a-a0e9-0e9829c88c3d}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0e8a6cb6-3b14-491d-8bba-86a95a62ff72}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D7E63AF-274B-426B-B51D-ADF161DF7F24}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2FF49ED5-A3EF-410B-918E-97DECEB5996D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7895609d-c8b4-4cf5-a2c7-28223d0c3d92}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8be781d8-5e70-423d-82de-9e4756fce53c}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a86782d8-7b41-452f-a217-1854f72dba54}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0328b630-ea94-4fa3-9f27-8250b6324ddb}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2d9083ce-8758-4704-ba57-3c891d7452bd}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{42CB7963-EFE0-4737-A927-CE076FAA3BA0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4B8E39FD-ED07-4A41-9681-3D78DAFCEE66}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4e7f49ed-8c94-4aaa-a407-3010d099b11a}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E7F49ED-8C94-4AAA-A407-3010D099B11A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9103c314-c4e2-4463-8934-b19bcb46236d}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9989BC14-9B5B-4B3B-8040-478FD1685E34}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B8445FED-900C-4137-AD15-DDD2F6306B62}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BB27DF2F-6F05-4A42-9FFD-14696D795750}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C00F4B2B-A33C-40FC-8E47-4D18DCD4B01E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Found : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E5C2FB287A9731A45B805D6EA4B541E1
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Key Found : HKU\.DEFAULT\Software\IBUpdaterService
***** [ Web browsers ] *****
-\\ Internet Explorer v9.0.8112.16496
-\\ Mozilla Firefox v23.0.1 (en-US)
[jd3r6gen.default] - Line Found : user_pref("extensions.crossrider.bic", "139892c32f553c9b1a58d0cad9cf59e9");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.admin", false);
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.aflt", "babsst");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.autoRvrt", "false");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.bbDpng", "11");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.cntry", "US");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.dfltLng", "en");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.excTlbr", false);
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.ffxUnstlRst", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.hdrMd5", "7886F79E2E234C66613C50CD53DBADAA");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.id", "ca8863d9000000000000c417fe843cae");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.instlDay", "15832");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.instlRef", "sst");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.lastVrsnTs", "1.8.16.1620:05:27");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.newTab", false);
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.prdct", "delta");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.prtnrId", "delta");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.rvrt", "false");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.sg", "tzb");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.smplGrp", "none");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.tlbrId", "base");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.tlbrSrchUrl", "");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.vrsn", "1.8.16.16");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.vrsnTs", "1.8.16.1620:05:27");
[jd3r6gen.default] - Line Found : user_pref("extensions.delta.vrsni", "1.8.16.16");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.hp.enabled", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.hp.lastGuardTime", 1254530646);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.hp.numGuards", 1);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.initialized", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.installation.contextKey", "");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.installation.installDate", "2013012920");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.installation.partnerId", "^XP^xdm177^YY^us");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.installation.partnerSubId", "");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.installation.success", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.installation.toolbarId", "D48EF56C-26E3-49F3-9043-E80A3EE0E188");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.lastActivePing", "1362763369083");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.options.defaultSearch", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.options.homePageEnabled", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.options.keywordEnabled", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.options.tabEnabled", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark._64Members_.weather.location", "90001");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark.hp.enabled", true);
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "[email protected]");
[jd3r6gen.default] - Line Found : user_pref("extensions.toolbar.mindspark.lastInstalled", "[email protected]");
[jd3r6gen.default] - Line Found : user_pref("extentions.y2layers.defaultEnableAppsList", "twittube,buzzdock,YontooNewOffers");
[jd3r6gen.default] - Line Found : user_pref("extentions.y2layers.installId", "70c0becc-4885-4687-a638-7852c52eb79a");
[jd3r6gen.default] - Line Found : user_pref("extentions.y2layers.installId_backup", "ADD04009-A4F9-6CB3-C67E-BF9DE22AA792");
-\\ Google Chrome v
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&hl=en&SelfSearch=1&SearchSource=49&ctid=CT2504091
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://start.facemoods.com/?a=bf3&s={searchTerms}&f=4
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://isearch.fantastigames.com/web?src=crb&gct=ds&appid=102&systemid=463&q={searchTerms}
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Found [Extension] : bejnhdlplbjhffionohbdnpcbobfejcc
*************************
AdwCleaner[R0].txt - [28306 bytes] - [14/05/2015 09:48:07]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [28366 bytes] ##########
#36
Posted 14 May 2015 - 04:30 PM
pystryker
-
- Malware Removal
-
- 3,912 posts
Trusted Helper
Hello
I see the file was successfully replaced and AdwCleaner ran with no issues. Let's continue.
Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.
Step 1: Junkware Removal Tool
Please download Junkware Removal Tool to your desktop.
Please post each of these logs as a separate reply in this thread.
Junkware Removal Tool Log
AdwCleaner Log
I see the file was successfully replaced and AdwCleaner ran with no issues. Let's continue.
Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.
Step 1: Junkware Removal Tool
Please download Junkware Removal Tool to your desktop.- Shut down your protection software now to avoid potential conflicts.
- Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
- The tool will open and start scanning your system.
- Please be patient as this can take a while to complete depending on your system's specifications.
- On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
- Post the contents of JRT.txt into your next message.
- Double click (Vista and 7 Users)right click the adwcleaner.exe file and click Run as Adminstrator and accept the UAC prompt to run AdwCleaner
- Close any open windows or browsers.
- Once it starts, click on the Scan button.
- Let the scan complete itself. This may take a few minutes.
- Once the scan has finished, it will say "Pending, uncheck elements you don't want to remove.", don't worry about unchecking anything and then click the Cleaning button. When finished, it will ask to reboot. Please reboot.
- When the machine has rebooted, a log will be produced. Please copy/paste that in your next reply. Here's how:
This report is also saved at C:\AdwCleaner[R0].txt
Please post each of these logs as a separate reply in this thread.
Junkware Removal Tool Log
AdwCleaner Log
#37
Posted 14 May 2015 - 04:50 PM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
I uninstalled norton and installed microsoft security essentials from your site but am having trouble disabling it..
#38
Posted 14 May 2015 - 04:54 PM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
when I click on it it says app was unable to start correctly (0xc000007b)
#39
Posted 14 May 2015 - 08:01 PM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.1 (05.14.2015:1)
OS: Windows 7 Home Premium x64
Ran by Owner on Thu 05/14/2015 at 18:30:46.69
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\VideoDownloadConverter_4z.SkinLauncherSettings
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\VideoDownloadConverter_4z.SkinLauncherSettings.1
~~~ Files
Successfully deleted: [File] C:\Windows\system32\roboot64.exe
Successfully deleted: [File] C:\Users\Owner\desktop\play games.lnk
~~~ Folders
Successfully deleted: [Folder] C:\Program Files (x86)\savevalet
Successfully deleted: [Folder] C:\Program Files (x86)\w3i
Successfully deleted: [Folder] C:\ProgramData\apn
Successfully deleted: [Folder] C:\ProgramData\babylon
Successfully deleted: [Folder] C:\ProgramData\fantastigames
Successfully deleted: [Folder] C:\ProgramData\tarma installer
Successfully deleted: [Folder] C:\ProgramData\w3i
Successfully deleted: [Folder] C:\ProgramData\wincert
Successfully deleted: [Folder] C:\Users\Owner\appdata\local\iac
Successfully deleted: [Folder] C:\Users\Owner\appdata\local\televisionfanatic
Successfully deleted: [Folder] C:\Users\Owner\appdata\locallow\datamngr
Successfully deleted: [Folder] C:\Users\Owner\appdata\locallow\delta
Successfully deleted: [Folder] C:\Users\Owner\appdata\locallow\iac
Successfully deleted: [Folder] C:\Users\Owner\appdata\locallow\televisionfanatic
Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\babylon
Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\delta
Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\file scout
Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\microsoft\windows\start menu\programs\free ride games
Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\performersoft
Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\startnow toolbar
Successfully deleted: [Folder] C:\Windows\syswow64\ai_recyclebin
~~~ FireFox
Failed to delete: [File] C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml.old
Successfully deleted: [File] C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml.old
Successfully deleted: [File] C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\jd3r6gen.default\user.js
Successfully deleted: [File] C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\jd3r6gen.default\bprotector_extensions.sqlite
Successfully deleted: [File] C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\jd3r6gen.default\bprotector_prefs.js
Successfully deleted: [File] C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\jd3r6gen.default\searchplugins\bing-zugo.xml
Failed to delete: [Folder] C:\Program Files (x86)\Mozilla Firefox\extensions\{1fd91a9c-410c-4090-bbcc-55d3450ef433}
Failed to delete: [Folder] C:\Program Files (x86)\Mozilla Firefox\extensions\{1fd91a9c-410c-4090-bbcc-55d3450ef433}
Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\jd3r6gen.default\extensions\{a131ab52-77f3-4bd7-acc7-e2dfdfd298f0}
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{a131ab52-77f3-4bd7-acc7-e2dfdfd298f0}
Successfully deleted the following from C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\jd3r6gen.default\prefs.js
user_pref(browser.search..defaultengine, Yahoo-Mp3Tube);
user_pref(browser.search..defaultenginename, Yahoo-Mp3Tube);
user_pref(browser.search..order.1, Yahoo-Mp3Tube);
user_pref(browser.search..selectedEngine, Yahoo-Mp3Tube);
user_pref(extensions.crossrider.bic, 139892c32f553c9b1a58d0cad9cf59e9);
user_pref(extensions.delta.admin, false);
