11:31:27.0133 0x00bc [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
11:31:27.0188 0x00bc WinRM - ok
11:31:27.0237 0x00bc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:31:27.0239 0x00bc WinUsb - ok
11:31:27.0321 0x00bc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:31:27.0357 0x00bc Wlansvc - ok
11:31:27.0378 0x00bc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:31:27.0379 0x00bc WmiAcpi - ok
11:31:27.0411 0x00bc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:31:27.0428 0x00bc wmiApSrv - ok
11:31:27.0470 0x00bc WMPNetworkSvc - ok
11:31:27.0524 0x00bc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:31:27.0537 0x00bc WPCSvc - ok
11:31:27.0570 0x00bc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:31:27.0588 0x00bc WPDBusEnum - ok
11:31:27.0594 0x00bc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:31:27.0596 0x00bc ws2ifsl - ok
11:31:27.0626 0x00bc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
11:31:27.0637 0x00bc wscsvc - ok
11:31:27.0641 0x00bc WSearch - ok
11:31:27.0933 0x00bc [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
11:31:27.0998 0x00bc wuauserv - ok
11:31:28.0049 0x00bc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:31:28.0066 0x00bc WudfPf - ok
11:31:28.0162 0x00bc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:31:28.0180 0x00bc WUDFRd - ok
11:31:28.0218 0x00bc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:31:28.0239 0x00bc wudfsvc - ok
11:31:28.0311 0x00bc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
11:31:28.0333 0x00bc WwanSvc - ok
11:31:28.0338 0x00bc ZAPrivacyService - ok
11:31:28.0345 0x00bc ================ Scan global ===============================
11:31:28.0422 0x00bc [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
11:31:28.0494 0x00bc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:31:28.0523 0x00bc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:31:28.0580 0x00bc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:31:28.0657 0x00bc [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
11:31:28.0672 0x00bc [ Global ] - ok
11:31:28.0672 0x00bc ================ Scan MBR ==================================
11:31:28.0688 0x00bc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:31:29.0710 0x00bc \Device\Harddisk0\DR0 - ok
11:31:30.0177 0x00bc [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
11:31:30.0186 0x00bc \Device\Harddisk1\DR1 - ok
11:31:30.0186 0x00bc ================ Scan VBR ==================================
11:31:30.0311 0x00bc [ 97E75970915CD5182AE270D7A4C65669 ] \Device\Harddisk0\DR0\Partition1
11:31:30.0393 0x00bc \Device\Harddisk0\DR0\Partition1 - ok
11:31:30.0397 0x00bc [ B9088202A65DCA5009365D6862662A44 ] \Device\Harddisk0\DR0\Partition2
11:31:30.0487 0x00bc \Device\Harddisk0\DR0\Partition2 - ok
11:31:30.0490 0x00bc [ 6862C57D2F1C2354A9F9D85089B06700 ] \Device\Harddisk0\DR0\Partition3
11:31:30.0491 0x00bc \Device\Harddisk0\DR0\Partition3 - ok
11:31:30.0495 0x00bc [ 13C5B7D23A35E6F6C184177BF38072A7 ] \Device\Harddisk1\DR1\Partition1
11:31:30.0538 0x00bc \Device\Harddisk1\DR1\Partition1 - ok
11:31:30.0538 0x00bc ================ Scan generic autorun ======================
11:31:31.0174 0x00bc [ D1A8E603EC38F299B29EA5DBF05F7AC1, 386B80157268A55F40CF9C80DF5D805EB9138883F3B5048ED2A7F796FB56EAFD ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
11:31:31.0263 0x00bc LogMeIn Hamachi Ui - ok
11:31:31.0294 0x00bc fst_us_139 - ok
11:31:32.0253 0x00bc [ 1C1ACBA38DC3E60A2B652A0D679EE1D1, CB798CF66D02421AAB5E8ABE36A54535D536C2A1EDBAF2511EC47CD51E1DCCBD ] C:\Users\Chad\AppData\Local\fst_us_139\upfst_us_139.exe
11:31:32.0360 0x00bc upfst_us_139.exe - ok
11:31:32.0517 0x00bc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
11:31:32.0548 0x00bc Sidebar - ok
11:31:32.0584 0x00bc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
11:31:32.0588 0x00bc mctadmin - ok
11:31:32.0637 0x00bc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
11:31:32.0658 0x00bc Sidebar - ok
11:31:32.0667 0x00bc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
11:31:32.0670 0x00bc mctadmin - ok
11:31:33.0122 0x00bc [ 4F31AA375A686D44E7BF6309EF6AE753, 230ED621B15051D337C69A26C8CFE10BC37535794FF442D37CA90FA28364961E ] C:\Program Files (x86)\WhatPulse2\whatpulse.exe
11:31:33.0222 0x00bc WhatPulse - ok
11:31:33.0729 0x00bc [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
11:31:33.0818 0x00bc DAEMON Tools Lite - ok
11:31:33.0865 0x00bc [ 5553AC2C117CBB38F00BBEFE4966A4EB, FDD8F57016CEFA5BCC8D3CE0730612627DBB8FDA6DA2AB74262676100FD5C7CF ] C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
11:31:33.0867 0x00bc GUDelayStartup - ok
11:31:33.0868 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:34.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:35.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:36.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:37.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:38.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:39.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:40.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:41.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:42.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:43.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:44.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:45.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:46.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:47.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:48.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:49.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:50.0869 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:51.0870 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:52.0870 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:53.0870 0x00bc Waiting for KSN requests completion. In queue: 88
11:31:54.0942 0x00bc AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe ( 21.4.0.0 ), 0x51000 ( enabled : updated )
11:31:54.0944 0x00bc FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe ( 21.4.0.0 ), 0x51010 ( enabled )
11:32:10.0199 0x00bc ============================================================
11:32:10.0199 0x00bc Scan finished
11:32:10.0199 0x00bc ============================================================
11:32:10.0208 0x02f4 Detected object count: 0
11:32:10.0208 0x02f4 Actual detected object count: 0
11:36:11.0084 0x0954 ============================================================
11:36:11.0084 0x0954 Scan started
11:36:11.0084 0x0954 Mode: Manual;
11:36:11.0084 0x0954 ============================================================
11:36:11.0084 0x0954 KSN ping started
11:36:38.0794 0x0954 KSN ping finished: true
11:36:40.0274 0x0954 ================ Scan system memory ========================
11:36:40.0274 0x0954 System memory - ok
11:36:40.0274 0x0954 ================ Scan services =============================
11:36:40.0404 0x0954 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:36:40.0404 0x0954 1394ohci - ok
11:36:40.0434 0x0954 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:36:40.0444 0x0954 ACPI - ok
11:36:40.0464 0x0954 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:36:40.0464 0x0954 AcpiPmi - ok
11:36:40.0554 0x0954 [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:36:40.0564 0x0954 AdobeARMservice - ok
11:36:40.0704 0x0954 [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:36:40.0704 0x0954 AdobeFlashPlayerUpdateSvc - ok
11:36:40.0754 0x0954 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:36:40.0764 0x0954 adp94xx - ok
11:36:40.0804 0x0954 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:36:40.0814 0x0954 adpahci - ok
11:36:40.0834 0x0954 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:36:40.0834 0x0954 adpu320 - ok
11:36:40.0874 0x0954 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:36:40.0884 0x0954 AeLookupSvc - ok
11:36:40.0924 0x0954 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
11:36:40.0934 0x0954 AFD - ok
11:36:40.0964 0x0954 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
11:36:40.0964 0x0954 agp440 - ok
11:36:40.0984 0x0954 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
11:36:40.0984 0x0954 ALG - ok
11:36:41.0034 0x0954 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
11:36:41.0034 0x0954 aliide - ok
11:36:41.0064 0x0954 [ E7BDC2E7D885A65031C6B93D5A80B019, B37B05CA81A200A0C303946A21901ED382468761AB8BB8F7F310700A060E813F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:36:41.0064 0x0954 AMD External Events Utility - ok
11:36:41.0144 0x0954 AMD FUEL Service - ok
11:36:41.0164 0x0954 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
11:36:41.0174 0x0954 amdide - ok
11:36:41.0194 0x0954 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:36:41.0194 0x0954 AmdK8 - ok
11:36:41.0704 0x0954 [ 342156AF1FED5ED3A5D3FBB3D87F48E8, 119C85492EDCA82731E23A261DE39A72783713B01B89D8FA2F47400EB03C7C57 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:36:42.0004 0x0954 amdkmdag - ok
11:36:42.0204 0x0954 [ 9DCA2AFEABF1D109FB2C229491C9F293, F020F4FDD29897C656287A2D01D51B4AE45AA604E4291BCE05FB7D994242EC04 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
11:36:42.0214 0x0954 amdkmdap - ok
11:36:42.0234 0x0954 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:36:42.0234 0x0954 AmdPPM - ok
11:36:42.0264 0x0954 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:36:42.0274 0x0954 amdsata - ok
11:36:42.0334 0x0954 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:36:42.0334 0x0954 amdsbs - ok
11:36:42.0384 0x0954 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:36:42.0384 0x0954 amdxata - ok
11:36:42.0414 0x0954 [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:36:42.0414 0x0954 AODDriver4.2 - ok
11:36:42.0474 0x0954 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
11:36:42.0484 0x0954 AppID - ok
11:36:42.0534 0x0954 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:36:42.0534 0x0954 AppIDSvc - ok
11:36:42.0604 0x0954 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
11:36:42.0604 0x0954 Appinfo - ok
11:36:42.0644 0x0954 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
11:36:42.0644 0x0954 arc - ok
11:36:42.0704 0x0954 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:36:42.0704 0x0954 arcsas - ok
11:36:43.0664 0x0954 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:36:43.0664 0x0954 aspnet_state - ok
11:36:43.0694 0x0954 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:36:43.0694 0x0954 AsyncMac - ok
11:36:43.0774 0x0954 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
11:36:43.0784 0x0954 atapi - ok
11:36:43.0844 0x0954 [ C22D4905DDDF73EB0349D3B0604234A2, F86220290663FA95F3D8181D41F9D105634A62D50856BCEB174B9675F8DD7669 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
11:36:43.0844 0x0954 AtiHDAudioService - ok
11:36:43.0994 0x0954 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:36:44.0014 0x0954 AudioEndpointBuilder - ok
11:36:44.0084 0x0954 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:36:44.0094 0x0954 AudioSrv - ok
11:36:44.0164 0x0954 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:36:44.0164 0x0954 AxInstSV - ok
11:36:45.0024 0x0954 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:36:45.0034 0x0954 b06bdrv - ok
11:36:45.0074 0x0954 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:36:45.0074 0x0954 b57nd60a - ok
11:36:45.0124 0x0954 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
11:36:45.0124 0x0954 BDESVC - ok
11:36:45.0134 0x0954 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
11:36:45.0134 0x0954 Beep - ok
11:36:45.0164 0x0954 [ B1359701847FF1FF415FA083F1610F48, 991F995B9CF614549F5F7EB5C5B2D47F34EFF0F47B35C4BF4CE716666B9DA1D3 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
11:36:45.0164 0x0954 BEService - ok
11:36:45.0194 0x0954 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
11:36:45.0204 0x0954 BFE - ok
11:36:45.0374 0x0954 [ F10EFCE086C794F8A7C2C7A3EA52AC5F, 498C4A75DCC560CE1A6B7F671572A4CB2F4D5EA402E45399B7CF471CFBC48241 ] BHDrvx64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140703.001\BHDrvx64.sys
11:36:45.0404 0x0954 BHDrvx64 - ok
11:36:45.0534 0x0954 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
11:36:45.0554 0x0954 BITS - ok
11:36:45.0574 0x0954 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:36:45.0574 0x0954 blbdrive - ok
11:36:45.0604 0x0954 [ 369D7E0E01117A1A4A23C9C6A04EED06, 000793ECF7BF88A108A9FF623AF03508AD360854D08BD70DF32C22EBFE78E119 ] BootDefragDriver C:\Windows\system32\drivers\BootDefragDriver.sys
11:36:45.0604 0x0954 BootDefragDriver - ok
11:36:45.0634 0x0954 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:36:45.0634 0x0954 bowser - ok
11:36:45.0654 0x0954 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:36:45.0654 0x0954 BrFiltLo - ok
11:36:45.0674 0x0954 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:36:45.0674 0x0954 BrFiltUp - ok
11:36:45.0714 0x0954 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
11:36:45.0714 0x0954 Browser - ok
11:36:45.0744 0x0954 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:36:45.0744 0x0954 Brserid - ok
11:36:45.0764 0x0954 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:36:45.0764 0x0954 BrSerWdm - ok
11:36:45.0774 0x0954 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:36:45.0774 0x0954 BrUsbMdm - ok
11:36:45.0784 0x0954 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:36:45.0784 0x0954 BrUsbSer - ok
11:36:45.0794 0x0954 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:36:45.0804 0x0954 BTHMODEM - ok
11:36:45.0824 0x0954 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
11:36:45.0824 0x0954 bthserv - ok
11:36:45.0884 0x0954 [ 0510396A957E9FD7205BA62D3CAE4528, C80C39EB3A87C5111132E96E966CF74ACABA36DE7714B545A707027D35995792 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys
11:36:45.0884 0x0954 ccSet_NIS - ok
11:36:45.0904 0x0954 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:36:45.0904 0x0954 cdfs - ok
11:36:45.0914 0x0954 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:36:45.0914 0x0954 cdrom - ok
11:36:45.0924 0x0954 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
11:36:45.0924 0x0954 CertPropSvc - ok
11:36:45.0934 0x0954 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
11:36:45.0934 0x0954 circlass - ok
11:36:45.0974 0x0954 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
11:36:45.0984 0x0954 CLFS - ok
11:36:46.0054 0x0954 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:36:46.0064 0x0954 clr_optimization_v2.0.50727_32 - ok
11:36:46.0124 0x0954 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:36:46.0124 0x0954 clr_optimization_v2.0.50727_64 - ok
11:36:46.0194 0x0954 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:36:46.0194 0x0954 clr_optimization_v4.0.30319_32 - ok
11:36:46.0204 0x0954 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:36:46.0204 0x0954 clr_optimization_v4.0.30319_64 - ok
11:36:46.0234 0x0954 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
11:36:46.0234 0x0954 CmBatt - ok
11:36:46.0254 0x0954 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:36:46.0254 0x0954 cmdide - ok
11:36:46.0304 0x0954 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
11:36:46.0304 0x0954 CNG - ok
11:36:46.0324 0x0954 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:36:46.0324 0x0954 Compbatt - ok
11:36:46.0344 0x0954 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:36:46.0344 0x0954 CompositeBus - ok
11:36:46.0344 0x0954 COMSysApp - ok
11:36:46.0374 0x0954 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:36:46.0374 0x0954 crcdisk - ok
11:36:46.0404 0x0954 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:36:46.0414 0x0954 CryptSvc - ok
11:36:46.0444 0x0954 [ C6E1C081C0849E08FECEC18DF73B10C4, B5E552F4744C91836CBAF3F62CB861C1D9422721870D11B5CCE21B45E384985A ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
11:36:46.0444 0x0954 dc3d - ok
11:36:46.0474 0x0954 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:36:46.0494 0x0954 DcomLaunch - ok
11:36:46.0584 0x0954 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
11:36:46.0584 0x0954 defragsvc - ok
11:36:46.0594 0x0954 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:36:46.0594 0x0954 DfsC - ok
11:36:46.0624 0x0954 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
WE'RE SURE THAT YOU'LL LOVE US!
Hey there! 
Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 93084 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.
Try What the Tech -- It's free!
Elusive Malware [Closed]
-
This topic is locked
#16
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 21 July 2014 - 10:51 AM
Register to Remove
#17
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 21 July 2014 - 10:53 AM
11:36:46.0624 0x0954 Dhcp - ok
11:36:46.0634 0x0954 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
11:36:46.0644 0x0954 discache - ok
11:36:46.0654 0x0954 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
11:36:46.0654 0x0954 Disk - ok
11:36:46.0694 0x0954 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:36:46.0694 0x0954 Dnscache - ok
11:36:46.0754 0x0954 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
11:36:46.0844 0x0954 dot3svc - ok
11:36:46.0874 0x0954 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
11:36:46.0884 0x0954 DPS - ok
11:36:46.0914 0x0954 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:36:46.0924 0x0954 drmkaud - ok
11:36:46.0954 0x0954 [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:36:46.0964 0x0954 dtsoftbus01 - ok
11:36:47.0014 0x0954 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:36:47.0064 0x0954 DXGKrnl - ok
11:36:47.0084 0x0954 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
11:36:47.0094 0x0954 EapHost - ok
11:36:47.0204 0x0954 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:36:47.0264 0x0954 ebdrv - ok
11:36:47.0344 0x0954 [ 5E346ADBAD5110EAB2E9808ABE877A00, 4B72C34E41B8AA15D166F65B5A037A1230A9FF65F827D18A57E2198573616EAD ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
11:36:47.0354 0x0954 eeCtrl - ok
11:36:47.0394 0x0954 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
11:36:47.0394 0x0954 EFS - ok
11:36:47.0444 0x0954 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:36:47.0474 0x0954 ehRecvr - ok
11:36:47.0494 0x0954 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
11:36:47.0494 0x0954 ehSched - ok
11:36:47.0524 0x0954 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:36:47.0544 0x0954 elxstor - ok
11:36:47.0704 0x0954 [ F9FF75495330F23276EEADFE7E6DCBB9, 1213BAAD9297B560F77E3779DA28832A70F2C8C616809723D0BDF46E7E44800C ] EraserSvc11313 C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe
11:36:47.0704 0x0954 EraserSvc11313 - ok
11:36:47.0734 0x0954 [ 773ACF5823046FA40D7FD898559A7228, 7DF39C42F781E7864CC791E3449CCDF0124930D128D168E8F9C80374640FFBE7 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:36:47.0734 0x0954 EraserUtilRebootDrv - ok
11:36:47.0754 0x0954 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:36:47.0754 0x0954 ErrDev - ok
11:36:47.0794 0x0954 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
11:36:47.0804 0x0954 EventSystem - ok
11:36:47.0824 0x0954 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
11:36:47.0824 0x0954 exfat - ok
11:36:47.0854 0x0954 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:36:47.0854 0x0954 fastfat - ok
11:36:47.0904 0x0954 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
11:36:47.0924 0x0954 Fax - ok
11:36:47.0944 0x0954 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:36:47.0944 0x0954 fdc - ok
11:36:47.0984 0x0954 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
11:36:47.0984 0x0954 fdPHost - ok
11:36:47.0994 0x0954 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
11:36:47.0994 0x0954 FDResPub - ok
11:36:48.0004 0x0954 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:36:48.0024 0x0954 FileInfo - ok
11:36:48.0144 0x0954 [ D409D4A4517865131999FAC96D366CBF, 512A80C4B180D5D6DECBAFB831A56C0DC8C5D1CC7E749465C47D29EC4DA45719 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
11:36:48.0144 0x0954 FileMonitor - ok
11:36:48.0154 0x0954 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:36:48.0164 0x0954 Filetrace - ok
11:36:48.0164 0x0954 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:36:48.0174 0x0954 flpydisk - ok
11:36:48.0184 0x0954 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:36:48.0194 0x0954 FltMgr - ok
11:36:48.0264 0x0954 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
11:36:48.0294 0x0954 FontCache - ok
11:36:48.0364 0x0954 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:36:48.0374 0x0954 FontCache3.0.0.0 - ok
11:36:48.0384 0x0954 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:36:48.0394 0x0954 FsDepends - ok
11:36:48.0394 0x0954 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:36:48.0394 0x0954 Fs_Rec - ok
11:36:48.0424 0x0954 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:36:48.0424 0x0954 fvevol - ok
11:36:48.0444 0x0954 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:36:48.0444 0x0954 gagp30kx - ok
11:36:48.0484 0x0954 [ BA5996C46AF098047A0337A540180B71, 1B0265889C7B9B68EEB7BC97A8F2CB9B4AADEBB05780655BCFD37B148F3B594B ] gfiark C:\Windows\system32\drivers\gfiark.sys
11:36:48.0494 0x0954 gfiark - ok
11:36:48.0524 0x0954 [ 14908F4F9005C29DE8F5587E271390EE, 43DDFA99F52467F91019DB858989F111EBE48A2BED8D43EA2C15D1FD3C104489 ] gfibto C:\Windows\system32\drivers\gfibto.sys
11:36:48.0524 0x0954 gfibto - ok
11:36:48.0554 0x0954 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
11:36:48.0584 0x0954 gpsvc - ok
11:36:48.0614 0x0954 [ 04697FD2E72486667CDE08696EE7586D, 79F438BC3BC7CA7C9307C82A6C6B34792849C14DF57057007613F6A7FD199AB8 ] GUBootStartup C:\Windows\system32\drivers\GUBootStartup.sys
11:36:48.0614 0x0954 GUBootStartup - ok
11:36:48.0664 0x0954 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:48.0664 0x0954 gupdate - ok
11:36:48.0674 0x0954 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:48.0674 0x0954 gupdatem - ok
11:36:48.0674 0x0954 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
11:36:48.0684 0x0954 hamachi - ok
11:36:48.0785 0x0954 [ 8E459BA8360F33D64BE96F9550E56EE8, AA0568EE4DE90C7D6001759BADE17729E4420DEBE106DB8AFDC2B4E1C518DC49 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
11:36:48.0826 0x0954 Hamachi2Svc - ok
11:36:48.0846 0x0954 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:36:48.0846 0x0954 hcw85cir - ok
11:36:48.0886 0x0954 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:36:48.0896 0x0954 HdAudAddService - ok
11:36:48.0916 0x0954 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:36:48.0916 0x0954 HDAudBus - ok
11:36:48.0946 0x0954 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:36:48.0946 0x0954 HidBatt - ok
11:36:48.0966 0x0954 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:36:48.0966 0x0954 HidBth - ok
11:36:48.0986 0x0954 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
11:36:48.0986 0x0954 HidIr - ok
11:36:48.0996 0x0954 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
11:36:48.0996 0x0954 hidserv - ok
11:36:49.0016 0x0954 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:36:49.0016 0x0954 HidUsb - ok
11:36:49.0046 0x0954 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:36:49.0056 0x0954 hkmsvc - ok
11:36:49.0086 0x0954 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:36:49.0096 0x0954 HomeGroupListener - ok
11:36:49.0126 0x0954 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:36:49.0136 0x0954 HomeGroupProvider - ok
11:36:49.0156 0x0954 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:36:49.0176 0x0954 HpSAMD - ok
11:36:49.0216 0x0954 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:36:49.0236 0x0954 HTTP - ok
11:36:49.0246 0x0954 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:36:49.0246 0x0954 hwpolicy - ok
11:36:49.0266 0x0954 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:36:49.0266 0x0954 i8042prt - ok
11:36:49.0316 0x0954 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:36:49.0326 0x0954 iaStorV - ok
11:36:49.0376 0x0954 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:36:49.0406 0x0954 idsvc - ok
11:36:49.0476 0x0954 [ F6F8CDA3CC5207BFD0B319A26E33ACD3, 6630DEE80A85DA972D3734A5D67E274AEE7042A73AB45E19E15DC989AE88459E ] IDSVia64 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140710.002\IDSvia64.sys
11:36:49.0486 0x0954 IDSVia64 - ok
11:36:49.0496 0x0954 IEEtwCollectorService - ok
11:36:49.0516 0x0954 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:36:49.0516 0x0954 iirsp - ok
11:36:49.0576 0x0954 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
11:36:49.0596 0x0954 IKEEXT - ok
11:36:49.0626 0x0954 [ EAEA4B0005869A4ABE6070BD364143B7, BD439C15EFBBAFAF88ADD4C988CC7AA04128EF689B1C9CF49FEE9B57417C08B7 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
11:36:49.0636 0x0954 IMFservice - ok
11:36:49.0786 0x0954 [ 39246F2CFBF1D32C3A12E242661EC039, EADF06D9B142844C16C2B0E412D708DB02BA07E2CD96BBFB2F0984DD6BB63E28 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:36:49.0916 0x0954 IntcAzAudAddService - ok
11:36:49.0956 0x0954 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
11:36:49.0956 0x0954 intelide - ok
11:36:49.0976 0x0954 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
11:36:49.0976 0x0954 intelppm - ok
11:36:50.0016 0x0954 [ D7B749051DA5FB4604F4141F19C47660, 2B33DF9AFF7CB99A782B252E8EB65CA49874A112986A1C49CD9971210597A8AE ] IObitUnlocker C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys
11:36:50.0016 0x0954 IObitUnlocker - ok
11:36:50.0036 0x0954 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:36:50.0046 0x0954 IPBusEnum - ok
11:36:50.0066 0x0954 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:36:50.0066 0x0954 IpFilterDriver - ok
11:36:50.0116 0x0954 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:36:50.0126 0x0954 iphlpsvc - ok
11:36:50.0146 0x0954 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:36:50.0146 0x0954 IPMIDRV - ok
11:36:50.0166 0x0954 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:36:50.0166 0x0954 IPNAT - ok
11:36:50.0186 0x0954 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:36:50.0186 0x0954 IRENUM - ok
11:36:50.0206 0x0954 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:36:50.0206 0x0954 isapnp - ok
11:36:50.0246 0x0954 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:36:50.0256 0x0954 iScsiPrt - ok
11:36:50.0276 0x0954 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:36:50.0276 0x0954 kbdclass - ok
11:36:50.0286 0x0954 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:36:50.0286 0x0954 kbdhid - ok
11:36:50.0286 0x0954 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
11:36:50.0296 0x0954 KeyIso - ok
11:36:50.0336 0x0954 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:36:50.0336 0x0954 KSecDD - ok
11:36:50.0346 0x0954 [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:36:50.0356 0x0954 KSecPkg - ok
11:36:50.0366 0x0954 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:36:50.0366 0x0954 ksthunk - ok
11:36:50.0446 0x0954 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
11:36:50.0456 0x0954 KtmRm - ok
11:36:50.0496 0x0954 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:36:50.0506 0x0954 LanmanServer - ok
11:36:50.0536 0x0954 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:36:50.0556 0x0954 LanmanWorkstation - ok
11:36:50.0656 0x0954 [ 9221BD3515C49AED30FA88152BFD7168, CD23280C8A1AE00EEEBFC74D403EDE0BF6CB03DDDC3CB971338A7C9FB76CD7F3 ] LiveUpdateSvc C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
11:36:50.0696 0x0954 LiveUpdateSvc - ok
11:36:50.0716 0x0954 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:36:50.0726 0x0954 lltdio - ok
11:36:50.0756 0x0954 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:36:50.0766 0x0954 lltdsvc - ok
11:36:50.0776 0x0954 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:36:50.0786 0x0954 lmhosts - ok
11:36:50.0816 0x0954 [ D5F9C50082FA5F82C35922998B3DAD6E, 4957FB1888EC69E16E6D019F2D984EE810F8532FAB504B30D32518E4D3F01FDB ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
11:36:50.0826 0x0954 LMIGuardianSvc - ok
11:36:50.0846 0x0954 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:36:50.0846 0x0954 LSI_FC - ok
11:36:50.0876 0x0954 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:36:50.0876 0x0954 LSI_SAS - ok
11:36:50.0876 0x0954 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
11:36:50.0886 0x0954 LSI_SAS2 - ok
11:36:50.0886 0x0954 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:36:50.0896 0x0954 LSI_SCSI - ok
11:36:50.0916 0x0954 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
11:36:50.0916 0x0954 luafv - ok
11:36:50.0926 0x0954 lxdn_device - ok
11:36:50.0936 0x0954 [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
11:36:50.0946 0x0954 ManyCam - ok
11:36:50.0946 0x0954 MBAMSwissArmy - ok
11:36:50.0956 0x0954 [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
11:36:50.0956 0x0954 mcaudrv_simple - ok
11:36:50.0986 0x0954 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:36:50.0986 0x0954 Mcx2Svc - ok
11:36:51.0006 0x0954 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
#18
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 21 July 2014 - 10:55 AM
11:36:51.0016 0x0954 megasas - ok
11:36:51.0036 0x0954 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
11:36:51.0046 0x0954 MegaSR - ok
11:36:51.0076 0x0954 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
11:36:51.0076 0x0954 MMCSS - ok
11:36:51.0106 0x0954 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
11:36:51.0106 0x0954 Modem - ok
11:36:51.0126 0x0954 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:36:51.0126 0x0954 monitor - ok
11:36:51.0146 0x0954 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:36:51.0146 0x0954 mouclass - ok
11:36:51.0156 0x0954 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:36:51.0156 0x0954 mouhid - ok
11:36:51.0166 0x0954 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:36:51.0166 0x0954 mountmgr - ok