user_pref(extensions.delta.aflt, babsst);
user_pref(extensions.delta.appId, {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3});
user_pref(extensions.delta.autoRvrt, false);
user_pref(extensions.delta.bbDpng, 11);
user_pref(extensions.delta.cntry, US);
user_pref(extensions.delta.dfltLng, en);
user_pref(extensions.delta.excTlbr, false);
user_pref(extensions.delta.ffxUnstlRst, true);
user_pref(extensions.delta.hdrMd5, 7886F79E2E234C66613C50CD53DBADAA);
user_pref(extensions.delta.id, ca8863d9000000000000c417fe843cae);
user_pref(extensions.delta.instlDay, 15832);
user_pref(extensions.delta.instlRef, sst);
user_pref(extensions.delta.lastVrsnTs, 1.8.16.1620:05:27);
user_pref(extensions.delta.newTab, false);
user_pref(extensions.delta.prdct, delta);
user_pref(extensions.delta.prtnrId, delta);
user_pref(extensions.delta.rvrt, false);
user_pref(extensions.delta.sg, tzb);
user_pref(extensions.delta.smplGrp, none);
user_pref(extensions.delta.tlbrId, base);
user_pref(extensions.delta.tlbrSrchUrl, );
user_pref(extensions.delta.vrsn, 1.8.16.16);
user_pref(extensions.delta.vrsnTs, 1.8.16.1620:05:27);
user_pref(extensions.delta.vrsni, 1.8.16.16);
user_pref(extensions.toolbar.mindspark._64Members_.hp.enabled, true);
user_pref(extensions.toolbar.mindspark._64Members_.hp.lastGuardTime, 1254530646);
user_pref(extensions.toolbar.mindspark._64Members_.hp.numGuards, 1);
user_pref(extensions.toolbar.mindspark._64Members_.initialized, true);
user_pref(extensions.toolbar.mindspark._64Members_.installation.contextKey, );
user_pref(extensions.toolbar.mindspark._64Members_.installation.installDate, 2013012920);
user_pref(extensions.toolbar.mindspark._64Members_.installation.partnerId, ^XP^xdm177^YY^us);
user_pref(extensions.toolbar.mindspark._64Members_.installation.partnerSubId, );
user_pref(extensions.toolbar.mindspark._64Members_.installation.success, true);
user_pref(extensions.toolbar.mindspark._64Members_.installation.toolbarId, D48EF56C-26E3-49F3-9043-E80A3EE0E188);
user_pref(extensions.toolbar.mindspark._64Members_.lastActivePing, 1362763369083);
user_pref(extensions.toolbar.mindspark._64Members_.options.defaultSearch, true);
user_pref(extensions.toolbar.mindspark._64Members_.options.homePageEnabled, true);
user_pref(extensions.toolbar.mindspark._64Members_.options.keywordEnabled, true);
user_pref(extensions.toolbar.mindspark._64Members_.options.tabEnabled, true);
user_pref(extensions.toolbar.mindspark._64Members_.weather.location, 90001);
user_pref(extensions.toolbar.mindspark.hp.enabled, true);
user_pref(extensions.toolbar.mindspark.hp.enabled.guid, [email protected]);
user_pref(extensions.toolbar.mindspark.lastInstalled, [email protected]);
user_pref(extentions.y2layers.defaultEnableAppsList, twittube,buzzdock,YontooNewOffers);
user_pref(extentions.y2layers.installId, 70c0becc-4885-4687-a638-7852c52eb79a);
user_pref(extentions.y2layers.installId_backup, ADD04009-A4F9-6CB3-C67E-BF9DE22AA792);
user_pref({5911488E-9D1E-40ec-8CBB-06B231CC153F}.update_url, hxxp://tbupdate.zugo.com/ztb/update?partner_id={partner_id}&product_id={product_id}&affiliate_id={affiliate_id}
Emptied folder: C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\jd3r6gen.default\minidumps [114 files]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 05/14/2015 at 18:36:19.53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
#40
Posted 14 May 2015 - 08:09 PM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
# AdwCleaner v4.203 - Logfile created 14/05/2015 at 19:26:57
# Updated 30/04/2015 by Xplode
# Database : 2015-05-12.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Owner - OWNER-PC
# Running from : C:\Users\Owner\Desktop\adwcleaner_4.203.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Helper
Folder Deleted : C:\Users\Owner\Documents\MSR
Folder Deleted : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\jd3r6gen.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
File Deleted : C:\Users\Owner\AppData\Roaming\BabMaint.exe
File Deleted : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\bprotector web data
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\d
Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore
Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Key Deleted : HKLM\SOFTWARE\Classes\delta.deltadskBnd
Key Deleted : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaHlpr
Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncher
Key Deleted : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncher.1
Key Deleted : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncherSettings
Key Deleted : HKLM\SOFTWARE\Classes\TelevisionFanatic.SkinLauncherSettings.1
Key Deleted : HKCU\Software\Classes\CLSID\{0696f815-a3a9-490a-bb14-9ec3350b1276}
Key Deleted : HKCU\Software\Classes\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}
Key Deleted : HKCU\Software\857d6d1b23fb848
Key Deleted : HKLM\SOFTWARE\857d6d1b23fb848
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02515cef-2063-4d64-b87a-d504c99d40dd}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{07494721-dfcf-41c1-8a03-b3fffb0f8409}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0e8a6cb6-3b14-491d-8bba-86a95a62ff72}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1D7E63AF-274B-426B-B51D-ADF161DF7F24}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{387dface-9e46-415f-8c86-18083b7d6ead}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{38deffd9-9379-4ac4-baa9-1a883dba9cd2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3d429207-4689-492d-a0e5-cdc5dfbb5005}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{52d3c28f-c9ac-40b5-848f-1fb63d2badef}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67d33c35-62e9-4f77-a284-9e9d256f7846}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6ffb45e3-cffc-4b3a-95eb-334cb53c85b0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7895609d-c8b4-4cf5-a2c7-28223d0c3d92}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7952f465-ac46-4a82-b383-870f3784d1cd}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7ad9c324-3672-4d33-8477-d9c8e627f4bf}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{84b7b98f-e018-4dbb-ab4c-4ddd3dfcb5fb}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8be781d8-5e70-423d-82de-9e4756fce53c}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{91a8da6b-8013-44aa-b63f-00195312999a}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{d09094b3-b426-4f16-a6d9-e211fe222127}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{fba7cbb1-fc93-4149-8862-d94451a7d167}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ff48dba6-5dd8-4d10-9eb0-0fa968502e66}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E7F49ED-8C94-4AAA-A407-3010D099B11A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B8445FED-900C-4137-AD15-DDD2F6306B62}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BB27DF2F-6F05-4A42-9FFD-14696D795750}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C00F4B2B-A33C-40FC-8E47-4D18DCD4B01E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9989BC14-9B5B-4B3B-8040-478FD1685E34}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{42CB7963-EFE0-4737-A927-CE076FAA3BA0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4B8E39FD-ED07-4A41-9681-3D78DAFCEE66}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0328b630-ea94-4fa3-9f27-8250b6324ddb}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2d9083ce-8758-4704-ba57-3c891d7452bd}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9103c314-c4e2-4463-8934-b19bcb46236d}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{192F487E-E812-40C0-B0DE-CB4BFA20F37B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{79332472-47f3-4e32-b07f-cf8df4c58499}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2FF49ED5-A3EF-410B-918E-97DECEB5996D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0e8a6cb6-3b14-491d-8bba-86a95a62ff72}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D7E63AF-274B-426B-B51D-ADF161DF7F24}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7895609d-c8b4-4cf5-a2c7-28223d0c3d92}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8be781d8-5e70-423d-82de-9e4756fce53c}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89CC5A31-B592-4BB3-82F5-BD8ACA3E0BF0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22714877-95E3-480E-A313-4EC440965E4F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E7F49ED-8C94-4AAA-A407-3010D099B11A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3d429207-4689-492d-a0e5-cdc5dfbb5005}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d09094b3-b426-4f16-a6d9-e211fe222127}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0328b630-ea94-4fa3-9f27-8250b6324ddb}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2d9083ce-8758-4704-ba57-3c891d7452bd}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9103c314-c4e2-4463-8934-b19bcb46236d}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97cef41c-5055-474a-855a-892d4fe3e596}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d375ee64-f893-498a-a0e9-0e9829c88c3d}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E7F49ED-8C94-4AAA-A407-3010D099B11A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B8445FED-900C-4137-AD15-DDD2F6306B62}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BB27DF2F-6F05-4A42-9FFD-14696D795750}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C00F4B2B-A33C-40FC-8E47-4D18DCD4B01E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9989BC14-9B5B-4B3B-8040-478FD1685E34}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{42CB7963-EFE0-4737-A927-CE076FAA3BA0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4B8E39FD-ED07-4A41-9681-3D78DAFCEE66}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0328b630-ea94-4fa3-9f27-8250b6324ddb}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2d9083ce-8758-4704-ba57-3c891d7452bd}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9103c314-c4e2-4463-8934-b19bcb46236d}
Key Deleted : HKCU\Software\BABSOLUTION
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\delta LTD
Key Deleted : HKCU\Software\Delta
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\ICQ\ICQToolbar
Key Deleted : HKCU\Software\NetNucleous
Key Deleted : HKCU\Software\SocialBit
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\NetNucleous
Key Deleted : HKLM\SOFTWARE\Babylon
Key Deleted : HKLM\SOFTWARE\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Delta
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\InstallIQ
Key Deleted : HKU\.DEFAULT\Software\IBUpdaterService
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\E5C2FB287A9731A45B805D6EA4B541E1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\E5C2FB287A9731A45B805D6EA4B541E1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E5C2FB287A9731A45B805D6EA4B541E1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\yourtango.com
***** [ Web browsers ] *****
-\\ Internet Explorer v9.0.8112.16496
-\\ Mozilla Firefox v23.0.1 (en-US)
-\\ Google Chrome v
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&hl=en&SelfSearch=1&SearchSource=49&ctid=CT2504091
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://start.facemoods.com/?a=bf3&s={searchTerms}&f=4
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.fantastigames.com/web?src=crb&gct=ds&appid=102&systemid=463&q={searchTerms}
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
*************************
AdwCleaner[R0].txt - [28694 bytes] - [14/05/2015 09:48:07]
AdwCleaner[R1].txt - [21719 bytes] - [14/05/2015 19:24:56]
AdwCleaner[S0].txt - [20067 bytes] - [14/05/2015 19:26:57]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [20127 bytes] ##########
#41
Posted 14 May 2015 - 10:38 PM
pystryker
-
- Malware Removal
-
- 3,912 posts
Trusted Helper
I uninstalled norton and installed microsoft security essentials from your site but am having trouble disabling it..
Hi
Here's a link with instructions on how to disable it temporarily.http://www.pcworld.c...essentials.html
when I click on it it says app was unable to start correctly (0xc000007b)
When this error occurs, do you try restarting the application and it works a second time?