11:36:51.0206 0x0954 [ 0A181FDED34B63086130C7140D6BEE2B, 00A96D8F83CA8883298CA8DE7BC8D669B98C58BBFBE378A32D22F3199795D3DA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:36:51.0206 0x0954 MozillaMaintenance - ok
11:36:51.0236 0x0954 [ FC1D590039EF06A381768710E6C07E75, 2F8B4D5232C4848A423A4E647102F3EDFD9B3D55D0D14AC04FD6D60D9212106F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:36:51.0246 0x0954 MpFilter - ok
11:36:51.0266 0x0954 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
11:36:51.0276 0x0954 mpio - ok
11:36:51.0296 0x0954 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:36:51.0296 0x0954 mpsdrv - ok
11:36:51.0326 0x0954 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:36:51.0356 0x0954 MpsSvc - ok
11:36:51.0406 0x0954 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:36:51.0406 0x0954 MRxDAV - ok
11:36:51.0446 0x0954 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:36:51.0446 0x0954 mrxsmb - ok
11:36:51.0466 0x0954 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:36:51.0476 0x0954 mrxsmb10 - ok
11:36:51.0486 0x0954 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:36:51.0496 0x0954 mrxsmb20 - ok
11:36:51.0516 0x0954 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
11:36:51.0516 0x0954 msahci - ok
11:36:51.0536 0x0954 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:36:51.0556 0x0954 msdsm - ok
11:36:51.0576 0x0954 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
11:36:51.0586 0x0954 MSDTC - ok
11:36:51.0606 0x0954 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:36:51.0606 0x0954 Msfs - ok
11:36:51.0616 0x0954 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:36:51.0616 0x0954 mshidkmdf - ok
11:36:51.0626 0x0954 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:36:51.0626 0x0954 msisadrv - ok
11:36:51.0656 0x0954 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:36:51.0666 0x0954 MSiSCSI - ok
11:36:51.0666 0x0954 msiserver - ok
11:36:51.0686 0x0954 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:36:51.0686 0x0954 MSKSSRV - ok
11:36:51.0726 0x0954 MsMpSvc - ok
11:36:51.0736 0x0954 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:36:51.0736 0x0954 MSPCLOCK - ok
11:36:51.0746 0x0954 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:36:51.0746 0x0954 MSPQM - ok
11:36:51.0766 0x0954 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:36:51.0776 0x0954 MsRPC - ok
11:36:51.0796 0x0954 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:36:51.0796 0x0954 mssmbios - ok
11:36:51.0806 0x0954 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:36:51.0806 0x0954 MSTEE - ok
11:36:51.0816 0x0954 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:36:51.0816 0x0954 MTConfig - ok
11:36:51.0836 0x0954 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
11:36:51.0836 0x0954 Mup - ok
11:36:51.0876 0x0954 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
11:36:51.0886 0x0954 napagent - ok
11:36:51.0916 0x0954 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:36:51.0926 0x0954 NativeWifiP - ok
11:36:52.0026 0x0954 [ 702E07EC32F96ACDB873E9A5465D4401, 2C6B1C8BA0BF4791AEA064062DCA3678AE4443DF19DB37D6CB55BA6297D8A238 ] NAVENG C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140710.024\ENG64.SYS
11:36:52.0026 0x0954 NAVENG - ok
11:36:52.0096 0x0954 [ 302EA314A1AF0D7CEF0A3D0195F79561, 046DBC2D9D028F2D2E8BAE745CA2ADEF42741689BFF743A13B81EA4228DDCDC6 ] NAVEX15 C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140710.024\EX64.SYS
11:36:52.0166 0x0954 NAVEX15 - ok
11:36:52.0226 0x0954 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
11:36:52.0256 0x0954 NDIS - ok
11:36:52.0276 0x0954 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:36:52.0276 0x0954 NdisCap - ok
11:36:52.0286 0x0954 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:36:52.0286 0x0954 NdisTapi - ok
11:36:52.0306 0x0954 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:36:52.0306 0x0954 Ndisuio - ok
11:36:52.0326 0x0954 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:36:52.0336 0x0954 NdisWan - ok
11:36:52.0336 0x0954 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:36:52.0346 0x0954 NDProxy - ok
11:36:52.0346 0x0954 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:36:52.0356 0x0954 NetBIOS - ok
11:36:52.0366 0x0954 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:36:52.0376 0x0954 NetBT - ok
11:36:52.0376 0x0954 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
11:36:52.0376 0x0954 Netlogon - ok
11:36:52.0416 0x0954 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
11:36:52.0426 0x0954 Netman - ok
11:36:52.0456 0x0954 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:52.0456 0x0954 NetMsmqActivator - ok
11:36:52.0466 0x0954 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:52.0466 0x0954 NetPipeActivator - ok
11:36:52.0506 0x0954 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
11:36:52.0516 0x0954 netprofm - ok
11:36:52.0536 0x0954 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:52.0536 0x0954 NetTcpActivator - ok
11:36:52.0536 0x0954 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:52.0546 0x0954 NetTcpPortSharing - ok
11:36:52.0566 0x0954 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:36:52.0566 0x0954 nfrd960 - ok
11:36:52.0636 0x0954 [ F9FF75495330F23276EEADFE7E6DCBB9, 1213BAAD9297B560F77E3779DA28832A70F2C8C616809723D0BDF46E7E44800C ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe
11:36:52.0646 0x0954 NIS - ok
11:36:52.0686 0x0954 [ 8FB3C853E886E1E4D57271672486111C, 2D2954740BF2046FC4C0F1C00FBA9627C356792C0636A51078116876E4886FC6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:36:52.0686 0x0954 NisDrv - ok
11:36:52.0686 0x0954 NisSrv - ok
11:36:52.0736 0x0954 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:36:52.0746 0x0954 NlaSvc - ok
11:36:52.0786 0x0954 [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] NPF C:\Windows\system32\drivers\npf.sys
11:36:52.0786 0x0954 NPF - ok
11:36:52.0796 0x0954 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:36:52.0796 0x0954 Npfs - ok
11:36:52.0846 0x0954 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
11:36:52.0846 0x0954 nsi - ok
11:36:52.0856 0x0954 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:36:52.0856 0x0954 nsiproxy - ok
11:36:52.0946 0x0954 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:36:53.0006 0x0954 Ntfs - ok
11:36:53.0006 0x0954 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
11:36:53.0006 0x0954 Null - ok
11:36:53.0046 0x0954 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:36:53.0056 0x0954 nvraid - ok
11:36:53.0076 0x0954 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:36:53.0096 0x0954 nvstor - ok
11:36:53.0126 0x0954 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:36:53.0126 0x0954 nv_agp - ok
11:36:53.0146 0x0954 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:36:53.0146 0x0954 ohci1394 - ok
11:36:53.0176 0x0954 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:36:53.0186 0x0954 p2pimsvc - ok
11:36:53.0206 0x0954 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
11:36:53.0226 0x0954 p2psvc - ok
11:36:53.0236 0x0954 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:36:53.0236 0x0954 Parport - ok
11:36:53.0276 0x0954 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:36:53.0276 0x0954 partmgr - ok
11:36:53.0296 0x0954 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
11:36:53.0296 0x0954 PcaSvc - ok
11:36:53.0316 0x0954 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
11:36:53.0316 0x0954 pci - ok
11:36:53.0366 0x0954 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
11:36:53.0376 0x0954 pciide - ok
11:36:53.0406 0x0954 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:36:53.0406 0x0954 pcmcia - ok
11:36:53.0416 0x0954 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
11:36:53.0416 0x0954 pcw - ok
11:36:53.0456 0x0954 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:36:53.0466 0x0954 PEAUTH - ok
11:36:53.0616 0x0954 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:36:53.0616 0x0954 PerfHost - ok
11:36:53.0666 0x0954 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
11:36:53.0706 0x0954 pla - ok
11:36:53.0756 0x0954 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:36:53.0776 0x0954 PlugPlay - ok
11:36:53.0796 0x0954 PnkBstrA - ok
11:36:53.0816 0x0954 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:36:53.0826 0x0954 PNRPAutoReg - ok
11:36:53.0836 0x0954 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:36:53.0846 0x0954 PNRPsvc - ok
11:36:53.0866 0x0954 [ 520D48ECB54A33821C95EE496A4235AF, 3C7984E480F134E303E6AD03A3837515F3E03A4727F1AD184BD1D8C71D68FFEF ] Point64 C:\Windows\system32\DRIVERS\point64.sys
11:36:53.0876 0x0954 Point64 - ok
11:36:53.0946 0x0954 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:36:53.0956 0x0954 PolicyAgent - ok
11:36:54.0006 0x0954 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
11:36:54.0016 0x0954 Power - ok
11:36:54.0026 0x0954 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:36:54.0026 0x0954 PptpMiniport - ok
11:36:54.0046 0x0954 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
11:36:54.0046 0x0954 Processor - ok
11:36:54.0066 0x0954 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
11:36:54.0076 0x0954 ProfSvc - ok
11:36:54.0116 0x0954 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:36:54.0116 0x0954 ProtectedStorage - ok
11:36:54.0126 0x0954 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:36:54.0136 0x0954 Psched - ok
11:36:54.0196 0x0954 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:36:54.0246 0x0954 ql2300 - ok
11:36:54.0276 0x0954 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:36:54.0286 0x0954 ql40xx - ok
11:36:54.0346 0x0954 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
11:36:54.0356 0x0954 QWAVE - ok
11:36:54.0376 0x0954 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:36:54.0386 0x0954 QWAVEdrv - ok
11:36:54.0406 0x0954 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:36:54.0416 0x0954 RasAcd - ok
11:36:54.0466 0x0954 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:36:54.0476 0x0954 RasAgileVpn - ok
11:36:54.0496 0x0954 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
11:36:54.0516 0x0954 RasAuto - ok
11:36:54.0536 0x0954 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:36:54.0546 0x0954 Rasl2tp - ok
11:36:54.0636 0x0954 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
11:36:54.0656 0x0954 RasMan - ok
11:36:54.0676 0x0954 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:36:54.0686 0x0954 RasPppoe - ok
11:36:54.0706 0x0954 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:36:54.0716 0x0954 RasSstp - ok
11:36:54.0796 0x0954 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:36:54.0806 0x0954 rdbss - ok
11:36:54.0826 0x0954 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
11:36:54.0846 0x0954 rdpbus - ok
11:36:54.0856 0x0954 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:36:54.0876 0x0954 RDPCDD - ok
11:36:54.0886 0x0954 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:36:54.0886 0x0954 RDPENCDD - ok
11:36:54.0916 0x0954 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:36:54.0926 0x0954 RDPREFMP - ok
11:36:54.0956 0x0954 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:36:54.0956 0x0954 RdpVideoMiniport - ok
11:36:54.0996 0x0954 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:36:55.0006 0x0954 RDPWD - ok
11:36:55.0066 0x0954 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:36:55.0076 0x0954 rdyboost - ok
11:36:55.0226 0x0954 [ 5623E2CC4F1F6DE24BE9DB3319E42D23, 2EA009F85804BF2757559DC7EBE4BCB637DE3786795891290F8F99580C32C9ED ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
11:36:55.0226 0x0954 RegFilter - ok
11:36:55.0266 0x0954 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:36:55.0286 0x0954 RemoteAccess - ok
11:36:55.0316 0x0954 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:36:55.0336 0x0954 RemoteRegistry - ok
11:36:55.0376 0x0954 [ 83A6C2CAFE236652D1559640594A0EA8, 52360F17C9C70C9CEA3316560B40C4D89FD705ED7E6B6088C99FC54D4CC35EB5 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
11:36:55.0376 0x0954 rpcapd - ok
11:36:55.0416 0x0954 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:36:55.0446 0x0954 RpcEptMapper - ok
11:36:55.0516 0x0954 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
11:36:55.0536 0x0954 RpcLocator - ok
11:36:55.0606 0x0954 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
11:36:55.0616 0x0954 RpcSs - ok
11:36:55.0626 0x0954 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:36:55.0646 0x0954 rspndr - ok
11:36:55.0786 0x0954 [ 46596144363B912105F70016F0E2F908, 199FF8BFA60D8E9662F3C785146FAED3231B514D260F795B2B9857DC1EEB2E4B ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:36:55.0806 0x0954 RTL8167 - ok
11:36:55.0886 0x0954 [ E4E034F79D88B34C5B4BA28BAE2259F7, A48E0ACFE75F92793E1961D108242A0B6B890ED8541757B7BF7EAAC1D6E963C1 ] RzKLService C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
11:36:55.0886 0x0954 RzKLService - ok
11:36:55.0906 0x0954 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
11:36:55.0906 0x0954 SamSs - ok
11:36:55.0936 0x0954 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:36:55.0946 0x0954 sbp2port - ok
11:36:56.0016 0x0954 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:36:56.0026 0x0954 SCardSvr - ok
11:36:56.0046 0x0954 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:36:56.0046 0x0954 scfilter - ok
11:36:56.0236 0x0954 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
11:36:56.0266 0x0954 Schedule - ok
11:36:56.0286 0x0954 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:36:56.0296 0x0954 SCPolicySvc - ok
11:36:56.0346 0x0954 [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
11:36:56.0356 0x0954 ScreamBAudioSvc - ok
11:36:56.0406 0x0954 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:36:56.0416 0x0954 SDRSVC - ok