I'd like to run a scan for rootkits on your machine, just to make sure, before we scan for orphans and remnants.
Please disable MSE via the instructions at the link above and then follow the step below to download and run TDSSKiller.
Please download TDSSKiller to the desktop.
Alternate download is here.
- Right-click on TDSSKiller.exe and select Run as Administrator to start the program and follow the prompts.
- When the main GUI(graphical user interface) window opens, click on Change Parameters
- Under Additional options, select both Verify driver digital signatures & Detect TDLFS File System >> OK
- Click on Start Scan, the scan will run.
- When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
- A Report will have been created by TDSSKiller in your root directory C:\
- To find the log go to Start(Windows 7 Orb) > Computer > C: >> TDSSKiller.V.V.V.VV_DD.DD.YYYY_TT.TT.TT_log <-- The letters denote the version and date & time etc.
- Post the contents of that log in your next reply please.
Things I need to see in your next post
TDSSKiller Log
#42
Posted 14 May 2015 - 11:11 PM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
well, I followed the link but that icon is not in my system tray.. I uninstalled it to do the first steps but re-installed it after.. Should i uninstall it again?
#43
Posted 15 May 2015 - 05:35 AM
pystryker
-
- Malware Removal
-
- 3,912 posts
Trusted Helper
well, I followed the link but that icon is not in my system tray.. I uninstalled it to do the first steps but re-installed it after.. Should i uninstall it again?
No, proceed with the TDSSKiller step.
#44
Posted 15 May 2015 - 08:41 AM
uFinditEazy!
- Topic Starter
-
- Member
-
- 82 posts
Member
07:57:00.0833 0x10a0 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
07:57:07.0158 0x10a0 ============================================================
07:57:07.0158 0x10a0 Current date / time: 2015/05/15 07:57:07.0158
07:57:07.0158 0x10a0 SystemInfo:
07:57:07.0158 0x10a0
07:57:07.0158 0x10a0 OS Version: 6.1.7601 ServicePack: 1.0
07:57:07.0158 0x10a0 Product type: Workstation
07:57:07.0159 0x10a0 ComputerName: OWNER-PC
07:57:07.0159 0x10a0 UserName: Owner
07:57:07.0159 0x10a0 Windows directory: C:\Windows
07:57:07.0159 0x10a0 System windows directory: C:\Windows
07:57:07.0159 0x10a0 Running under WOW64
07:57:07.0159 0x10a0 Processor architecture: Intel x64
07:57:07.0159 0x10a0 Number of processors: 2
07:57:07.0159 0x10a0 Page size: 0x1000
07:57:07.0159 0x10a0 Boot type: Normal boot
07:57:07.0159 0x10a0 ============================================================
07:57:07.0485 0x10a0 KLMD registered as C:\Windows\system32\drivers\28325093.sys
07:57:07.0971 0x10a0 System UUID: {61053579-1873-B736-544E-410074462C05}
07:57:09.0111 0x10a0 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:57:09.0125 0x10a0 ============================================================
07:57:09.0125 0x10a0 \Device\Harddisk0\DR0:
07:57:09.0125 0x10a0 MBR partitions:
07:57:09.0125 0x10a0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
07:57:09.0125 0x10a0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x253FB800
07:57:09.0125 0x10a0 ============================================================
07:57:09.0212 0x10a0 C: <-> \Device\Harddisk0\DR0\Partition2
07:57:09.0365 0x10a0 ============================================================
07:57:09.0365 0x10a0 Initialize success
07:57:09.0365 0x10a0 ============================================================
07:58:27.0603 0x0158 ============================================================
07:58:27.0604 0x0158 Scan started
07:58:27.0604 0x0158 Mode: Manual; SigCheck; TDLFS;
07:58:27.0604 0x0158 ============================================================
07:58:27.0604 0x0158 KSN ping started
07:58:30.0373 0x0158 KSN ping finished: true
07:58:30.0874 0x0158 ================ Scan system memory ========================
07:58:30.0874 0x0158 System memory - ok
07:58:30.0875 0x0158 ================ Scan services =============================
07:58:31.0067 0x0158 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
07:58:31.0269 0x0158 1394ohci - ok
07:58:31.0357 0x0158 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
07:58:31.0396 0x0158 ACPI - ok
07:58:31.0434 0x0158 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
07:58:31.0579 0x0158 AcpiPmi - ok
07:58:31.0687 0x0158 [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
07:58:31.0714 0x0158 AdobeARMservice - ok
07:58:31.0753 0x0158 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
07:58:31.0795 0x0158 adp94xx - ok
07:58:31.0826 0x0158 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
07:58:31.0852 0x0158 adpahci - ok
07:58:31.0882 0x0158 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
07:58:31.0919 0x0158 adpu320 - ok
07:58:31.0961 0x0158 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
07:58:32.0018 0x0158 AeLookupSvc - ok
07:58:32.0059 0x0158 [ 1C7857B62DE5994A75B054A9FD4C3825, 83F963D7E636532B1AD30B1E727EC429317CA540F6EB3BB268FCC0B163B67767 ] AFD C:\Windows\system32\drivers\afd.sys
07:58:32.0162 0x0158 AFD - ok
07:58:32.0215 0x0158 [ 8492D198CA7B91202816A23F7230D11B, 439CB84B41A4087FD52BD206051412485F590684C71CA3A373FFEB2616060FAE ] Agent C:\Windows\VPDAgent_x64.exe
07:58:32.0319 0x0158 Agent - detected UnsignedFile.Multi.Generic ( 1 )
07:58:35.0319 0x0158 Detect skipped due to KSN trusted
07:58:35.0319 0x0158 Agent - ok
07:58:35.0464 0x0158 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
07:58:35.0491 0x0158 agp440 - ok
07:58:35.0571 0x0158 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
07:58:35.0871 0x0158 ALG - ok
07:58:35.0912 0x0158 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
07:58:35.0927 0x0158 aliide - ok
07:58:35.0937 0x0158 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
07:58:35.0953 0x0158 amdide - ok
07:58:35.0981 0x0158 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
07:58:36.0079 0x0158 AmdK8 - ok
07:58:36.0098 0x0158 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
07:58:36.0151 0x0158 AmdPPM - ok
07:58:36.0190 0x0158 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
07:58:36.0209 0x0158 amdsata - ok
07:58:36.0230 0x0158 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
07:58:36.0251 0x0158 amdsbs - ok
07:58:36.0265 0x0158 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
07:58:36.0281 0x0158 amdxata - ok
07:58:36.0315 0x0158 [ 4DE0D5D747A73797C95A97DCCE5018B5, 17EC669675C2E43515EFE2D8BCC9DDFFBE64F99EBFB9A6DAB429F65A2B504560 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
07:58:36.0452 0x0158 androidusb - ok
07:58:36.0478 0x0158 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
07:58:36.0576 0x0158 AppID - ok
07:58:36.0599 0x0158 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
07:58:36.0701 0x0158 AppIDSvc - ok
07:58:36.0733 0x0158 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
07:58:36.0828 0x0158 Appinfo - ok
07:58:36.0904 0x0158 [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:58:36.0928 0x0158 Apple Mobile Device - ok
07:58:36.0986 0x0158 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
07:58:37.0004 0x0158 arc - ok
07:58:37.0023 0x0158 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
07:58:37.0040 0x0158 arcsas - ok
07:58:37.0074 0x0158 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
07:58:37.0171 0x0158 AsyncMac - ok
07:58:37.0206 0x0158 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
07:58:37.0224 0x0158 atapi - ok
07:58:37.0263 0x0158 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:58:37.0399 0x0158 AudioEndpointBuilder - ok
07:58:37.0425 0x0158 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
07:58:37.0483 0x0158 AudioSrv - ok
07:58:37.0521 0x0158 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
07:58:37.0652 0x0158 AxInstSV - ok
07:58:37.0697 0x0158 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
07:58:37.0869 0x0158 b06bdrv - ok
07:58:37.0895 0x0158 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
07:58:37.0979 0x0158 b57nd60a - ok
07:58:38.0141 0x0158 [ FB4FDA64F2E8552EAEB5986C3F34462C, EFC81E1227339FC721B926633BE15B5476A161452D6D054455F4B1FE87D9B891 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
07:58:38.0259 0x0158 BCM43XX - ok
07:58:38.0296 0x0158 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
07:58:38.0358 0x0158 BDESVC - ok
07:58:38.0395 0x0158 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
07:58:38.0506 0x0158 Beep - ok
07:58:38.0554 0x0158 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
07:58:38.0653 0x0158 BFE - ok
07:58:38.0715 0x0158 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
07:58:38.0842 0x0158 BITS - ok
07:58:38.0899 0x0158 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
07:58:38.0929 0x0158 blbdrive - ok
07:58:39.0018 0x0158 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:58:39.0052 0x0158 Bonjour Service - ok
07:58:39.0087 0x0158 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
07:58:39.0150 0x0158 bowser - ok
07:58:39.0167 0x0158 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:58:39.0291 0x0158 BrFiltLo - ok
07:58:39.0312 0x0158 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:58:39.0378 0x0158 BrFiltUp - ok
07:58:39.0423 0x0158 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
07:58:39.0497 0x0158 BridgeMP - ok
07:58:39.0526 0x0158 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
07:58:39.0628 0x0158 Browser - ok
07:58:39.0661 0x0158 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
07:58:39.0755 0x0158 Brserid - ok
07:58:39.0771 0x0158 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
07:58:39.0814 0x0158 BrSerWdm - ok
07:58:39.0833 0x0158 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
07:58:39.0870 0x0158 BrUsbMdm - ok
07:58:39.0889 0x0158 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
07:58:39.0954 0x0158 BrUsbSer - ok
07:58:39.0976 0x0158 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
07:58:40.0083 0x0158 BTHMODEM - ok
07:58:40.0122 0x0158 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
07:58:40.0218 0x0158 bthserv - ok
07:58:40.0270 0x0158 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
07:58:40.0341 0x0158 cdfs - ok
07:58:40.0371 0x0158 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
07:58:40.0434 0x0158 cdrom - ok
07:58:40.0462 0x0158 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
07:58:40.0531 0x0158 CertPropSvc - ok
07:58:40.0550 0x0158 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
07:58:40.0582 0x0158 circlass - ok
07:58:40.0643 0x0158 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
07:58:40.0677 0x0158 CLFS - ok
07:58:40.0746 0x0158 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:58:40.0771 0x0158 clr_optimization_v2.0.50727_32 - ok
07:58:40.0823 0x0158 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:58:40.0839 0x0158 clr_optimization_v2.0.50727_64 - ok
07:58:40.0885 0x0158 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:58:40.0959 0x0158 clr_optimization_v4.0.30319_32 - ok
07:58:40.0986 0x0158 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:58:41.0013 0x0158 clr_optimization_v4.0.30319_64 - ok
07:58:41.0047 0x0158 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
07:58:41.0093 0x0158 CmBatt - ok
07:58:41.0115 0x0158 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
07:58:41.0130 0x0158 cmdide - ok
07:58:41.0176 0x0158 [ 9AC4F97C2D3E93367E2148EA940CD2CD, 530E089E5CF868AECDB2B5548EBE76E0CA98FC74A72897292AB2485734402E3B ] CNG C:\Windows\system32\Drivers\cng.sys
07:58:41.0227 0x0158 CNG - ok
07:58:41.0243 0x0158 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
07:58:41.0258 0x0158 Compbatt - ok
07:58:41.0283 0x0158 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
07:58:41.0394 0x0158 CompositeBus - ok
07:58:41.0402 0x0158 COMSysApp - ok
07:58:41.0426 0x0158 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
07:58:41.0441 0x0158 crcdisk - ok
07:58:41.0475 0x0158 [ D8129C49798CBBFB2E4351D4B7B8EF9C, 7C125DBA3F88E7C6D98AE0869EDB7995360904A913923528ABD0429B2608C313 ] CryptSvc C:\Windows\system32\cryptsvc.dll
07:58:41.0536 0x0158 CryptSvc - ok
07:58:41.0578 0x0158 [ 916F311A84B4D528694FD4D44B5EAB1B, F84B186626BA3F35BACB33071214ED24119A44B3A5199C8A6EF845CE835A9832 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
07:58:41.0711 0x0158 CtClsFlt - ok
07:58:41.0754 0x0158 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
07:58:41.0872 0x0158 DcomLaunch - ok
07:58:41.0912 0x0158 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
07:58:42.0000 0x0158 defragsvc - ok
07:58:42.0049 0x0158 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
07:58:42.0121 0x0158 DfsC - ok
07:58:42.0147 0x0158 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
07:58:42.0236 0x0158 Dhcp - ok
07:58:42.0318 0x0158 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
07:58:42.0383 0x0158 discache - ok
07:58:42.0416 0x0158 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
07:58:42.0432 0x0158 Disk - ok
07:58:42.0460 0x0158 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:58:42.0522 0x0158 Dnscache - ok
07:58:42.0550 0x0158 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
07:58:42.0631 0x0158 dot3svc - ok
07:58:42.0687 0x0158 [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
07:58:42.0771 0x0158 Dot4 - ok
07:58:42.0794 0x0158 [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
07:58:42.0833 0x0158 Dot4Print - ok
07:58:42.0857 0x0158 [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
07:58:42.0901 0x0158 dot4usb - ok
07:58:42.0934 0x0158 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
07:58:42.0992 0x0158 DPS - ok
07:58:43.0039 0x0158 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:58:43.0097 0x0158 drmkaud - ok
07:58:43.0159 0x0158 [ AF2E16242AA723F68F461B6EAE2EAD3D, 3973633C6D231DB8D92DE310D3A0836C64639B9A20C6C56385FB218A707C1BC3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
07:58:43.0212 0x0158 DXGKrnl - ok
07:58:43.0282 0x0158 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
07:58:43.0405 0x0158 EapHost - ok
07:58:43.0523 0x0158 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
07:58:43.0745 0x0158 ebdrv - ok
07:58:43.0780 0x0158 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS C:\Windows\System32\lsass.exe
07:58:43.0874 0x0158 EFS - ok
07:58:43.0935 0x0158 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
07:58:44.0108 0x0158 ehRecvr - ok
07:58:44.0138 0x0158 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
07:58:44.0227 0x0158 ehSched - ok
07:58:44.0271 0x0158 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
07:58:44.0310 0x0158 elxstor - ok
07:58:44.0337 0x0158 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
07:58:44.0371 0x0158 ErrDev - ok
07:58:44.0430 0x0158 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
07:58:44.0498 0x0158 EventSystem - ok
07:58:44.0518 0x0158 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
07:58:44.0583 0x0158 exfat - ok
07:58:44.0625 0x0158 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
07:58:44.0706 0x0158 fastfat - ok
07:58:44.0750 0x0158 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
07:58:44.0911 0x0158 Fax - ok
07:58:44.0933 0x0158 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
07:58:44.0973 0x0158 fdc - ok
07:58:45.0001 0x0158 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
07:58:45.0105 0x0158 fdPHost - ok
07:58:45.0125 0x0158 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
07:58:45.0181 0x0158 FDResPub - ok
07:58:45.0224 0x0158 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
07:58:45.0241 0x0158 FileInfo - ok
07:58:45.0255 0x0158 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
07:58:45.0333 0x0158 Filetrace - ok
07:58:45.0347 0x0158 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
07:58:45.0374 0x0158 flpydisk - ok
07:58:45.0410 0x0158 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:58:45.0433 0x0158 FltMgr - ok
07:58:45.0491 0x0158 [ 6CD6BB45BD3E0EEF6CE496BF52854FF1, 939630A1EEAB79DD5AA3D9272B9EDC0550BC06D40C9B398815FCFF4AC12A7F2C ] FlyUsb C:\Windows\system32\DRIVERS\FlyUsb.sys
07:58:45.0591 0x0158 FlyUsb - ok
07:58:45.0652 0x0158 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
07:58:45.0798 0x0158 FontCache - ok
07:58:45.0858 0x0158 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:58:45.0881 0x0158 FontCache3.0.0.0 - ok
07:58:45.0916 0x0158 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
07:58:45.0940 0x0158 FsDepends - ok
07:58:45.0978 0x0158 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:58:46.0051 0x0158 Fs_Rec - ok
07:58:46.0092 0x0158 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
07:58:46.0116 0x0158 fvevol - ok
07:58:46.0132 0x0158 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
07:58:46.0148 0x0158 gagp30kx - ok
07:58:46.0176 0x0158 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:58:46.0188 0x0158 GEARAspiWDM - ok
07:58:46.0239 0x0158 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
07:58:46.0379 0x0158 gpsvc - ok
07:58:46.0455 0x0158 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:58:46.0477 0x0158 gupdate - ok
07:58:46.0494 0x0158 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:58:46.0507 0x0158 gupdatem - ok
07:58:46.0533 0x0158 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
07:58:46.0650 0x0158 gusvc - ok
07:58:46.0683 0x0158 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
07:58:46.0752 0x0158 hcw85cir - ok
07:58:46.0806 0x0158 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:58:46.0870 0x0158 HdAudAddService - ok
07:58:46.0890 0x0158 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
07:58:46.0971 0x0158 HDAudBus - ok
07:58:46.0989 0x0158 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
07:58:47.0074 0x0158 HidBatt - ok
07:58:47.0090 0x0158 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
07:58:47.0148 0x0158 HidBth - ok
07:58:47.0175 0x0158 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
07:58:47.0210 0x0158 HidIr - ok
07:58:47.0243 0x0158 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
07:58:47.0317 0x0158 hidserv - ok
07:58:47.0357 0x0158 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
07:58:47.0386 0x0158 HidUsb - ok
07:58:47.0413 0x0158 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
07:58:47.0516 0x0158 hkmsvc - ok
07:58:47.0544 0x0158 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:58:47.0684 0x0158 HomeGroupListener - ok
07:58:47.0714 0x0158 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:58:47.0775 0x0158 HomeGroupProvider - ok
07:58:47.0808 0x0158 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
07:58:47.0824 0x0158 HpSAMD - ok
07:58:47.0871 0x0158 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
07:58:48.0005 0x0158 HTTP - ok
07:58:48.0052 0x0158 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
07:58:48.0066 0x0158 hwpolicy - ok
07:58:48.0095 0x0158 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
07:58:48.0126 0x0158 i8042prt - ok
07:58:48.0171 0x0158 [ 4F6FB2CDBDEEFC47E7D2066E78254580, F2B722FBF9C8216CCA42A6910D72FE5532B2B99BAA1815C24D852873F778072A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
07:58:48.0198 0x0158 iaStor - ok
07:58:48.0239 0x0158 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
07:58:48.0269 0x0158 iaStorV - ok
07:58:48.0338 0x0158 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:58:48.0386 0x0158 idsvc - ok
07:58:48.0780 0x0158 [ C6238C6ABD6AC99F5D152DA4E9439A3D, 6FC490B94CEF523C7C099AEA3D36AB75C9896B1D83D4467D237E698A8E0D9E7B ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
07:58:49.0413 0x0158 igfx - ok
07:58:49.0525 0x0158 [ 952624A78D6EE8BF1381E8F26C74D231, F811B8FF89C3485D62315C073854FE0ECF6F490C21D726444FDA15457943B726 ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
07:58:49.0667 0x0158 IHA_MessageCenter - detected UnsignedFile.Multi.Generic ( 1 )
07:58:52.0727 0x0158 IHA_MessageCenter ( UnsignedFile.Multi.Generic ) - warning
07:58:55.0631 0x0158 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
07:58:55.0657 0x0158 iirsp - ok
07:58:55.0708 0x0158 [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT C:\Windows\System32\ikeext.dll
07:58:55.0820 0x0158 IKEEXT - ok
07:58:55.0844 0x0158 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
07:58:55.0860 0x0158 intelide - ok
07:58:55.0888 0x0158 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
07:58:55.0925 0x0158 intelppm - ok
07:58:55.0951 0x0158 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
07:58:56.0022 0x0158 IPBusEnum - ok
07:58:56.0044 0x0158 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:58:56.0142 0x0158 IpFilterDriver - ok
07:58:56.0199 0x0158 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
07:58:56.0255 0x0158 iphlpsvc - ok
07:58:56.0292 0x0158 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