11:36:56.0436 0x0954 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:36:56.0436 0x0954 secdrv - ok
11:36:56.0476 0x0954 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
11:36:56.0506 0x0954 seclogon - ok
11:36:56.0526 0x0954 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
11:36:56.0546 0x0954 SENS - ok
11:36:56.0566 0x0954 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:36:56.0576 0x0954 SensrSvc - ok
11:36:56.0606 0x0954 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:36:56.0626 0x0954 Serenum - ok
11:36:56.0646 0x0954 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:36:56.0666 0x0954 Serial - ok
11:36:56.0676 0x0954 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:36:56.0676 0x0954 sermouse - ok
11:36:56.0716 0x0954 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
11:36:56.0726 0x0954 SessionEnv - ok
11:36:56.0736 0x0954 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:36:56.0746 0x0954 sffdisk - ok
11:36:56.0766 0x0954 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:36:56.0776 0x0954 sffp_mmc - ok
11:36:56.0796 0x0954 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:36:56.0796 0x0954 sffp_sd - ok
11:36:56.0826 0x0954 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:36:56.0836 0x0954 sfloppy - ok
11:36:56.0876 0x0954 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:36:56.0896 0x0954 SharedAccess - ok
11:36:57.0006 0x0954 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:36:57.0026 0x0954 ShellHWDetection - ok
11:36:57.0046 0x0954 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:36:57.0056 0x0954 SiSRaid2 - ok
11:36:57.0086 0x0954 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:36:57.0116 0x0954 SiSRaid4 - ok
11:36:57.0226 0x0954 [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:36:57.0246 0x0954 SkypeUpdate - ok
11:36:57.0306 0x0954 [ E77CB3736A702D46A6FB15FB4A9894E3, A341AD51825D4DB8A68ADDABE0FD17693DE387B0DA11800D427B8EA31577626C ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
11:36:57.0306 0x0954 SmartDefragDriver - ok
11:36:57.0336 0x0954 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:36:57.0356 0x0954 Smb - ok
11:36:57.0376 0x0954 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:36:57.0386 0x0954 SNMPTRAP - ok
11:36:57.0416 0x0954 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
11:36:57.0416 0x0954 spldr - ok
11:36:57.0476 0x0954 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
11:36:57.0486 0x0954 Spooler - ok
11:36:58.0046 0x0954 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
11:36:58.0116 0x0954 sppsvc - ok
11:36:58.0146 0x0954 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:36:58.0156 0x0954 sppuinotify - ok
11:36:58.0446 0x0954 [ F718A57D946EAC76EFCB351D74E269F4, 473AE48BACEE64A9582814951B731BDDDEB48D2E9D407ACEAA3F0850B536DABA ] SRTSP C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS
11:36:58.0466 0x0954 SRTSP - ok
11:36:58.0516 0x0954 [ B18CE01B9C09C59422BA7C7064248B35, B355EE2FBB37C4B0EFFE4DC5E0788A26579266828E7988EDC497B0AE7375F8AB ] SRTSPX C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS
11:36:58.0526 0x0954 SRTSPX - ok
11:36:58.0686 0x0954 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:36:58.0706 0x0954 srv - ok
11:36:58.0746 0x0954 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:36:58.0756 0x0954 srv2 - ok
11:36:58.0856 0x0954 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:36:58.0876 0x0954 srvnet - ok
11:36:58.0906 0x0954 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:36:58.0946 0x0954 SSDPSRV - ok
11:36:58.0986 0x0954 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:36:58.0996 0x0954 SstpSvc - ok
11:36:59.0066 0x0954 Steam Client Service - ok
11:36:59.0096 0x0954 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:36:59.0116 0x0954 stexstor - ok
11:36:59.0146 0x0954 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
11:36:59.0176 0x0954 stisvc - ok
11:36:59.0196 0x0954 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:36:59.0216 0x0954 swenum - ok
11:36:59.0316 0x0954 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
11:36:59.0336 0x0954 swprv - ok
11:36:59.0467 0x0954 [ 5C9EE2303CA7F267665D75237862B39C, 5DECD977A823C14B4D980D3DB621BC875231B741653F0450A027FC9E87725F9D ] SymDS C:\Windows\system32\drivers\NISx64\1504000.00D\SYMDS64.SYS
11:36:59.0497 0x0954 SymDS - ok
11:36:59.0547 0x0954 [ 9F31630D7FC2DD9D5DA1CE359AAD1F46, 296D29EDF53956D1899DE4669AB429C280DF9F183F00AE1CE528E7C575802235 ] SymEFA C:\Windows\system32\drivers\NISx64\1504000.00D\SYMEFA64.SYS
11:36:59.0609 0x0954 SymEFA - ok
11:36:59.0729 0x0954 [ 97E11C50CE52277B377396EA8838E539, E17D03F80E14F961C41F2D54D1EF73D29BF01F38459C5710D786234F8BA3C835 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
11:36:59.0749 0x0954 SymEvent - ok
11:36:59.0789 0x0954 [ 48C2934683CBD06F662B088EEF49EF6A, 2212A3588C28F33EFCB1D34618B3054EBBAC6731D177A581D21D1F969FE040C0 ] SymIRON C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS
11:36:59.0809 0x0954 SymIRON - ok
11:36:59.0869 0x0954 [ 5570A74FF9B1EFBC5154DD1E2F05C517, 2C883A0334CBE4AE257028805C9BB1E529A80F56BA6D341E8EBB83CB3E46FEB7 ] SymNetS C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS
11:36:59.0889 0x0954 SymNetS - ok
11:37:00.0239 0x0954 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
11:37:00.0289 0x0954 SysMain - ok
11:37:00.0319 0x0954 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:37:00.0339 0x0954 TabletInputService - ok
11:37:00.0369 0x0954 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
11:37:00.0409 0x0954 tap0901t - ok
11:37:00.0519 0x0954 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
11:37:00.0539 0x0954 TapiSrv - ok
11:37:00.0569 0x0954 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
11:37:00.0589 0x0954 TBS - ok
11:37:00.0929 0x0954 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:37:00.0969 0x0954 Tcpip - ok
11:37:01.0029 0x0954 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:37:01.0069 0x0954 TCPIP6 - ok
11:37:01.0109 0x0954 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:37:01.0129 0x0954 tcpipreg - ok
11:37:01.0189 0x0954 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:37:01.0199 0x0954 TDPIPE - ok
11:37:01.0249 0x0954 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:37:01.0259 0x0954 TDTCP - ok
11:37:01.0289 0x0954 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:37:01.0299 0x0954 tdx - ok
11:37:01.0319 0x0954 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:37:01.0329 0x0954 TermDD - ok
11:37:01.0509 0x0954 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
11:37:01.0539 0x0954 TermService - ok
11:37:01.0599 0x0954 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
11:37:01.0639 0x0954 Themes - ok
11:37:01.0709 0x0954 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
11:37:01.0709 0x0954 THREADORDER - ok
11:37:01.0749 0x0954 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
11:37:01.0779 0x0954 TrkWks - ok
11:37:01.0809 0x0954 [ 370A6907DDF79532A39319492B1FA38A, 46AECC5160F04FC3FFE4D37B404CCBBD1C5DC1501C2CEEE8284FF544DBDF10F8 ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
11:37:01.0829 0x0954 truecrypt - ok
11:37:01.0929 0x0954 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:37:01.0949 0x0954 TrustedInstaller - ok
11:37:01.0999 0x0954 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:37:02.0009 0x0954 tssecsrv - ok
11:37:02.0059 0x0954 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:37:02.0079 0x0954 TsUsbFlt - ok
11:37:02.0129 0x0954 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:37:02.0129 0x0954 TsUsbGD - ok
#19
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 21 July 2014 - 10:56 AM
11:37:02.0159 0x0954 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:37:02.0179 0x0954 tunnel - ok
11:37:02.0379 0x0954 [ 9B67EEB5ECCA7E7A57942D967DD59089, 6CD1575BB52A936875DB6E2EA541C7630CF1B0BC4947A5B12356F7C493316324 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
11:37:02.0389 0x0954 TunngleService - ok
11:37:02.0429 0x0954 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:37:02.0449 0x0954 uagp35 - ok
11:37:02.0489 0x0954 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:37:02.0509 0x0954 udfs - ok
11:37:02.0539 0x0954 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:37:02.0559 0x0954 UI0Detect - ok
11:37:02.0569 0x0954 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:37:02.0589 0x0954 uliagpkx - ok
11:37:02.0639 0x0954 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:37:02.0659 0x0954 umbus - ok
11:37:02.0669 0x0954 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
11:37:02.0679 0x0954 UmPass - ok
11:37:02.0729 0x0954 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
11:37:02.0739 0x0954 upnphost - ok
11:37:02.0749 0x0954 [ 893A6B67C8AA502648AD946CF50DDFD1, 9480AD8BF791E5912FC89A9F610D5B2E23FD07DF99A15F6844A8854E4ECB4095 ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
11:37:02.0749 0x0954 UrlFilter - ok
11:37:02.0799 0x0954 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
11:37:02.0809 0x0954 usbaudio - ok
11:37:02.0839 0x0954 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:37:02.0859 0x0954 usbccgp - ok
11:37:02.0899 0x0954 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:37:02.0909 0x0954 usbcir - ok
11:37:02.0959 0x0954 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:37:02.0969 0x0954 usbehci - ok
11:37:03.0019 0x0954 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:37:03.0029 0x0954 usbhub - ok
11:37:03.0049 0x0954 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:37:03.0069 0x0954 usbohci - ok
11:37:03.0089 0x0954 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:37:03.0089 0x0954 usbprint - ok
11:37:03.0169 0x0954 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
11:37:03.0179 0x0954 usbscan - ok
11:37:03.0239 0x0954 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
11:37:03.0259 0x0954 USBSTOR - ok
11:37:03.0279 0x0954 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:37:03.0299 0x0954 usbuhci - ok
11:37:03.0339 0x0954 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
11:37:03.0349 0x0954 UxSms - ok
11:37:03.0369 0x0954 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
11:37:03.0369 0x0954 VaultSvc - ok
11:37:03.0409 0x0954 [ 3A4B01C2BDB07DFEF29B0B369487503A, 83305F55930F355AB71A30509DC313AA3CD856D4B30ED804AF626636F9CD1A6B ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
11:37:03.0419 0x0954 VCSVADHWSer - ok
11:37:03.0439 0x0954 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:37:03.0439 0x0954 vdrvroot - ok
11:37:03.0519 0x0954 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
11:37:03.0549 0x0954 vds - ok
11:37:03.0569 0x0954 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:37:03.0579 0x0954 vga - ok
11:37:03.0599 0x0954 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:37:03.0609 0x0954 VgaSave - ok
11:37:03.0649 0x0954 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:37:03.0659 0x0954 vhdmp - ok
11:37:03.0719 0x0954 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
11:37:03.0719 0x0954 viaide - ok
11:37:03.0749 0x0954 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:37:03.0759 0x0954 volmgr - ok
11:37:03.0799 0x0954 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:37:03.0819 0x0954 volmgrx - ok
11:37:03.0839 0x0954 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:37:03.0849 0x0954 volsnap - ok
11:37:03.0879 0x0954 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:37:03.0889 0x0954 vsmraid - ok
11:37:04.0209 0x0954 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
11:37:04.0249 0x0954 VSS - ok
11:37:04.0269 0x0954 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:37:04.0269 0x0954 vwifibus - ok
11:37:04.0379 0x0954 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
11:37:04.0399 0x0954 W32Time - ok
11:37:04.0419 0x0954 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:37:04.0429 0x0954 WacomPen - ok
11:37:04.0439 0x0954 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:37:04.0459 0x0954 WANARP - ok
11:37:04.0459 0x0954 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:37:04.0469 0x0954 Wanarpv6 - ok
11:37:04.0849 0x0954 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:37:04.0879 0x0954 WatAdminSvc - ok
11:37:05.0069 0x0954 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
11:37:05.0109 0x0954 wbengine - ok
11:37:05.0149 0x0954 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:37:05.0169 0x0954 WbioSrvc - ok
11:37:05.0259 0x0954 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:37:05.0279 0x0954 wcncsvc - ok
11:37:05.0299 0x0954 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:37:05.0319 0x0954 WcsPlugInService - ok
11:37:05.0349 0x0954 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
11:37:05.0369 0x0954 Wd - ok
11:37:05.0539 0x0954 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:37:05.0569 0x0954 Wdf01000 - ok
11:37:05.0589 0x0954 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:37:05.0629 0x0954 WdiServiceHost - ok
11:37:05.0649 0x0954 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:37:05.0649 0x0954 WdiSystemHost - ok
11:37:05.0719 0x0954 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
11:37:05.0739 0x0954 WebClient - ok
11:37:05.0769 0x0954 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:37:05.0789 0x0954 Wecsvc - ok
11:37:05.0809 0x0954 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:37:05.0829 0x0954 wercplsupport - ok
11:37:05.0849 0x0954 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
11:37:05.0859 0x0954 WerSvc - ok
11:37:05.0879 0x0954 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:37:05.0879 0x0954 WfpLwf - ok