07:58:56.0334 0x0158 IPMIDRV - ok
07:58:56.0387 0x0158 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
07:58:56.0458 0x0158 IPNAT - ok
07:58:56.0520 0x0158 [ 0F261EC4F514926177C70C1832374231, 7E61B89FE2651C0C7951E10454267174550677DEAB1C497571A9B0B583687304 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
07:58:56.0559 0x0158 iPod Service - ok
07:58:56.0577 0x0158 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
07:58:56.0701 0x0158 IRENUM - ok
07:58:56.0722 0x0158 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:58:56.0737 0x0158 isapnp - ok
07:58:56.0771 0x0158 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
07:58:56.0793 0x0158 iScsiPrt - ok
07:58:56.0831 0x0158 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
07:58:56.0847 0x0158 kbdclass - ok
07:58:56.0872 0x0158 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
07:58:56.0911 0x0158 kbdhid - ok
07:58:56.0928 0x0158 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso C:\Windows\system32\lsass.exe
07:58:56.0947 0x0158 KeyIso - ok
07:58:56.0969 0x0158 [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
07:58:56.0986 0x0158 KSecDD - ok
07:58:57.0020 0x0158 [ 26C43A7C2862447EC59DEDA188D1DA07, 5363BF87E650FE2010ACA9417D6920FF4ED752256FF47732882E9B2BA1ED154B ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
07:58:57.0039 0x0158 KSecPkg - ok
07:58:57.0059 0x0158 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
07:58:57.0147 0x0158 ksthunk - ok
07:58:57.0188 0x0158 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
07:58:57.0303 0x0158 KtmRm - ok
07:58:57.0339 0x0158 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
07:58:57.0456 0x0158 LanmanServer - ok
07:58:57.0490 0x0158 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:58:57.0591 0x0158 LanmanWorkstation - ok
07:58:57.0906 0x0158 [ 32F1B95C60042F3D95FC8AB43559B3B1, 52652B1CE93C6B9DC12E56B5D4C44F45042901D89D21974BFE1D7116BFADEE74 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
07:58:58.0648 0x0158 LeapFrog Connect Device Service - ok
07:58:58.0704 0x0158 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
07:58:58.0802 0x0158 lltdio - ok
07:58:58.0836 0x0158 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
07:58:58.0979 0x0158 lltdsvc - ok
07:58:58.0997 0x0158 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
07:58:59.0078 0x0158 lmhosts - ok
07:58:59.0112 0x0158 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
07:58:59.0129 0x0158 LSI_FC - ok
07:58:59.0144 0x0158 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
07:58:59.0161 0x0158 LSI_SAS - ok
07:58:59.0178 0x0158 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:58:59.0196 0x0158 LSI_SAS2 - ok
07:58:59.0207 0x0158 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:58:59.0228 0x0158 LSI_SCSI - ok
07:58:59.0259 0x0158 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
07:58:59.0367 0x0158 luafv - ok
07:58:59.0412 0x0158 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
07:58:59.0436 0x0158 MBAMProtector - ok
07:58:59.0494 0x0158 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
07:58:59.0520 0x0158 MBAMScheduler - ok
07:58:59.0556 0x0158 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
07:58:59.0596 0x0158 MBAMService - ok
07:58:59.0632 0x0158 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
07:58:59.0680 0x0158 Mcx2Svc - ok
07:58:59.0702 0x0158 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
07:58:59.0720 0x0158 megasas - ok
07:58:59.0749 0x0158 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
07:58:59.0772 0x0158 MegaSR - ok
07:58:59.0800 0x0158 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
07:58:59.0854 0x0158 MMCSS - ok
07:58:59.0882 0x0158 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
07:58:59.0945 0x0158 Modem - ok
07:58:59.0992 0x0158 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
07:59:00.0031 0x0158 monitor - ok
07:59:00.0116 0x0158 [ 9DFD34E6841C460B5D992A1C5327AE69, 03543E18AAFB9D2DB08A1E2866C0963CED3561D4C33B35183807A895FFD9985D ] MotoHelper C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
07:59:00.0318 0x0158 MotoHelper - ok
07:59:00.0366 0x0158 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
07:59:00.0393 0x0158 mouclass - ok
07:59:00.0415 0x0158 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
07:59:00.0457 0x0158 mouhid - ok
07:59:00.0479 0x0158 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
07:59:00.0496 0x0158 mountmgr - ok
07:59:00.0567 0x0158 [ A35576A433F4AEB0D48976A004657CB6, F820A759119785C3FB10B0EDCF8EF9985886A9B0767ABD45B2ACAC03498B321E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
07:59:00.0594 0x0158 MozillaMaintenance - ok
07:59:00.0650 0x0158 [ 73150F67D20270FF95A021A22E64F28A, A8878DEFBE437FB453F8E9243FB5C787D07AC7415A4475388D479C10417C524F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
07:59:00.0676 0x0158 MpFilter - ok
07:59:00.0703 0x0158 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
07:59:00.0723 0x0158 mpio - ok
07:59:00.0750 0x0158 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
07:59:00.0820 0x0158 mpsdrv - ok
07:59:00.0870 0x0158 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
07:59:00.0958 0x0158 MpsSvc - ok
07:59:01.0013 0x0158 [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
07:59:01.0067 0x0158 MRxDAV - ok
07:59:01.0115 0x0158 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:59:01.0179 0x0158 mrxsmb - ok
07:59:01.0215 0x0158 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:59:01.0298 0x0158 mrxsmb10 - ok
07:59:01.0324 0x0158 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:59:01.0357 0x0158 mrxsmb20 - ok
07:59:01.0379 0x0158 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
07:59:01.0394 0x0158 msahci - ok
07:59:01.0418 0x0158 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
07:59:01.0436 0x0158 msdsm - ok
07:59:01.0465 0x0158 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
07:59:01.0529 0x0158 MSDTC - ok
07:59:01.0571 0x0158 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:59:01.0622 0x0158 Msfs - ok
07:59:01.0635 0x0158 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
07:59:01.0697 0x0158 mshidkmdf - ok
07:59:01.0728 0x0158 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
07:59:01.0743 0x0158 msisadrv - ok
07:59:01.0782 0x0158 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
07:59:01.0857 0x0158 MSiSCSI - ok
07:59:01.0863 0x0158 msiserver - ok
07:59:01.0881 0x0158 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:59:01.0945 0x0158 MSKSSRV - ok
07:59:02.0018 0x0158 [ CE996C1821021ADF8E28E80A54E846A8, 99042E895B6C2EA80F3BA65563A12C8EBA882E3AD6A21DD8E799B0112C75DDD2 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
07:59:02.0046 0x0158 MsMpSvc - ok
07:59:02.0059 0x0158 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:59:02.0121 0x0158 MSPCLOCK - ok
07:59:02.0155 0x0158 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:59:02.0221 0x0158 MSPQM - ok
07:59:02.0261 0x0158 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
07:59:02.0287 0x0158 MsRPC - ok
07:59:02.0319 0x0158 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
07:59:02.0334 0x0158 mssmbios - ok
07:59:02.0353 0x0158 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:59:02.0453 0x0158 MSTEE - ok
07:59:02.0467 0x0158 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
07:59:02.0533 0x0158 MTConfig - ok
07:59:02.0553 0x0158 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
07:59:02.0569 0x0158 Mup - ok
07:59:02.0600 0x0158 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
07:59:02.0699 0x0158 napagent - ok
07:59:02.0732 0x0158 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
07:59:02.0883 0x0158 NativeWifiP - ok
07:59:02.0940 0x0158 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
07:59:02.0993 0x0158 NDIS - ok
07:59:03.0017 0x0158 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
07:59:03.0068 0x0158 NdisCap - ok
07:59:03.0090 0x0158 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
07:59:03.0142 0x0158 NdisTapi - ok
07:59:03.0163 0x0158 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:59:03.0225 0x0158 Ndisuio - ok
07:59:03.0250 0x0158 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
07:59:03.0321 0x0158 NdisWan - ok
07:59:03.0342 0x0158 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:59:03.0394 0x0158 NDProxy - ok
07:59:03.0420 0x0158 [ 19FE9E8A58CE9CBD69CD832DF2B24AC4, ACF18AD5C23FAD7D0F39B9C680A0DC1DDFBB10F18A5CDF19AEA1963CCA78EEB7 ] Neat Startup Service C:\Program Files (x86)\Neat\exec\NeatStartupService.exe
07:59:03.0458 0x0158 Neat Startup Service - detected UnsignedFile.Multi.Generic ( 1 )
07:59:11.0357 0x0158 Detect skipped due to KSN trusted
07:59:11.0357 0x0158 Neat Startup Service - ok
07:59:11.0465 0x0158 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
07:59:11.0544 0x0158 NetBIOS - ok
07:59:11.0596 0x0158 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:59:11.0709 0x0158 NetBT - ok
07:59:11.0734 0x0158 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon C:\Windows\system32\lsass.exe
07:59:11.0752 0x0158 Netlogon - ok
07:59:11.0787 0x0158 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
07:59:11.0894 0x0158 Netman - ok
07:59:11.0913 0x0158 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
07:59:11.0978 0x0158 netprofm - ok
07:59:11.0999 0x0158 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:59:12.0014 0x0158 NetTcpPortSharing - ok
07:59:12.0033 0x0158 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
07:59:12.0048 0x0158 nfrd960 - ok
07:59:12.0099 0x0158 [ 4774AD83C650001B337B92E5E5DA337B, 138ECC7F556D8A12AE58B78B68F6515BE4C00F9F062596B48B6CA6C010F13035 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
07:59:12.0131 0x0158 NisDrv - ok
07:59:12.0170 0x0158 [ 96B7D15161A778B359E707796CCEA646, 9E4A25D9848FAECC517474EAD548E7975CBE3F41AAA964E5245E78F2A723925E ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
07:59:12.0198 0x0158 NisSrv - ok
07:59:12.0230 0x0158 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
07:59:12.0290 0x0158 NlaSvc - ok
07:59:12.0323 0x0158 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:59:12.0376 0x0158 Npfs - ok
07:59:12.0404 0x0158 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
07:59:12.0473 0x0158 nsi - ok
07:59:12.0490 0x0158 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
07:59:12.0552 0x0158 nsiproxy - ok
07:59:12.0642 0x0158 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:59:12.0715 0x0158 Ntfs - ok
07:59:12.0730 0x0158 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
07:59:12.0783 0x0158 Null - ok
07:59:12.0814 0x0158 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
07:59:12.0833 0x0158 nvraid - ok
07:59:12.0865 0x0158 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
07:59:12.0884 0x0158 nvstor - ok
07:59:12.0912 0x0158 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
07:59:12.0930 0x0158 nv_agp - ok
07:59:12.0957 0x0158 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
07:59:12.0987 0x0158 ohci1394 - ok
07:59:13.0030 0x0158 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:59:13.0056 0x0158 ose - ok
07:59:13.0273 0x0158 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:59:13.0473 0x0158 osppsvc - ok
07:59:13.0520 0x0158 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
07:59:13.0641 0x0158 p2pimsvc - ok
07:59:13.0669 0x0158 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
07:59:13.0718 0x0158 p2psvc - ok
07:59:13.0744 0x0158 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
07:59:13.0798 0x0158 Parport - ok
07:59:13.0842 0x0158 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
07:59:13.0869 0x0158 partmgr - ok
07:59:13.0893 0x0158 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
07:59:13.0957 0x0158 PcaSvc - ok
07:59:13.0981 0x0158 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
07:59:14.0001 0x0158 pci - ok
07:59:14.0020 0x0158 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
07:59:14.0035 0x0158 pciide - ok
07:59:14.0055 0x0158 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
07:59:14.0076 0x0158 pcmcia - ok
07:59:14.0097 0x0158 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
07:59:14.0113 0x0158 pcw - ok
07:59:14.0145 0x0158 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
07:59:14.0229 0x0158 PEAUTH - ok
07:59:14.0304 0x0158 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
07:59:14.0368 0x0158 PerfHost - ok
07:59:14.0441 0x0158 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
07:59:14.0576 0x0158 pla - ok
07:59:14.0610 0x0158 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
07:59:14.0696 0x0158 PlugPlay - ok
07:59:14.0712 0x0158 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
07:59:14.0745 0x0158 PNRPAutoReg - ok
07:59:14.0769 0x0158 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
07:59:14.0795 0x0158 PNRPsvc - ok
07:59:14.0840 0x0158 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
07:59:14.0963 0x0158 PolicyAgent - ok
07:59:14.0990 0x0158 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
07:59:15.0072 0x0158 Power - ok
07:59:15.0117 0x0158 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
07:59:15.0181 0x0158 PptpMiniport - ok
07:59:15.0202 0x0158 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
07:59:15.0251 0x0158 Processor - ok
07:59:15.0282 0x0158 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
07:59:15.0372 0x0158 ProfSvc - ok
07:59:15.0383 0x0158 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
07:59:15.0400 0x0158 ProtectedStorage - ok
07:59:15.0420 0x0158 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
07:59:15.0497 0x0158 Psched - ok
07:59:15.0534 0x0158 [ AED797CCA02783296C68AA10D0CFF8A9, DAD0ECDA3DE4F8A95B6DB8E447E484CD13A14133D39D766E7D0FB166E29216E8 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
07:59:15.0548 0x0158 PxHlpa64 - ok
07:59:15.0618 0x0158 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
07:59:15.0691 0x0158 ql2300 - ok
07:59:15.0717 0x0158 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
07:59:15.0735 0x0158 ql40xx - ok
07:59:15.0767 0x0158 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
07:59:15.0829 0x0158 QWAVE - ok
07:59:15.0845 0x0158 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
07:59:15.0894 0x0158 QWAVEdrv - ok
07:59:15.0911 0x0158 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:59:16.0002 0x0158 RasAcd - ok
07:59:16.0036 0x0158 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
07:59:16.0089 0x0158 RasAgileVpn - ok
07:59:16.0100 0x0158 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
07:59:16.0176 0x0158 RasAuto - ok
07:59:16.0201 0x0158 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
07:59:16.0307 0x0158 Rasl2tp - ok
07:59:16.0345 0x0158 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
07:59:16.0450 0x0158 RasMan - ok
07:59:16.0495 0x0158 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
07:59:16.0560 0x0158 RasPppoe - ok
07:59:16.0582 0x0158 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
07:59:16.0651 0x0158 RasSstp - ok
07:59:16.0701 0x0158 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:59:16.0799 0x0158 rdbss - ok
07:59:16.0820 0x0158 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
07:59:16.0863 0x0158 rdpbus - ok
07:59:16.0889 0x0158 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:59:16.0950 0x0158 RDPCDD - ok
07:59:16.0960 0x0158 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
07:59:17.0019 0x0158 RDPENCDD - ok
07:59:17.0039 0x0158 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
07:59:17.0090 0x0158 RDPREFMP - ok
07:59:17.0124 0x0158 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:59:17.0189 0x0158 RDPWD - ok
07:59:17.0220 0x0158 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
07:59:17.0241 0x0158 rdyboost - ok
07:59:17.0276 0x0158 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
07:59:17.0350 0x0158 RemoteAccess - ok
07:59:17.0388 0x0158 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:59:17.0462 0x0158 RemoteRegistry - ok
07:59:17.0582 0x0158 [ 05FC44D32A144925EAE45570029FD6E1, 843976755AC807920C84D769D91C04AFA9CD02B71F4E8F20B0C16493AA878923 ] RoxMediaDB10 C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
07:59:17.0641 0x0158 RoxMediaDB10 - ok
07:59:17.0659 0x0158 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
07:59:17.0728 0x0158 RpcEptMapper - ok
07:59:17.0755 0x0158 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
07:59:17.0837 0x0158 RpcLocator - ok
07:59:17.0883 0x0158 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\System32\rpcss.dll
07:59:17.0936 0x0158 RpcSs - ok
07:59:17.0978 0x0158 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
07:59:18.0032 0x0158 rspndr - ok
07:59:18.0050 0x0158 RxFilter - ok
07:59:18.0067 0x0158 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs C:\Windows\system32\lsass.exe
07:59:18.0084 0x0158 SamSs - ok
07:59:18.0109 0x0158 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
07:59:18.0126 0x0158 sbp2port - ok
07:59:18.0149 0x0158 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
07:59:18.0259 0x0158 SCardSvr - ok
07:59:18.0299 0x0158 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
07:59:18.0362 0x0158 scfilter - ok
07:59:18.0423 0x0158 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
07:59:18.0556 0x0158 Schedule - ok
07:59:18.0591 0x0158 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
07:59:18.0630 0x0158 SCPolicySvc - ok
07:59:18.0663 0x0158 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
07:59:18.0767 0x0158 SDRSVC - ok
07:59:18.0792 0x0158 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
07:59:18.0880 0x0158 secdrv - ok
07:59:18.0892 0x0158 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
07:59:19.0000 0x0158 seclogon - ok
07:59:19.0035 0x0158 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
07:59:19.0077 0x0158 SENS - ok
07:59:19.0093 0x0158 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
07:59:19.0178 0x0158 SensrSvc - ok
07:59:19.0204 0x0158 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
07:59:19.0255 0x0158 Serenum - ok
07:59:19.0292 0x0158 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
07:59:19.0339 0x0158 Serial - ok
07:59:19.0369 0x0158 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
07:59:19.0396 0x0158 sermouse - ok
07:59:19.0440 0x0158 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
07:59:19.0574 0x0158 SessionEnv - ok
07:59:19.0600 0x0158 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
07:59:19.0692 0x0158 sffdisk - ok
07:59:19.0714 0x0158 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
07:59:19.0767 0x0158 sffp_mmc - ok
07:59:19.0789 0x0158 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
07:59:19.0826 0x0158 sffp_sd - ok
07:59:19.0849 0x0158 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
07:59:19.0886 0x0158 sfloppy - ok
07:59:19.0948 0x0158 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
07:59:20.0029 0x0158 SharedAccess - ok
07:59:20.0066 0x0158 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:59:20.0175 0x0158 ShellHWDetection - ok
07:59:20.0196 0x0158 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:59:20.0213 0x0158 SiSRaid2 - ok
07:59:20.0234 0x0158 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
07:59:20.0251 0x0158 SiSRaid4 - ok
07:59:20.0442 0x0158 [ AE40D1BC6FB02A5625516AD74CA9A309, A6F3893EBB1E8ECCFF83044358592096787C4DA8F4423E1472C60E76D3FADD6B ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
07:59:20.0570 0x0158 Skype C2C Service - ok
07:59:20.0640 0x0158 [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
07:59:20.0665 0x0158 SkypeUpdate - ok
07:59:20.0686 0x0158 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
07:59:20.0763 0x0158 Smb - ok
07:59:20.0812 0x0158 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
07:59:20.0860 0x0158 SNMPTRAP - ok
07:59:20.0881 0x0158 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
07:59:20.0896 0x0158 spldr - ok
07:59:20.0942 0x0158 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
07:59:21.0060 0x0158 Spooler - ok
07:59:21.0202 0x0158 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
07:59:21.0400 0x0158 sppsvc - ok
07:59:21.0451 0x0158 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
07:59:21.0552 0x0158 sppuinotify - ok
07:59:21.0592 0x0158 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
07:59:21.0696 0x0158 srv - ok
07:59:21.0754 0x0158 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
07:59:21.0817 0x0158 srv2 - ok
07:59:21.0845 0x0158 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
07:59:21.0918 0x0158 srvnet - ok
07:59:21.0952 0x0158 [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
07:59:22.0048 0x0158 ssadbus - ok
07:59:22.0072 0x0158 [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
07:59:22.0171 0x0158 ssadmdfl - ok