11:37:05.0909 0x0954 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:37:05.0929 0x0954 WIMMount - ok
11:37:05.0959 0x0954 WinDefend - ok
11:37:05.0959 0x0954 WinHttpAutoProxySvc - ok
11:37:06.0139 0x0954 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:37:06.0159 0x0954 Winmgmt - ok
11:37:06.0159 0x0954 WinRing0_1_2_0 - ok
11:37:06.0329 0x0954 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
11:37:06.0379 0x0954 WinRM - ok
11:37:06.0409 0x0954 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:37:06.0419 0x0954 WinUsb - ok
11:37:06.0479 0x0954 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:37:06.0499 0x0954 Wlansvc - ok
11:37:06.0539 0x0954 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:37:06.0539 0x0954 WmiAcpi - ok
11:37:06.0629 0x0954 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:37:06.0649 0x0954 wmiApSrv - ok
11:37:06.0679 0x0954 WMPNetworkSvc - ok
11:37:06.0709 0x0954 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:37:06.0719 0x0954 WPCSvc - ok
11:37:06.0749 0x0954 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:37:06.0759 0x0954 WPDBusEnum - ok
11:37:06.0759 0x0954 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:37:06.0779 0x0954 ws2ifsl - ok
11:37:06.0799 0x0954 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
11:37:06.0819 0x0954 wscsvc - ok
11:37:06.0829 0x0954 WSearch - ok
11:37:07.0139 0x0954 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
11:37:07.0209 0x0954 wuauserv - ok
11:37:07.0259 0x0954 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:37:07.0259 0x0954 WudfPf - ok
11:37:07.0309 0x0954 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:37:07.0319 0x0954 WUDFRd - ok
11:37:07.0379 0x0954 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:37:07.0389 0x0954 wudfsvc - ok
11:37:07.0449 0x0954 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
11:37:07.0449 0x0954 WwanSvc - ok
11:37:07.0459 0x0954 ZAPrivacyService - ok
11:37:07.0469 0x0954 ================ Scan global ===============================
11:37:07.0539 0x0954 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
11:37:07.0599 0x0954 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:37:07.0649 0x0954 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:37:07.0669 0x0954 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:37:07.0789 0x0954 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
11:37:07.0799 0x0954 [ Global ] - ok
11:37:07.0799 0x0954 ================ Scan MBR ==================================
11:37:07.0819 0x0954 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:37:08.0199 0x0954 \Device\Harddisk0\DR0 - ok
11:37:08.0659 0x0954 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
11:37:08.0669 0x0954 \Device\Harddisk1\DR1 - ok
11:37:08.0669 0x0954 ================ Scan VBR ==================================
11:37:08.0669 0x0954 [ 97E75970915CD5182AE270D7A4C65669 ] \Device\Harddisk0\DR0\Partition1
11:37:08.0729 0x0954 \Device\Harddisk0\DR0\Partition1 - ok
11:37:08.0729 0x0954 [ B9088202A65DCA5009365D6862662A44 ] \Device\Harddisk0\DR0\Partition2
11:37:08.0769 0x0954 \Device\Harddisk0\DR0\Partition2 - ok
11:37:08.0769 0x0954 [ 6862C57D2F1C2354A9F9D85089B06700 ] \Device\Harddisk0\DR0\Partition3
11:37:08.0769 0x0954 \Device\Harddisk0\DR0\Partition3 - ok
11:37:08.0779 0x0954 [ 13C5B7D23A35E6F6C184177BF38072A7 ] \Device\Harddisk1\DR1\Partition1
11:37:08.0819 0x0954 \Device\Harddisk1\DR1\Partition1 - ok
11:37:08.0819 0x0954 ================ Scan generic autorun ======================
11:37:09.0459 0x0954 [ D1A8E603EC38F299B29EA5DBF05F7AC1, 386B80157268A55F40CF9C80DF5D805EB9138883F3B5048ED2A7F796FB56EAFD ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
11:37:09.0529 0x0954 LogMeIn Hamachi Ui - ok
11:37:09.0579 0x0954 fst_us_139 - ok
11:37:10.0619 0x0954 [ 1C1ACBA38DC3E60A2B652A0D679EE1D1, CB798CF66D02421AAB5E8ABE36A54535D536C2A1EDBAF2511EC47CD51E1DCCBD ] C:\Users\Chad\AppData\Local\fst_us_139\upfst_us_139.exe
11:37:10.0719 0x0954 upfst_us_139.exe - ok
11:37:10.0939 0x0954 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
11:37:10.0969 0x0954 Sidebar - ok
11:37:10.0989 0x0954 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
11:37:10.0999 0x0954 mctadmin - ok
11:37:11.0039 0x0954 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
11:37:11.0069 0x0954 Sidebar - ok
11:37:11.0079 0x0954 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
11:37:11.0079 0x0954 mctadmin - ok
11:37:11.0981 0x0954 [ 4F31AA375A686D44E7BF6309EF6AE753, 230ED621B15051D337C69A26C8CFE10BC37535794FF442D37CA90FA28364961E ] C:\Program Files (x86)\WhatPulse2\whatpulse.exe
11:37:12.0034 0x0954 WhatPulse - ok
11:37:12.0240 0x0954 [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
11:37:12.0386 0x0954 DAEMON Tools Lite - ok
11:37:12.0480 0x0954 [ 5553AC2C117CBB38F00BBEFE4966A4EB, FDD8F57016CEFA5BCC8D3CE0730612627DBB8FDA6DA2AB74262676100FD5C7CF ] C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
11:37:12.0491 0x0954 GUDelayStartup - ok
11:37:12.0492 0x0954 Waiting for KSN requests completion. In queue: 87
11:37:13.0492 0x0954 Waiting for KSN requests completion. In queue: 87
11:37:14.0492 0x0954 Waiting for KSN requests completion. In queue: 87
11:37:15.0492 0x0954 Waiting for KSN requests completion. In queue: 87
11:37:16.0492 0x0954 Waiting for KSN requests completion. In queue: 87
11:37:17.0499 0x0954 AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe ( 21.4.0.0 ), 0x51000 ( enabled : updated )
11:37:17.0500 0x0954 FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe ( 21.4.0.0 ), 0x51010 ( enabled )
11:37:30.0803 0x0954 ============================================================
11:37:30.0803 0x0954 Scan finished
11:37:30.0803 0x0954 ============================================================
11:37:30.0810 0x0dfc Detected object count: 0
11:37:30.0810 0x0dfc Actual detected object count: 0
11:49:57.0412 0x073c Deinitialize success
#20
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 21 July 2014 - 11:01 AM
Sorry it's so long, but I did as instructed. Also I have a few concerns. Is this info shared between only you and I? It seems like a lot of this info is pretty sensitive. Also while I was copying and pasting I noticed something that said Swissarmy. I have no idea why I would have something like that. Is malware capable of downloading other malicious content? I hope my pc isn't being used to solicit illegal activities and hopefully something like "swissarmy" wont get me tagged as a terrorist or something equally as scary!
Edited by Divinusmortalis, 21 July 2014 - 11:03 AM.
#21
-
- Malware Team
-
- 5,574 posts
SuperHelper
Posted 21 July 2014 - 11:36 AM
Hi Divinusmortalis,
Remove Word Wrap in Notepad
- Click the Windows “Start” button.
- Enter “Notepad” into the search box and double-click the application from the list of search results that appears. The Notepad application opens.
- Click “Format” from the main menu in Notepad to display the formatting drop-down menu. You will see a check mark next to the words “Word Wrap,” which indicates that the Word Wrap feature is currently inserting line endings into your Notepad files.
- Click “Word Wrap” to remove line endings. The check mark that used to appear next to “Word Wrap” disappears, indicating that you have successfully disabled this feature and removed all line endings from your document.
=========================
Also I have a few concerns.
Is this info shared between only you and I? It seems like a lot of this info is pretty sensitive.
This information is posted on a public forum and is free for anyone who visits the forum to read.
Also while I was copying and pasting I noticed something that said Swissarmy. I have no idea why I would have something like that.
Here is information about MBAM SwissArmy - http://www.computerh...amswissarmy.sys
It is nothing to be concerned about.
Is malware capable of downloading other malicious content?
Yes
I hope my pc isn't being used to solicit illegal activities and hopefully something like "swissarmy" wont get me tagged as a terrorist or something equally as scary!
As mentioned above SwissArmy is not a malicious item. It is actually part of a malware removal tool.
=========================
So far you logs are looking better, let's continue. Re-run Farbar Recovery Scan Tool it should be on your desktop.
-
- Windows XP : Double click on the icon to run it.
- Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
- When the tool opens click Yes to disclaimer.
- Press Scan button.
- It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
=========================
In your next post please provide the following:
- FRST.txt
- How is the computer running?
Proud Graduate of WTT Classroom
Member of UNITE
Threads will be closed if no response after 5 days
If you are satisfied with the help you have received, please consider making a donation.
#22
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 21 July 2014 - 12:16 PM
I looked at the word wrap option and it was already unchecked if thats what you meant by the check mark disappearing. Not sure why it's inserting line endings into the files. I haven't noticed any ad web pages popping up for a while, but the youtube comments section still slides away from the video. I followed a firefox guide for making the browser faster as it is sluggish and says (not responding) often. Another good thing is that the speed of which text appears as I type is mostly instant rather than taking 5 or more second intervals. Updated extensions and disabled unnecessary ones. After I send you this txt, I'm going to update windows and my video card, I'm going to assume you'll agree that it's a good idea to do so.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2014
Ran by Chad (administrator) on CHAD-PC on 21-07-2014 12:49:27
Running from C:\Users\Chad\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
() C:\Program Files (x86)\WhatPulse2\whatpulse.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
==================== Registry (Whitelisted) ==================
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-07-15] (LogMeIn Inc.)
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)
HKU\S-1-5-21-768641754-322465483-2195619182-1001\...\Run: [WhatPulse] => C:\Program Files (x86)\WhatPulse2\whatpulse.exe [3054592 2014-04-17] ()
HKU\S-1-5-21-768641754-322465483-2195619182-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-06-16] (Glarysoft Ltd)
HKU\S-1-5-21-768641754-322465483-2195619182-1001\...\Policies\Explorer: [NofolderOptions] 0
HKU\S-1-5-21-768641754-322465483-2195619182-1001\...\MountPoints2: F - F:\Checker.exe
HKU\S-1-5-21-768641754-322465483-2195619182-1001\...\MountPoints2: {6084ac2d-4199-11e3-bf15-003067adf572} - F:\autorun.exe
HKU\S-1-5-21-768641754-322465483-2195619182-1001\...\MountPoints2: {ec01cbde-9f2f-11e2-84de-003067adf572} - F:\setup.exe /autorun
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk *
==================== Internet (Whitelisted) ====================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: Hosts file not detected in the default directory
FireFox:
========
FF ProfilePath: C:\Users\Chad\AppData\Roaming\Mozilla\Firefox\Profiles\3dpftn1q.default-1401063780864
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.65.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @IObit.com/np_Asc_Plugin - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\np_Asc_plugin.dll (IObit)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Chad\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Chad\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation)
FF Extension: United States English Spellchecker - C:\Users\Chad\AppData\Roaming\Mozilla\Firefox\Profiles\3dpftn1q.default-1401063780864\Extensions\en-US@dictionaries.addons.mozilla.org [2014-07-21]
FF Extension: No Name - C:\Users\Chad\AppData\Roaming\Mozilla\Firefox\Profiles\3dpftn1q.default-1401063780864\Extensions\staged [2014-07-21]
FF Extension: Adblock Plus - C:\Users\Chad\AppData\Roaming\Mozilla\Firefox\Profiles\3dpftn1q.default-1401063780864\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-27]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-07-07]
FF HKLM-x32\...\Firefox\Extensions: [DynamicPricer@dynamic-pricer.com] - C:\Users\Chad\AppData\Local\DynamicPricer\Firefox\DynamicPricer.xpi
FF Extension: DynamicPricer - C:\Users\Chad\AppData\Local\DynamicPricer\Firefox\DynamicPricer.xpi [2014-07-08]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-07-21]
Chrome:
=======
CHR HomePage:
CHR Extension: (Google Docs) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-16]
CHR Extension: (Google Drive) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-16]
CHR Extension: (YouTube) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-16]
CHR Extension: (Adblock Plus) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-19]
CHR Extension: (Google Search) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-16]
CHR Extension: (Norton Identity Protection) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-07-19]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-07-18]
CHR Extension: (Google Wallet) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-16]
CHR Extension: (Gmail) - C:\Users\Chad\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-16]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\Exts\Chrome.crx [2014-07-10]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2013-11-05]
==================== Services (Whitelisted) =================
S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-28] (Advanced Micro Devices, Inc.) [File not signed]
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-04-10] () [File not signed]
S4 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-05-31] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-14] (LogMeIn, Inc.)
S4 lxdn_device; C:\Windows\system32\lxdncoms.exe [1039872 2007-11-28] ( )
S4 lxdn_device; C:\Windows\SysWOW64\lxdncoms.exe [589824 2007-11-28] ( )
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-01] ()
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S2 MsMpSvc; "C:\Program Files\Microsoft Security Client\MsMpEng.exe" [X]
S3 NisSrv; "C:\Program Files\Microsoft Security Client\NisSrv.exe" [X]
==================== Drivers (Whitelisted) ====================
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140703.001\BHDrvx64.sys [1530160 2014-06-06] (Symantec Corporation)
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-16] (Glarysoft Ltd)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-05-17] (Disc Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-07] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142128 2014-07-07] (Symantec Corporation)
S4 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [38456 2013-02-11] (GFI Software)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-04-09] (GFI Software)
R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-05-20] (Glarysoft Ltd)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140718.001\IDSvia64.sys [525016 2014-07-03] (Symantec Corporation)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36568 2013-09-30] (IObit)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-10] (ManyCam LLC)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140721.001\ENG64.SYS [126040 2014-07-17] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140721.001\EX64.SYS [2099288 2014-07-17] (Symantec Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R1 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-03] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-07] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-16] (Anchorfree Inc.)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-07-21 12:49 - 2014-07-21 12:49 - 00000000 ____D () C:\Users\Chad\Desktop\FRST-OlderVersion
2014-07-21 12:18 - 2014-07-21 12:18 - 01080480 _____ (Unity Technologies ApS) C:\Users\Chad\Downloads\UnityWebPlayer.exe
2014-07-21 10:52 - 2014-07-21 11:11 - 00218675 _____ () C:\Users\Chad\Desktop\WhatTheTech.txt
2014-07-21 10:33 - 2014-07-21 10:33 - 00002960 _____ () C:\Users\Chad\Desktop\JRT.txt
2014-07-21 10:25 - 2014-07-21 10:25 - 00000000 ____D () C:\Windows\ERUNT
2014-07-21 10:17 - 2014-07-21 10:23 - 00007894 _____ () C:\Users\Chad\Desktop\AdwCl.txt
2014-07-21 10:17 - 2014-07-21 10:20 - 00000000 ____D () C:\AdwCleaner
2014-07-21 10:17 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-21 10:10 - 2014-07-21 10:09 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-21 10:09 - 2014-07-21 10:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-21 10:09 - 2014-07-21 10:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-21 10:09 - 2014-07-21 10:09 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-07-21 10:09 - 2014-07-21 10:09 - 00000000 _____ () C:\Windows\SysWOW64\REN6577.tmp
2014-07-21 10:09 - 2014-07-21 10:09 - 00000000 _____ () C:\Windows\SysWOW64\REN6566.tmp
2014-07-21 10:07 - 2014-07-21 10:07 - 31012264 _____ (Oracle Corporation) C:\Users\Chad\Downloads\jre-7u65-windows-x64.exe
2014-07-21 10:04 - 2014-07-21 10:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-21 09:57 - 2014-07-21 09:57 - 00000000 _____ () C:\Windows\SysWOW64\RENF5F3.tmp
2014-07-21 09:57 - 2014-07-21 09:57 - 00000000 _____ () C:\Windows\SysWOW64\RENF5F2.tmp
2014-07-21 09:55 - 2014-07-21 10:09 - 00000139 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-21 09:52 - 2014-07-21 09:52 - 00000168 _____ () C:\Users\Chad\defogger_reenable
2014-07-21 09:49 - 2014-07-21 09:52 - 00000540 _____ () C:\Users\Chad\Desktop\defogger_disable.log
2014-07-21 09:38 - 2014-07-21 09:38 - 01016261 _____ (Thisisu) C:\Users\Chad\Desktop\JRT.exe
2014-07-21 09:37 - 2014-07-21 09:37 - 01354223 _____ () C:\Users\Chad\Desktop\AdwCleaner.exe
2014-07-21 09:26 - 2014-07-21 09:26 - 00918440 _____ (Oracle Corporation) C:\Users\Chad\Downloads\jxpiinstall.exe
2014-07-21 09:21 - 2014-07-21 09:21 - 00050477 _____ () C:\Users\Chad\Desktop\Defogger.exe
2014-07-20 20:56 - 2014-07-20 20:57 - 00002050 _____ () C:\Users\Chad\Desktop\Half-Life - Copy (2).lnk
2014-07-20 20:49 - 2014-07-20 20:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sven Co-op
2014-07-20 20:41 - 2014-07-20 20:39 - 00002030 _____ () C:\Users\Chad\Desktop\Half-Life - Copy.lnk
2014-07-20 20:39 - 2014-07-20 20:39 - 00002030 _____ () C:\Users\Chad\Desktop\Half-Life.lnk
2014-07-20 19:51 - 2014-07-20 19:51 - 00000000 ____D () C:\Windows\pss
2014-07-20 19:44 - 2014-07-20 19:44 - 07527985 _____ () C:\Users\Chad\Desktop\HLparche.rar
2014-07-20 18:12 - 2014-07-20 18:12 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Afraid of Monsters Director's Cut
2014-07-20 17:45 - 2014-07-20 17:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Afraid of Monsters Director's Cut
2014-07-20 17:22 - 2014-07-20 20:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve
2014-07-20 17:03 - 2014-07-20 17:08 - 259496539 _____ () C:\Users\Chad\Downloads\AOMDC_install.exe
2014-07-20 17:03 - 2014-07-20 17:07 - 259496539 _____ () C:\Users\Chad\Downloads\AOMDC_install(1).exe
2014-07-20 16:41 - 2014-07-20 17:24 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Azureus
2014-07-20 16:41 - 2014-07-20 16:41 - 00000000 ____D () C:\Program Files\Vuze
2014-07-20 11:31 - 2014-07-20 11:31 - 00854390 _____ () C:\Users\Chad\Downloads\SecurityCheck(2).exe
2014-07-20 11:27 - 2014-07-20 11:27 - 02089984 _____ (Farbar) C:\Users\Chad\Downloads\FRST64(1).exe
2014-07-20 09:33 - 2014-07-20 09:33 - 00000551 _____ () C:\Users\Chad\Desktop\MBR.rar
2014-07-20 09:28 - 2014-07-20 09:29 - 00042239 _____ () C:\Users\Chad\Desktop\Addition.txt
2014-07-20 09:27 - 2014-07-20 09:27 - 00003440 _____ () C:\Users\Chad\Desktop\aswMBR.txt
2014-07-20 09:27 - 2014-07-20 09:27 - 00000512 _____ () C:\Users\Chad\Desktop\MBR.dat
2014-07-20 09:26 - 2014-07-21 12:49 - 00015695 _____ () C:\Users\Chad\Desktop\FRST.txt
2014-07-20 09:25 - 2014-07-21 12:49 - 00000000 ____D () C:\FRST
2014-07-20 09:24 - 2014-07-20 09:24 - 00854390 _____ () C:\Users\Chad\Downloads\SecurityCheck(1).exe
2014-07-20 09:23 - 2014-07-21 12:49 - 02090496 _____ (Farbar) C:\Users\Chad\Desktop\FRST64.exe
2014-07-20 08:49 - 2014-07-20 08:49 - 00854390 _____ () C:\Users\Chad\Downloads\SecurityCheck.exe
2014-07-19 16:10 - 2014-07-20 11:18 - 00873257 _____ () C:\Users\Chad\Documents\NBC2.dpp
2014-07-19 15:24 - 2014-07-19 15:24 - 00188239 _____ () C:\Users\Chad\Documents\NBC.dpp
2014-07-19 14:53 - 2014-07-19 14:53 - 00000000 ____D () C:\Users\Chad\AppData\Local\webkit
2014-07-19 14:48 - 2014-07-19 14:48 - 00000896 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-07-19 14:47 - 2014-07-19 14:48 - 00000000 ____D () C:\Program Files\GIMP 2
2014-07-19 14:46 - 2014-07-19 14:46 - 90396104 _____ (The GIMP Team ) C:\Users\Chad\Downloads\gimp-2.8.10-setup.exe
2014-07-19 13:24 - 2014-07-19 13:24 - 00000000 ____D () C:\Users\Chad\Documents\My Palettes
2014-07-19 13:24 - 2014-07-19 13:24 - 00000000 ____D () C:\Users\Chad\Documents\Corel
2014-07-19 13:23 - 2014-07-20 14:25 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Corel
2014-07-19 13:23 - 2014-07-19 13:23 - 00000000 ____D () C:\ProgramData\Protexis64
2014-07-19 13:05 - 2014-07-19 14:19 - 00000000 ____D () C:\ProgramData\CorelDRAW Graphics Suite X7 x64
2014-07-19 11:26 - 2014-07-19 11:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-19 09:55 - 2014-07-19 10:09 - 00007256 _____ () C:\Users\Chad\Downloads\hijackthis.log
2014-07-19 09:54 - 2014-07-19 09:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\Chad\Downloads\HijackThis.exe
2014-07-18 19:27 - 2014-07-21 10:22 - 00012130 _____ () C:\Windows\PFRO.log
2014-07-18 18:20 - 2014-07-18 18:21 - 00753184 _____ () C:\Users\Chad\Downloads\Adware-Removal-Tool-v3.9.1.exe
2014-07-18 17:23 - 2014-07-18 17:23 - 00323448 _____ (System Applet ) C:\Users\Chad\Downloads\Setup.exe
2014-07-18 17:17 - 2014-07-18 17:17 - 00000000 ____D () C:\NPE
2014-07-18 17:13 - 2014-07-18 19:28 - 00000000 ____D () C:\Users\Chad\AppData\Local\NPE
2014-07-18 15:20 - 2014-07-21 10:30 - 00002968 _____ () C:\Windows\setupact.log
2014-07-18 15:20 - 2014-07-18 15:20 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-11 12:00 - 2014-07-11 13:12 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\FreeFixer
2014-07-11 12:00 - 2014-07-11 13:12 - 00000000 ____D () C:\Users\Chad\AppData\Local\FreeFixer
2014-07-11 11:58 - 2014-07-11 11:58 - 02602023 _____ (Kephyr) C:\Users\Chad\Downloads\freefixersetup.exe
2014-07-11 11:28 - 2014-07-11 11:28 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Chad\Downloads\tdsskiller.exe
2014-07-11 08:56 - 2014-07-11 11:10 - 00067632 _____ (Symantec Corporation) C:\Windows\system32\msln.exe
2014-07-10 18:33 - 2014-07-10 18:33 - 27167987 _____ () C:\Users\Chad\Downloads\torbrowser-install-3.6.2_en-US.exe
2014-07-10 18:32 - 2014-07-10 20:12 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\tor
2014-07-10 16:16 - 2014-07-10 16:16 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-07-09 18:57 - 2014-07-09 18:58 - 109924088 _____ (Microsoft Corporation) C:\Users\Chad\Downloads\msert.exe
2014-07-09 11:54 - 2014-07-09 11:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Borderlands 2
2014-07-08 18:15 - 2014-07-21 10:27 - 00000000 ____D () C:\Users\Chad\AppData\Local\CrashDumps
2014-07-08 08:39 - 2014-07-11 11:26 - 00000000 ____D () C:\Users\Chad\AppData\Local\DynamicPricer
2014-07-07 14:57 - 2014-07-07 14:57 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-07-07 14:57 - 2014-07-07 14:57 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-07-07 14:57 - 2014-07-07 14:57 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-07-07 14:55 - 2014-07-18 17:15 - 00000000 ____D () C:\ProgramData\Norton
2014-07-07 14:55 - 2014-07-10 16:16 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-07-07 14:55 - 2014-07-10 16:16 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-07-07 14:55 - 2014-07-07 14:55 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2014-07-07 14:51 - 2014-07-07 14:52 - 204561264 ____N (Symantec Corporation) C:\Users\Chad\Downloads\NIS-TW-21.1.0-EN-US.exe
2014-07-06 10:27 - 2014-07-06 10:29 - 00000000 ____D () C:\Program Files (x86)\Heroes of Might and Magic 3 Complete
2014-07-04 21:09 - 2014-07-19 14:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox.bak
2014-07-01 19:52 - 2014-07-01 19:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Lords MMXII
2014-07-01 19:38 - 2014-07-01 19:38 - 00000000 ____D () C:\Program Files (x86)\Nordic Games
2014-07-01 12:13 - 2014-07-01 12:13 - 00001149 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-07-01 12:13 - 2014-07-01 12:13 - 00001149 _____ () C:\ProgramData\Desktop\Mozilla Firefox.lnk
2014-07-01 11:44 - 2014-07-01 11:44 - 01915800 _____ () C:\Users\Chad\Downloads\WinRAR_(64bit)_v5.10.exe
2014-07-01 11:40 - 2014-07-01 12:45 - 00003162 _____ () C:\Windows\System32\Tasks\SmartDefrag3_Update
2014-07-01 11:35 - 2014-07-01 11:35 - 32193008 _____ () C:\Users\Chad\Downloads\Mozilla_Firefox_v31.0_Beta_4.exe
2014-07-01 11:30 - 2014-07-17 12:46 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-01 11:06 - 2014-06-16 02:27 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-06-30 15:59 - 2014-06-30 15:59 - 00000000 ____D () C:\Users\Chad\Desktop\ppsspp_win
2014-06-29 17:34 - 2014-06-29 17:34 - 00000000 ____D () C:\Users\Chad\Desktop\PDFs
2014-06-29 10:37 - 2014-06-29 10:37 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-06-28 21:23 - 2014-06-28 21:23 - 00000000 ____D () C:\Users\Chad\Desktop\Rogue Trader
2014-06-28 21:20 - 2014-07-17 16:29 - 00000000 ____D () C:\Users\Chad\Desktop\RARs
2014-06-28 12:12 - 2014-06-28 12:13 - 00004430 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-06-26 17:07 - 2014-07-21 12:30 - 00240374 _____ () C:\Windows\WindowsUpdate.log
2014-06-23 13:51 - 2014-07-07 14:55 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Lavasoft
2014-06-23 13:50 - 2014-06-23 13:50 - 00000000 ____D () C:\Program Files\Lavasoft
2014-06-23 13:48 - 2014-06-23 13:48 - 00000000 ____D () C:\ProgramData\Lavasoft
==================== One Month Modified Files and Folders =======
2014-07-21 12:50 - 2014-07-20 09:26 - 00015695 _____ () C:\Users\Chad\Desktop\FRST.txt
2014-07-21 12:49 - 2014-07-21 12:49 - 00000000 ____D () C:\Users\Chad\Desktop\FRST-OlderVersion
2014-07-21 12:49 - 2014-07-20 09:25 - 00000000 ____D () C:\FRST
2014-07-21 12:49 - 2014-07-20 09:23 - 02090496 _____ (Farbar) C:\Users\Chad\Desktop\FRST64.exe
2014-07-21 12:49 - 2014-04-10 10:52 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-21 12:48 - 2014-06-26 17:07 - 00240374 _____ () C:\Windows\WindowsUpdate.log
2014-07-21 12:44 - 2014-04-16 16:23 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-21 12:42 - 2014-04-25 20:16 - 00000000 ____D () C:\Users\Chad\AppData\Local\WhatPulse
2014-07-21 12:40 - 2014-04-25 20:16 - 00000000 ____D () C:\Program Files (x86)\WhatPulse2
2014-07-21 12:34 - 2013-04-07 13:02 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Skype