07:59:22.0231 0x0158 [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
07:59:22.0292 0x0158 ssadmdm - ok
07:59:22.0337 0x0158 [ D33D1BD3EC0E766211A234F56A12726D, 53EEAA94865554F8422D111D717B548DF553B5B8647D2A45F3718BF4AEEBEC27 ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
07:59:22.0416 0x0158 ssadserd - ok
07:59:22.0452 0x0158 [ ED161B91FDF7EAA39469D72D463D5F4E, FC793E378FB709313D0AC44F59BF5C9488D73235AA2B1A21C50C3DED91C6BE62 ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
07:59:22.0468 0x0158 sscdbus - ok
07:59:22.0511 0x0158 [ 4CB09E77593DBD8D7AF33B37375CA715, 7B14851A8EDAA996D28335FD4DA812C6114DD5012E1E929F4813797CDC77E5BC ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
07:59:22.0531 0x0158 sscdmdfl - ok
07:59:22.0574 0x0158 [ C7B4CF53497A6E5363F3439427663882, 993278ADAAC18F12FE00CCF76681461451DA335F67BB581FC7326045048EC085 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
07:59:22.0590 0x0158 sscdmdm - ok
07:59:22.0636 0x0158 [ 05FFA552F578E27AB2D41B6828DB477F, F3292A431D656C039F4300AA584FA13F26A69B351C2F903B3E47CEF464A6233A ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
07:59:22.0663 0x0158 sscdserd - ok
07:59:22.0723 0x0158 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:59:22.0854 0x0158 SSDPSRV - ok
07:59:22.0871 0x0158 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
07:59:22.0914 0x0158 SstpSvc - ok
07:59:22.0935 0x0158 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
07:59:22.0950 0x0158 stexstor - ok
07:59:22.0984 0x0158 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
07:59:23.0022 0x0158 StillCam - ok
07:59:23.0063 0x0158 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
07:59:23.0134 0x0158 stisvc - ok
07:59:23.0167 0x0158 [ FF5EB78AF7DFB68C2FB363537AAF753E, BF34EBC28A18D31ADA21098FCD2F2D5FACE7AA9B49DB1AFA4AD248B2A58FE86E ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
07:59:23.0252 0x0158 stllssvr - ok
07:59:23.0292 0x0158 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
07:59:23.0308 0x0158 swenum - ok
07:59:23.0346 0x0158 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
07:59:23.0429 0x0158 swprv - ok
07:59:23.0509 0x0158 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
07:59:23.0709 0x0158 SysMain - ok
07:59:23.0742 0x0158 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:59:23.0782 0x0158 TabletInputService - ok
07:59:23.0819 0x0158 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
07:59:23.0910 0x0158 TapiSrv - ok
07:59:23.0944 0x0158 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
07:59:24.0003 0x0158 TBS - ok
07:59:24.0087 0x0158 [ 9849EA3843A2ADBDD1497E97A85D8CAE, 71984DB2555989A0934E158281EA5F966109EC925B064B2045469A0E77971A7C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
07:59:24.0169 0x0158 Tcpip - ok
07:59:24.0241 0x0158 [ 9849EA3843A2ADBDD1497E97A85D8CAE, 71984DB2555989A0934E158281EA5F966109EC925B064B2045469A0E77971A7C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
07:59:24.0303 0x0158 TCPIP6 - ok
07:59:24.0364 0x0158 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
07:59:24.0441 0x0158 tcpipreg - ok
07:59:24.0472 0x0158 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
07:59:24.0526 0x0158 TDPIPE - ok
07:59:24.0551 0x0158 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
07:59:24.0595 0x0158 TDTCP - ok
07:59:24.0638 0x0158 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
07:59:24.0704 0x0158 tdx - ok
07:59:24.0744 0x0158 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
07:59:24.0760 0x0158 TermDD - ok
07:59:24.0813 0x0158 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
07:59:24.0917 0x0158 TermService - ok
07:59:24.0947 0x0158 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
07:59:25.0024 0x0158 Themes - ok
07:59:25.0053 0x0158 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
07:59:25.0096 0x0158 THREADORDER - ok
07:59:25.0121 0x0158 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
07:59:25.0226 0x0158 TrkWks - ok
07:59:25.0291 0x0158 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:59:25.0454 0x0158 TrustedInstaller - ok
07:59:25.0490 0x0158 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
07:59:25.0549 0x0158 tssecsrv - ok
07:59:25.0574 0x0158 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
07:59:25.0622 0x0158 TsUsbFlt - ok
07:59:25.0644 0x0158 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
07:59:25.0709 0x0158 tunnel - ok
07:59:25.0737 0x0158 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
07:59:25.0754 0x0158 uagp35 - ok
07:59:25.0777 0x0158 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
07:59:25.0860 0x0158 udfs - ok
07:59:25.0899 0x0158 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
07:59:25.0936 0x0158 UI0Detect - ok
07:59:25.0951 0x0158 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
07:59:25.0968 0x0158 uliagpkx - ok
07:59:25.0994 0x0158 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
07:59:26.0034 0x0158 umbus - ok
07:59:26.0049 0x0158 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
07:59:26.0092 0x0158 UmPass - ok
07:59:26.0120 0x0158 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
07:59:26.0207 0x0158 upnphost - ok
07:59:26.0230 0x0158 [ 43228F8EDD1B0BCDD3145AD246E63D39, 108D8793E9F94C0A0E895398599B359121751F2E7BAA8B7BD24838AEF646726D ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
07:59:26.0287 0x0158 USBAAPL64 - ok
07:59:26.0328 0x0158 [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
07:59:26.0389 0x0158 usbccgp - ok
07:59:26.0418 0x0158 [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\Windows\system32\drivers\usbcir.sys
07:59:26.0475 0x0158 usbcir - ok
07:59:26.0523 0x0158 [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
07:59:26.0618 0x0158 usbehci - ok
07:59:26.0660 0x0158 [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
07:59:26.0727 0x0158 usbhub - ok
07:59:26.0754 0x0158 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
07:59:26.0782 0x0158 usbohci - ok
07:59:26.0797 0x0158 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
07:59:26.0840 0x0158 usbprint - ok
07:59:26.0877 0x0158 [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
07:59:26.0921 0x0158 usbscan - ok
07:59:26.0947 0x0158 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:59:27.0011 0x0158 USBSTOR - ok
07:59:27.0028 0x0158 [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
07:59:27.0068 0x0158 usbuhci - ok
07:59:27.0101 0x0158 [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
07:59:27.0144 0x0158 usbvideo - ok
07:59:27.0168 0x0158 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
07:59:27.0240 0x0158 UxSms - ok
07:59:27.0257 0x0158 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc C:\Windows\system32\lsass.exe
07:59:27.0274 0x0158 VaultSvc - ok
07:59:27.0287 0x0158 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
07:59:27.0302 0x0158 vdrvroot - ok
07:59:27.0345 0x0158 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
07:59:27.0443 0x0158 vds - ok
07:59:27.0470 0x0158 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
07:59:27.0548 0x0158 vga - ok
07:59:27.0589 0x0158 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
07:59:27.0686 0x0158 VgaSave - ok
07:59:27.0738 0x0158 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
07:59:27.0758 0x0158 vhdmp - ok
07:59:27.0783 0x0158 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
07:59:27.0798 0x0158 viaide - ok
07:59:27.0814 0x0158 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
07:59:27.0832 0x0158 volmgr - ok
07:59:27.0868 0x0158 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
07:59:27.0894 0x0158 volmgrx - ok
07:59:27.0919 0x0158 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
07:59:27.0942 0x0158 volsnap - ok
07:59:27.0972 0x0158 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
07:59:27.0992 0x0158 vsmraid - ok
07:59:28.0061 0x0158 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
07:59:28.0177 0x0158 VSS - ok
07:59:28.0196 0x0158 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
07:59:28.0264 0x0158 vwifibus - ok
07:59:28.0312 0x0158 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
07:59:28.0361 0x0158 vwififlt - ok
07:59:28.0396 0x0158 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
07:59:28.0441 0x0158 vwifimp - ok
07:59:28.0477 0x0158 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
07:59:28.0552 0x0158 W32Time - ok
07:59:28.0571 0x0158 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
07:59:28.0617 0x0158 WacomPen - ok
07:59:28.0646 0x0158 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
07:59:28.0711 0x0158 WANARP - ok
07:59:28.0718 0x0158 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
07:59:28.0758 0x0158 Wanarpv6 - ok
07:59:28.0830 0x0158 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
07:59:28.0893 0x0158 WatAdminSvc - ok
07:59:28.0964 0x0158 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
07:59:29.0201 0x0158 wbengine - ok
07:59:29.0236 0x0158 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
07:59:29.0290 0x0158 WbioSrvc - ok
07:59:29.0324 0x0158 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
07:59:29.0403 0x0158 wcncsvc - ok
07:59:29.0431 0x0158 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:59:29.0496 0x0158 WcsPlugInService - ok
07:59:29.0522 0x0158 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
07:59:29.0537 0x0158 Wd - ok
07:59:29.0578 0x0158 [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
07:59:29.0623 0x0158 Wdf01000 - ok
07:59:29.0639 0x0158 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
07:59:29.0720 0x0158 WdiServiceHost - ok
07:59:29.0727 0x0158 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
07:59:29.0751 0x0158 WdiSystemHost - ok
07:59:29.0789 0x0158 [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient C:\Windows\System32\webclnt.dll
07:59:29.0864 0x0158 WebClient - ok
07:59:29.0890 0x0158 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
07:59:29.0977 0x0158 Wecsvc - ok
07:59:29.0998 0x0158 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
07:59:30.0082 0x0158 wercplsupport - ok
07:59:30.0089 0x0158 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
07:59:30.0175 0x0158 WerSvc - ok
07:59:30.0220 0x0158 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
07:59:30.0272 0x0158 WfpLwf - ok
07:59:30.0288 0x0158 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
07:59:30.0304 0x0158 WIMMount - ok
07:59:30.0320 0x0158 WinDefend - ok