2014-07-21 12:34 - 2009-07-13 23:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-21 12:34 - 2009-07-13 23:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-21 12:18 - 2014-07-21 12:18 - 01080480 _____ (Unity Technologies ApS) C:\Users\Chad\Downloads\UnityWebPlayer.exe
2014-07-21 11:11 - 2014-07-21 10:52 - 00218675 _____ () C:\Users\Chad\Desktop\WhatTheTech.txt
2014-07-21 10:33 - 2014-07-21 10:33 - 00002960 _____ () C:\Users\Chad\Desktop\JRT.txt
2014-07-21 10:30 - 2014-07-18 15:20 - 00002968 _____ () C:\Windows\setupact.log
2014-07-21 10:27 - 2014-07-08 18:15 - 00000000 ____D () C:\Users\Chad\AppData\Local\CrashDumps
2014-07-21 10:25 - 2014-07-21 10:25 - 00000000 ____D () C:\Windows\ERUNT
2014-07-21 10:23 - 2014-07-21 10:17 - 00007894 _____ () C:\Users\Chad\Desktop\AdwCl.txt
2014-07-21 10:22 - 2014-07-18 19:27 - 00012130 _____ () C:\Windows\PFRO.log
2014-07-21 10:22 - 2014-05-20 16:05 - 00000330 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2014-07-21 10:22 - 2014-04-16 16:23 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-21 10:22 - 2013-04-08 13:20 - 00000000 ____D () C:\Users\Chad\AppData\Local\LogMeIn Hamachi
2014-07-21 10:22 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-21 10:20 - 2014-07-21 10:17 - 00000000 ____D () C:\AdwCleaner
2014-07-21 10:20 - 2013-05-13 11:08 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-07-21 10:15 - 2014-05-19 13:49 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-07-21 10:13 - 2009-07-13 22:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-07-21 10:09 - 2014-07-21 10:10 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-21 10:09 - 2014-07-21 10:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-21 10:09 - 2014-07-21 10:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-21 10:09 - 2014-07-21 10:09 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-07-21 10:09 - 2014-07-21 10:09 - 00000000 _____ () C:\Windows\SysWOW64\REN6577.tmp
2014-07-21 10:09 - 2014-07-21 10:09 - 00000000 _____ () C:\Windows\SysWOW64\REN6566.tmp
2014-07-21 10:09 - 2014-07-21 09:55 - 00000139 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-21 10:09 - 2013-10-19 22:07 - 00000000 ____D () C:\Program Files\Java
2014-07-21 10:09 - 2013-08-22 20:56 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-21 10:07 - 2014-07-21 10:07 - 31012264 _____ (Oracle Corporation) C:\Users\Chad\Downloads\jre-7u65-windows-x64.exe
2014-07-21 10:04 - 2014-07-21 10:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-21 09:57 - 2014-07-21 09:57 - 00000000 _____ () C:\Windows\SysWOW64\RENF5F3.tmp
2014-07-21 09:57 - 2014-07-21 09:57 - 00000000 _____ () C:\Windows\SysWOW64\RENF5F2.tmp
2014-07-21 09:52 - 2014-07-21 09:52 - 00000168 _____ () C:\Users\Chad\defogger_reenable
2014-07-21 09:52 - 2014-07-21 09:49 - 00000540 _____ () C:\Users\Chad\Desktop\defogger_disable.log
2014-07-21 09:52 - 2013-04-06 17:13 - 00000000 ____D () C:\Users\Chad
2014-07-21 09:47 - 2013-12-01 17:08 - 00000000 ___RD () C:\Users\Chad\Desktop\Prog. Shortcuts
2014-07-21 09:47 - 2013-06-18 12:52 - 00000000 ____D () C:\Users\Chad\Desktop\Game shortcuts
2014-07-21 09:38 - 2014-07-21 09:38 - 01016261 _____ (Thisisu) C:\Users\Chad\Desktop\JRT.exe
2014-07-21 09:37 - 2014-07-21 09:37 - 01354223 _____ () C:\Users\Chad\Desktop\AdwCleaner.exe
2014-07-21 09:26 - 2014-07-21 09:26 - 00918440 _____ (Oracle Corporation) C:\Users\Chad\Downloads\jxpiinstall.exe
2014-07-21 09:21 - 2014-07-21 09:21 - 00050477 _____ () C:\Users\Chad\Desktop\Defogger.exe
2014-07-20 20:57 - 2014-07-20 20:56 - 00002050 _____ () C:\Users\Chad\Desktop\Half-Life - Copy (2).lnk
2014-07-20 20:50 - 2014-07-20 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sven Co-op
2014-07-20 20:39 - 2014-07-20 20:41 - 00002030 _____ () C:\Users\Chad\Desktop\Half-Life - Copy.lnk
2014-07-20 20:39 - 2014-07-20 20:39 - 00002030 _____ () C:\Users\Chad\Desktop\Half-Life.lnk
2014-07-20 20:39 - 2014-07-20 17:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve
2014-07-20 20:38 - 2013-09-05 15:57 - 00000000 ____D () C:\Program Files (x86)\Valve
2014-07-20 20:28 - 2013-08-24 10:21 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-20 19:51 - 2014-07-20 19:51 - 00000000 ____D () C:\Windows\pss
2014-07-20 19:44 - 2014-07-20 19:44 - 07527985 _____ () C:\Users\Chad\Desktop\HLparche.rar
2014-07-20 18:12 - 2014-07-20 18:12 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Afraid of Monsters Director's Cut
2014-07-20 17:46 - 2014-07-20 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Afraid of Monsters Director's Cut
2014-07-20 17:24 - 2014-07-20 16:41 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Azureus
2014-07-20 17:08 - 2014-07-20 17:03 - 259496539 _____ () C:\Users\Chad\Downloads\AOMDC_install.exe
2014-07-20 17:07 - 2014-07-20 17:03 - 259496539 _____ () C:\Users\Chad\Downloads\AOMDC_install(1).exe
2014-07-20 16:41 - 2014-07-20 16:41 - 00001796 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
2014-07-20 16:41 - 2014-07-20 16:41 - 00000000 ____D () C:\Program Files\Vuze
2014-07-20 16:00 - 2014-07-20 16:00 - 00072008 _____ (Azureus Software, Inc.) C:\Users\Chad\Downloads\VuzeBittorrentClientInstaller.exe
2014-07-20 14:31 - 2014-06-15 00:46 - 00000000 ____D () C:\Program Files (x86)\Mount&Blade - Warband
2014-07-20 14:31 - 2013-06-26 16:03 - 00000000 ____D () C:\Program Files (x86)\GOG.com
2014-07-20 14:31 - 2013-04-23 16:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2014-07-20 14:30 - 2013-07-16 14:54 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Mount&Blade Warband
2014-07-20 14:30 - 2013-07-15 22:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
2014-07-20 14:29 - 2013-06-25 10:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-07-20 14:29 - 2013-05-15 21:55 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-07-20 14:29 - 2013-04-15 22:17 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-20 14:28 - 2013-07-31 10:48 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-07-20 14:27 - 2014-04-23 14:11 - 00000000 ____D () C:\ProgramData\Battle.net
2014-07-20 14:25 - 2014-07-19 13:23 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Corel
2014-07-20 14:25 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-07-20 14:18 - 2011-04-12 03:28 - 00000000 ____D () C:\Windows\ShellNew
2014-07-20 11:31 - 2014-07-20 11:31 - 00854390 _____ () C:\Users\Chad\Downloads\SecurityCheck(2).exe
2014-07-20 11:27 - 2014-07-20 11:27 - 02089984 _____ (Farbar) C:\Users\Chad\Downloads\FRST64(1).exe
2014-07-20 11:18 - 2014-07-19 16:10 - 00873257 _____ () C:\Users\Chad\Documents\NBC2.dpp
2014-07-20 09:33 - 2014-07-20 09:33 - 00000551 _____ () C:\Users\Chad\Desktop\MBR.rar
2014-07-20 09:29 - 2014-07-20 09:28 - 00042239 _____ () C:\Users\Chad\Desktop\Addition.txt
2014-07-20 09:27 - 2014-07-20 09:27 - 00003440 _____ () C:\Users\Chad\Desktop\aswMBR.txt
2014-07-20 09:27 - 2014-07-20 09:27 - 00000512 _____ () C:\Users\Chad\Desktop\MBR.dat
2014-07-20 09:24 - 2014-07-20 09:24 - 00854390 _____ () C:\Users\Chad\Downloads\SecurityCheck(1).exe
2014-07-20 08:49 - 2014-07-20 08:49 - 00854390 _____ () C:\Users\Chad\Downloads\SecurityCheck.exe
2014-07-20 08:26 - 2013-11-05 13:48 - 00000000 ____D () C:\ProgramData\ProductData
2014-07-19 16:12 - 2014-01-27 03:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-19 16:12 - 2009-07-13 23:45 - 05156776 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-19 15:24 - 2014-07-19 15:24 - 00188239 _____ () C:\Users\Chad\Documents\NBC.dpp
2014-07-19 15:02 - 2013-05-06 15:09 - 00000000 ____D () C:\Users\Chad\.gimp-2.8
2014-07-19 14:53 - 2014-07-19 14:53 - 00000000 ____D () C:\Users\Chad\AppData\Local\webkit
2014-07-19 14:48 - 2014-07-19 14:48 - 00000896 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-07-19 14:48 - 2014-07-19 14:47 - 00000000 ____D () C:\Program Files\GIMP 2
2014-07-19 14:46 - 2014-07-19 14:46 - 90396104 _____ (The GIMP Team ) C:\Users\Chad\Downloads\gimp-2.8.10-setup.exe
2014-07-19 14:44 - 2014-07-04 21:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox.bak
2014-07-19 14:19 - 2014-07-19 13:05 - 00000000 ____D () C:\ProgramData\CorelDRAW Graphics Suite X7 x64
2014-07-19 13:24 - 2014-07-19 13:24 - 00000000 ____D () C:\Users\Chad\Documents\My Palettes
2014-07-19 13:24 - 2014-07-19 13:24 - 00000000 ____D () C:\Users\Chad\Documents\Corel
2014-07-19 13:24 - 2013-04-06 21:39 - 00145968 _____ () C:\Users\Chad\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-19 13:23 - 2014-07-19 13:23 - 00000000 ____D () C:\ProgramData\Protexis64
2014-07-19 13:19 - 2013-08-24 10:17 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-19 11:27 - 2014-07-19 11:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-19 10:09 - 2014-07-19 09:55 - 00007256 _____ () C:\Users\Chad\Downloads\hijackthis.log
2014-07-19 09:54 - 2014-07-19 09:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\Chad\Downloads\HijackThis.exe
2014-07-18 20:41 - 2014-03-20 17:43 - 00000000 ____D () C:\Users\Chad\Desktop\Tor Browser
2014-07-18 19:28 - 2014-07-18 17:13 - 00000000 ____D () C:\Users\Chad\AppData\Local\NPE
2014-07-18 19:27 - 2009-07-14 00:08 - 00032614 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-18 18:22 - 2014-05-31 17:52 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subinacl.exe
2014-07-18 18:22 - 2014-05-31 17:52 - 00000000 ____D () C:\Program Files\Adware-Removal-Tool
2014-07-18 18:21 - 2014-07-18 18:20 - 00753184 _____ () C:\Users\Chad\Downloads\Adware-Removal-Tool-v3.9.1.exe
2014-07-18 17:23 - 2014-07-18 17:23 - 00323448 _____ (System Applet ) C:\Users\Chad\Downloads\Setup.exe
2014-07-18 17:17 - 2014-07-18 17:17 - 00000000 ____D () C:\NPE
2014-07-18 17:15 - 2014-07-07 14:55 - 00000000 ____D () C:\ProgramData\Norton
2014-07-18 15:20 - 2014-07-18 15:20 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-18 13:14 - 2013-04-06 22:36 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\DAEMON Tools Lite
2014-07-17 16:29 - 2014-06-28 21:20 - 00000000 ____D () C:\Users\Chad\Desktop\RARs
2014-07-17 14:51 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-17 14:26 - 2009-07-14 00:13 - 00796870 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-17 12:46 - 2014-07-01 11:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-17 12:46 - 2013-11-05 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-12 21:10 - 2009-07-13 21:34 - 00001217 _____ () C:\Windows\system32\Drivers\etc\hosts.old
2014-07-11 13:13 - 2013-04-23 16:39 - 00000000 ____D () C:\GOG Games
2014-07-11 13:13 - 2013-04-06 23:06 - 00000000 ____D () C:\Users\Chad\Documents\My Games
2014-07-11 13:12 - 2014-07-11 12:00 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\FreeFixer
2014-07-11 13:12 - 2014-07-11 12:00 - 00000000 ____D () C:\Users\Chad\AppData\Local\FreeFixer
2014-07-11 13:12 - 2009-07-14 00:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-11 12:41 - 2014-06-08 18:17 - 00000000 ____D () C:\Program Files (x86)\GetPrivate
2014-07-11 11:58 - 2014-07-11 11:58 - 02602023 _____ (Kephyr) C:\Users\Chad\Downloads\freefixersetup.exe
2014-07-11 11:28 - 2014-07-11 11:28 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Chad\Downloads\tdsskiller.exe
2014-07-11 11:26 - 2014-07-08 08:39 - 00000000 ____D () C:\Users\Chad\AppData\Local\DynamicPricer
2014-07-11 11:12 - 2014-06-08 18:17 - 00003470 _____ () C:\Windows\System32\Tasks\GPUpdateCheck
2014-07-11 11:10 - 2014-07-11 08:56 - 00067632 _____ (Symantec Corporation) C:\Windows\system32\msln.exe
2014-07-10 20:12 - 2014-07-10 18:32 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\tor
2014-07-10 18:53 - 2013-06-19 22:28 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\vlc
2014-07-10 18:33 - 2014-07-10 18:33 - 27167987 _____ () C:\Users\Chad\Downloads\torbrowser-install-3.6.2_en-US.exe
2014-07-10 16:16 - 2014-07-10 16:16 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-07-10 16:16 - 2014-07-07 14:55 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-07-10 16:16 - 2014-07-07 14:55 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-07-10 13:48 - 2014-04-10 10:52 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-10 13:48 - 2013-09-23 20:48 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-10 13:48 - 2013-09-23 20:48 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-09 18:58 - 2014-07-09 18:57 - 109924088 _____ (Microsoft Corporation) C:\Users\Chad\Downloads\msert.exe
2014-07-09 11:54 - 2014-07-09 11:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Borderlands 2
2014-07-09 11:38 - 2011-03-02 00:10 - 00000000 ____D () C:\Games
2014-07-07 14:57 - 2014-07-07 14:57 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-07-07 14:57 - 2014-07-07 14:57 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-07-07 14:57 - 2014-07-07 14:57 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-07-07 14:56 - 2013-04-09 16:40 - 00000000 ____D () C:\ProgramData\Ad-Aware Antivirus
2014-07-07 14:56 - 2013-04-09 15:52 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Ad-Aware Antivirus
2014-07-07 14:55 - 2014-07-07 14:55 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2014-07-07 14:55 - 2014-06-23 13:51 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Lavasoft
2014-07-07 14:52 - 2014-07-07 14:51 - 204561264 ____N (Symantec Corporation) C:\Users\Chad\Downloads\NIS-TW-21.1.0-EN-US.exe
2014-07-06 10:29 - 2014-07-06 10:27 - 00000000 ____D () C:\Program Files (x86)\Heroes of Might and Magic 3 Complete
2014-07-01 19:52 - 2014-07-01 19:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dungeon Lords MMXII
2014-07-01 19:38 - 2014-07-01 19:38 - 00000000 ____D () C:\Program Files (x86)\Nordic Games
2014-07-01 12:45 - 2014-07-01 11:40 - 00003162 _____ () C:\Windows\System32\Tasks\SmartDefrag3_Update
2014-07-01 12:45 - 2014-04-29 15:08 - 00002980 _____ () C:\Windows\System32\Tasks\{3C37BC52-012E-452C-9E5F-A241D6398790}
2014-07-01 12:45 - 2014-04-29 15:06 - 00002980 _____ () C:\Windows\System32\Tasks\{A1D4A5D4-96F3-48B7-90D1-57BA0C448BAD}
2014-07-01 12:45 - 2014-04-16 16:23 - 00003900 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-07-01 12:45 - 2014-04-16 16:23 - 00003648 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-07-01 12:45 - 2013-10-24 23:06 - 00003170 _____ () C:\Windows\System32\Tasks\{CA2FF5C2-9677-4F36-86D1-BB48FD1EE672}
2014-07-01 12:45 - 2013-05-22 01:56 - 00002914 _____ () C:\Windows\System32\Tasks\{1D7AEF4F-14FC-4E32-B1BD-943513AA4278}
2014-07-01 12:45 - 2013-04-09 18:33 - 00004318 _____ () C:\Windows\System32\Tasks\Ad-Aware Antivirus Scheduled Scan
2014-07-01 12:44 - 2014-05-20 16:05 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2014-07-01 12:29 - 2013-04-06 22:22 - 00000000 ____D () C:\Program Files\WinRAR
2014-07-01 12:16 - 2013-09-18 16:02 - 00000000 ____D () C:\Program Files (x86)\Total War ROME II
2014-07-01 12:13 - 2014-07-01 12:13 - 00001149 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-07-01 12:13 - 2014-07-01 12:13 - 00001149 _____ () C:\ProgramData\Desktop\Mozilla Firefox.lnk
2014-07-01 12:13 - 2014-01-27 03:49 - 00001161 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-01 11:44 - 2014-07-01 11:44 - 01915800 _____ () C:\Users\Chad\Downloads\WinRAR_(64bit)_v5.10.exe
2014-07-01 11:44 - 2013-04-06 22:22 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-07-01 11:44 - 2013-04-06 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-07-01 11:40 - 2014-01-07 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3
2014-07-01 11:36 - 2013-05-22 14:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-01 11:36 - 2013-05-22 14:12 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-01 11:35 - 2014-07-01 11:35 - 32193008 _____ () C:\Users\Chad\Downloads\Mozilla_Firefox_v31.0_Beta_4.exe
2014-07-01 11:06 - 2014-05-20 16:05 - 00002622 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2014-07-01 11:06 - 2014-05-20 16:05 - 00001094 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2014-07-01 11:03 - 2014-06-07 14:10 - 00000234 _____ () C:\BackupLoader.ini
2014-06-30 15:59 - 2014-06-30 15:59 - 00000000 ____D () C:\Users\Chad\Desktop\ppsspp_win
2014-06-29 17:34 - 2014-06-29 17:34 - 00000000 ____D () C:\Users\Chad\Desktop\PDFs
2014-06-29 12:47 - 2014-01-05 23:10 - 00000000 ____D () C:\ProgramData\Tunngle
2014-06-29 12:47 - 2013-05-15 21:45 - 00000000 ____D () C:\Users\Chad\AppData\Roaming\Tunngle
2014-06-29 10:37 - 2014-06-29 10:37 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-06-28 21:24 - 2013-04-15 00:21 - 00000000 ____D () C:\Users\Chad\Desktop\Derps
2014-06-28 21:23 - 2014-06-28 21:23 - 00000000 ____D () C:\Users\Chad\Desktop\Rogue Trader
2014-06-28 21:23 - 2013-07-21 17:54 - 00000000 ___RD () C:\Users\Chad\Desktop\text docs
2014-06-28 21:20 - 2013-09-08 20:30 - 00000000 ___RD () C:\Users\Chad\Desktop\My pics
2014-06-28 12:13 - 2014-06-28 12:12 - 00004430 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-06-28 12:13 - 2014-03-24 17:34 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-23 13:50 - 2014-06-23 13:50 - 00000000 ____D () C:\Program Files\Lavasoft
2014-06-23 13:48 - 2014-06-23 13:48 - 00000000 ____D () C:\ProgramData\Lavasoft
Some content of TEMP:
====================
C:\Users\Chad\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2013-11-11 04:23
==================== End Of Log ============================
#23
-
- Malware Team
-
- 5,574 posts
SuperHelper
Posted 21 July 2014 - 03:20 PM
Hi Divinusmortalis,
I followed a firefox guide for making the browser faster as it is sluggish and says (not responding) often. Another good thing is that the speed of which text appears as I type is mostly instant rather than taking 5 or more second intervals. Updated extensions and disabled unnecessary ones. After I send you this txt, I'm going to update windows and my video card, I'm going to assume you'll agree that it's a good idea to do so.
Please refer back to my introduction paragraph > > http://forums.whatth...ndpost&p=852008
Specifically > > > IMPORTANT NOTE : Please do not delete, download or install anything unless instructed to do so.
=========================
but the youtube comments section still slides away from the video.
- Which browser does this occur in?
- Have you tried a different browser?
========================= Malwarebytes' Anti-Malware
Download Malwarebytes' Anti-Malware (save it to your desktop).
-
- Windows XP : Double click on the icon to run it.
- Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
- Select Scan tab.
- Select type of scan to perform:
- Threat Scan < --- Select this type of scan
- Custom Scan
- Hyper Scan
- Next click the Scan button.
- When the scan is complete, if no malicious items are found you can close the program.
- If malicious items are found be sure that everything is checked, and click Quarantine .
- When completed, a log will open in Notepad. Please save it to a convenient location and post the results.
- Note: If you receive a notice that some of the items couldn't be removed, that they have been added to the delete on reboot list, please reboot.
========================= ESET Online Scanner
*Note:
- It is recommended to disable on-board antivirus program and anti-spyware programs while performing scans so there are no conflicts and it will speed up scan time.
- Please don't go surfing while your resident protection is disabled!
- Once the scan is finished remember to re-enable your antivirus along with your anti-spyware programs.
** You need to run your browser with Administrator Rights, to do so right click your browsers short cut and select "Run as Administrator".
= = = = = = = = = = = = = = = = = = = =
Go here to run ESET Online Scanner
(Note: You can use Internet Explorer or FireFox for this scan. If you use FireFox you will be asked to install an additional component. Please allow this.)
- Tick the box next to YES, I accept the Terms of Use.
- Click Start
- When asked, allow the activex control to install
- Disable your Antivirus software. You can usually do this with its Notification Tray icon near the clock
- Click Start
- Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is Checked.
- Click Scan.
- Wait for the scan to finish.
- When the scan completes, click List of found threats
- click Export to Text file and save the file to your desktop using a unique name, such as ESETScan.
- Include the contents of this report in your next reply
Note - when ESET doesn't find any threats, no report will be created. - Push the back button.
- Push Finish
- Re-enable your Antivirus software.
=========================
In your next post please provide the following:
- MBAM log
- ESET's log.txt
- Any change in performance?
Proud Graduate of WTT Classroom
Member of UNITE
Threads will be closed if no response after 5 days
If you are satisfied with the help you have received, please consider making a donation.
#24
-
- Malware Team
-
- 5,574 posts
SuperHelper
Posted 24 July 2014 - 08:26 PM
Just checking in to see if you still need help?
Proud Graduate of WTT Classroom
Member of UNITE
Threads will be closed if no response after 5 days
If you are satisfied with the help you have received, please consider making a donation.
#25
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 25 July 2014 - 11:05 AM
I really appreciate the help. The symptoms I was having are gone and the programs you told me to use seemed to have done the trick. Sorry I lost contact for a bit, my health is in decline due to my disability so I'm planning donation stuff on gofundme to be able to go out of state to see specialists and all that. Since I'm not worried about my computer being compromised, I'm able to input sensitive information on secure websites. I would donate to your site if I could, but I don't work, however, I do wish you and your team the best of luck. Your patience really paid off for me and I thank you.
Register to Remove
#26
-
- Malware Team
-
- 5,574 posts
SuperHelper
Posted 25 July 2014 - 07:27 PM
Hi Divinusmortalis,
It's important that you follow through with the remainder of the steps I have/will outline. Absence of symptoms doesn't necessarily translate into malware free. We are making progress so please stay with me until I give you the "all clean" sign. 
Proud Graduate of WTT Classroom
Member of UNITE
Threads will be closed if no response after 5 days
If you are satisfied with the help you have received, please consider making a donation.
#27
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 26 July 2014 - 11:30 AM
Oh shoot, MB said it was going to log my scan results so I restarted without saving it to a document first. I looked up how to locate MB logs but the folder was empty. I still have stuff in quarantine but I dont know how to get a log out of that. I really apologize. =( The ESET log will take a while.
#28
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 26 July 2014 - 11:42 AM
By looking at the location of the quarantine destination on the history of scanning, I found the folder, however they are in weird formats. Do you recommend trying to convert the format to .txt? Alternatively, I can restore whats quarantined, rescan, save that to a doc and copy paste
Edited by Divinusmortalis, 26 July 2014 - 11:55 AM.
#29
-
- Malware Team
-
- 5,574 posts
SuperHelper
Posted 26 July 2014 - 07:37 PM
Hi Divinusmortalis, Open MBAM and locate the History Tab and click it
In the left hand menu locate Application Logs and select it.
Locate the most recent Scan Log and place a check mark in the box next to it and select the View Button.
Note: Make sure the background color of the log you selected has a blueish tint to it, like the image below indicates.
In the Scanning History Log, locate the Copy to Clipboard at the bottom of the GUI, and select it. The log file is now waiting to be pasted into a notepad document or directly into the forum's reply window.
Click OK to close
Post the logs when you have both MBAM & ESET
Proud Graduate of WTT Classroom
Member of UNITE
Threads will be closed if no response after 5 days
If you are satisfied with the help you have received, please consider making a donation.
#30
-
- Authentic Member
-
- 22 posts
Authentic Member
Posted 26 July 2014 - 11:18 PM
My apologies about the multipost. ESET is clear. Here's MBAM
Update, 7/26/2014 10:36:47 AM, SYSTEM, CHAD-PC, Manual, Rootkit Database, 2014.2.20.1, 2014.7.17.1,
Update, 7/26/2014 10:41:17 AM, SYSTEM, CHAD-PC, Manual, Malware Database, 2014.3.4.9, 2014.7.26.6,
Protection, 7/26/2014 10:41:25 AM, SYSTEM, CHAD-PC, Protection, Refresh, Starting,
Protection, 7/26/2014 10:41:30 AM, SYSTEM, CHAD-PC, Protection, Refresh, Success,
Update, 7/26/2014 12:11:21 PM, SYSTEM, CHAD-PC, Scheduler, Malware Database, 2014.7.26.6, 2014.7.26.8,
Protection, 7/26/2014 12:11:24 PM, SYSTEM, CHAD-PC, Protection, Refresh, Starting,
Protection, 7/26/2014 12:12:57 PM, SYSTEM, CHAD-PC, Protection, Refresh, Success,
Protection, 7/26/2014 12:52:11 PM, SYSTEM, CHAD-PC, Protection, Malware Protection, Stopping,
Protection, 7/26/2014 12:54:54 PM, SYSTEM, CHAD-PC, Protection, Malware Protection, Stopped,
Update, 7/26/2014 9:14:56 PM, SYSTEM, CHAD-PC, Scheduler, Malware Database, 2014.7.26.8, 2014.7.27.2,
Protection, 7/26/2014 9:14:58 PM, SYSTEM, CHAD-PC, Protection, Refresh, Starting,
Protection, 7/26/2014 9:15:03 PM, SYSTEM, CHAD-PC, Protection, Refresh, Success,
Update, 7/26/2014 11:41:34 PM, SYSTEM, CHAD-PC, Scheduler, Malware Database, 2014.7.27.2, 2014.7.27.3,
Protection, 7/26/2014 11:41:42 PM, SYSTEM, CHAD-PC, Protection, Refresh, Starting,
Protection, 7/26/2014 11:41:47 PM, SYSTEM, CHAD-PC, Protection, Refresh, Success,
This doesnt show whats in my quarantine list, really. Dynamic Pricer shows up often. So does C:\Users\<name>\AppData\Local\Google\Chrome\Userdata\Default\Extensions\ then a long combo of letters.
Also tagged with one or more of these keywords: Maleware, scanners wont find, browser, tab, popups, expanding, pages, highjack
![very stubborn browser hijack! [Closed] - last post by ken545](https://forums.whatthetech.com/uploads/profile/photo-19436.gif?_r=1383237793)
![Istartsurf browser hijacker [Solved] - last post by Satchfan](https://forums.whatthetech.com/uploads/av-80323.png?_r=0)
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