07:59:30.0328 0x0158 WinHttpAutoProxySvc - ok
07:59:30.0392 0x0158 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
07:59:30.0526 0x0158 Winmgmt - ok
07:59:30.0626 0x0158 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
07:59:30.0814 0x0158 WinRM - ok
07:59:30.0881 0x0158 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
07:59:30.0920 0x0158 WinUsb - ok
07:59:30.0979 0x0158 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
07:59:31.0050 0x0158 Wlansvc - ok
07:59:31.0079 0x0158 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
07:59:31.0107 0x0158 WmiAcpi - ok
07:59:31.0144 0x0158 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
07:59:31.0210 0x0158 wmiApSrv - ok
07:59:31.0245 0x0158 WMPNetworkSvc - ok
07:59:31.0280 0x0158 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
07:59:31.0342 0x0158 WPCSvc - ok
07:59:31.0388 0x0158 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
07:59:31.0456 0x0158 WPDBusEnum - ok
07:59:31.0493 0x0158 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
07:59:31.0573 0x0158 ws2ifsl - ok
07:59:31.0613 0x0158 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
07:59:31.0669 0x0158 wscsvc - ok
07:59:31.0675 0x0158 WSearch - ok
07:59:31.0773 0x0158 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
07:59:31.0889 0x0158 wuauserv - ok
07:59:31.0935 0x0158 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
07:59:32.0021 0x0158 WudfPf - ok
07:59:32.0043 0x0158 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
07:59:32.0083 0x0158 WUDFRd - ok
07:59:32.0119 0x0158 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
07:59:32.0166 0x0158 wudfsvc - ok
07:59:32.0201 0x0158 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
07:59:32.0287 0x0158 WwanSvc - ok
07:59:32.0345 0x0158 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
07:59:32.0411 0x0158 xusb21 - ok
07:59:32.0451 0x0158 [ 64F88AF327AA74E03658AE32B48CCB8B, 52C8941D96F2EF89BBC4A4268DC59E5BC89AE2DAB199C13BBFF11C2606BE7FFA ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
07:59:32.0525 0x0158 yukonw7 - ok
07:59:32.0536 0x0158 ================ Scan global ===============================
07:59:32.0577 0x0158 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
07:59:32.0621 0x0158 [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
07:59:32.0661 0x0158 [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
07:59:32.0692 0x0158 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
07:59:32.0772 0x0158 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
07:59:32.0799 0x0158 [ Global ] - ok
07:59:32.0800 0x0158 ================ Scan MBR ==================================
07:59:32.0810 0x0158 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:59:33.0123 0x0158 \Device\Harddisk0\DR0 - ok
07:59:33.0123 0x0158 ================ Scan VBR ==================================
07:59:33.0128 0x0158 [ F771F73F625A310995377E475C4932E9 ] \Device\Harddisk0\DR0\Partition1
07:59:33.0131 0x0158 \Device\Harddisk0\DR0\Partition1 - ok
07:59:33.0138 0x0158 [ 88658FAC2A61BAA7467A26F4CB0F312B ] \Device\Harddisk0\DR0\Partition2
07:59:33.0141 0x0158 \Device\Harddisk0\DR0\Partition2 - ok
07:59:33.0145 0x0158 ================ Scan generic autorun ======================
07:59:33.0191 0x0158 [ 87A4570E9D15A2821015B7FB6B821654, BDF5266905DC3F9ED0DBE41798D9907FC9E8D030DD5C28975BBF9BFD8BD9DA71 ] C:\Windows\system32\igfxtray.exe
07:59:33.0220 0x0158 IgfxTray - ok
07:59:33.0244 0x0158 [ 842683D8F1A58A76E5A03DA35B4962EE, 7D1B1918D69566694D7D0E82A8A1C7537A5C3A1533DC80F60FE212DD2DBC6099 ] C:\Windows\system32\hkcmd.exe
07:59:33.0271 0x0158 HotKeysCmds - ok
07:59:33.0298 0x0158 [ 99F8C1060BFB20D2039716BBF741D6C2, 8C578E288D88697E88AB9BEAE79D33AF23AD6176D830D5916BD2DD42EC6FADC5 ] C:\Windows\system32\igfxpers.exe
07:59:33.0325 0x0158 Persistence - ok
07:59:33.0424 0x0158 [ 35BA4E6632BA690EA6421C1E03537D0E, 99D6B4DB12ABE3A7F44AB1B2D626978E85231185AE280D9516986027BC8385CB ] c:\Program Files\Microsoft Security Client\msseces.exe
07:59:33.0500 0x0158 MSC - ok
07:59:33.0607 0x0158 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
07:59:33.0647 0x0158 Adobe ARM - ok
07:59:33.0698 0x0158 [ D63797E8E7781EE1500A810CB6194FA6, 5C96DA00B98F0776E6174EBB7D4D6DB634838E130D8581E11811831D2C57B119 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
07:59:33.0728 0x0158 SunJavaUpdateSched - ok
07:59:34.0270 0x0158 [ CBEC06E32D0AC9C3D0A9199EDC1FB959, 9D7F9A372096EAE6B401653207ADDC08EC275065250EEFA235F580FB45D73E19 ] C:\Program Files (x86)\Skype\Phone\Skype.exe
07:59:34.0884 0x0158 Skype - ok
07:59:35.0080 0x0158 [ F98A242F61736233824F2E306069EE96, C7213F68C0566B15EF7AF9B2BBD964ACDA6E5FB0DD84B4276A6BB7E4FFE5D80E ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
07:59:35.0757 0x0158 HP Officejet Pro 8600 (NET) - ok
07:59:36.0117 0x0158 [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
07:59:36.0281 0x0158 swg - ok
07:59:36.0385 0x0158 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe
07:59:36.0404 0x0158 Google Update - ok
07:59:36.0406 0x0158 Waiting for KSN requests completion. In queue: 210
07:59:37.0406 0x0158 Waiting for KSN requests completion. In queue: 210
07:59:38.0406 0x0158 Waiting for KSN requests completion. In queue: 210
07:59:39.0881 0x0158 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.8.204.0 ), 0x61000 ( enabled : updated )
07:59:39.0960 0x0158 Win FW state via NFP2: enabled
07:59:42.0680 0x0158 ============================================================
07:59:42.0680 0x0158 Scan finished
07:59:42.0680 0x0158 ============================================================
07:59:42.0695 0x0a0c Detected object count: 1
07:59:42.0695 0x0a0c Actual detected object count: 1
08:01:35.0686 0x0a0c IHA_MessageCenter ( UnsignedFile.Multi.Generic ) - skipped by user
08:01:35.0686 0x0a0c IHA_MessageCenter ( UnsignedFile.Multi.Generic ) - User select action: Skip
#45
Posted 15 May 2015 - 04:59 PM
pystryker
-
- Malware Removal
-
- 3,912 posts
Trusted Helper
Very good, no rootkits hiding. Let's run some scans for remnants and orphans.
Step 1: Scan with Malwarebytes
Start the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits
Go back to the Dashboard and select Scan Now
If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.
On completion of the scan (or after the reboot), start MBAM,
Click History, then Application Logs, then check the Select box by the first Scan Log in the list.
Click View, then click Export, select text file and save to the desktop as MBAM.txt and post in your next reply.
Step 2: Scan with ESET Online Scanner
Please note: You can use Internet Explorer or Firefox for this step. Either browser used will have to be ran in admin mode.
Right click on either the Internet Explorer icon or the Firefox icon in the Start Menu or Quick Launch Bar on the Task bar and select Run as Administrator from the menu.
If you use Firefox, you will be prompted to download esetsmartinstaller_enu.exe. Please do so, then double click it to install it.
Please click on this link and then click the ESET Online Scanner bar ---->
Download Security Check
by screen317 from here or here.
Step 1: Scan with Malwarebytes
Start the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits
Go back to the Dashboard and select Scan Now
If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.
On completion of the scan (or after the reboot), start MBAM,
Click History, then Application Logs, then check the Select box by the first Scan Log in the list.
Click View, then click Export, select text file and save to the desktop as MBAM.txt and post in your next reply.
Step 2: Scan with ESET Online Scanner
Please note: You can use Internet Explorer or Firefox for this step. Either browser used will have to be ran in admin mode.
Right click on either the Internet Explorer icon or the Firefox icon in the Start Menu or Quick Launch Bar on the Task bar and select Run as Administrator from the menu.
If you use Firefox, you will be prompted to download esetsmartinstaller_enu.exe. Please do so, then double click it to install it.
Please click on this link and then click the ESET Online Scanner bar ---->
- Select the option YES, I accept the Terms of Use then click on Start
- When prompted allow the Add-On/Active X to install.
- Make sure that the option Remove found threats is NOT checked.
- Make sure that the option Scan archives is checked.
- Now click on Advanced Settings and select the following:
- Scan for potentially unwanted applications
- Scan for potentially unsafe applications
- Enable Anti-Stealth Technology
- Now click on Start
- The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
- When completed the Online Scan will begin automatically. The scan may take several hours.
- Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
- Now click on Finish
- Use notepad to open the logfile located at C:\Program Files(x86)\ESET\EsetOnlineScanner\log.txt.
- Copy and paste that log as a reply to this topic.
Download Security Check
by screen317 from here or here.- Save it to your Desktop.
- Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
- NOTE: If SecurityCheck aborts and you get the following message: UNSUPPORTED OPERATING SYSTEM! ABORTED! try rebooting the system and then run SecurityCheck again.
- A Notepad document should open automatically called checkup.txt; please post the contents of that document.
- ESET Scan Log
- MBAM Log
- SecurityCheck Log
Similar Topics
Also tagged with one or more of these keywords: Freezing, Farbar wont download, Pop ups, Memory usage thru the roof, hard to use.
|
Hardware →
System Building and Upgrading →
Hello gamer friends, I require an assist! XDStarted by camhov , 26 Dec 2020  building, pc, gaming, freezing
|
|
|
|
|
|
Security →
Virus, Spyware, Malware Removal →
clipconverter.cc pop up malwareStarted by forestdave , 01 Oct 2018 clipconverter malware, pop ups and 2 more...
|
|
|
|
|
|
Operating Systems →
Windows 8 and 8.1 →
Windows 8.1 Starts Freezing After UpdateStarted by harrisrobert , 27 Feb 2018 Freezing, Hanging, windows 8.1
|
|
|
|
|
|
Software →
Web Browsers and Email →
Need help with chronic Firefox issueStarted by andythebeagle , 04 Oct 2017 script, hanging, freezing and 4 more...
|
|
|
|
|
|
Security →
Virus, Spyware, Malware Removal →
Freezing, probably a virusStarted by catherine8817 , 13 Sep 2017 Freezing, Laptop Freezing, Acer
|
|
|
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
