Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop-up Ads on websites & other weird behaviour


  • Please log in to reply
17 replies to this topic

#1 ferozpatel_1

ferozpatel_1

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 12 March 2014 - 01:49 PM

Operating System (OS): Windows 7 Home Premium Service Pack 1 (64-bit)

 

My laptop is showing signs of strange behaviour.

 

Firstly, pop-up ads and other links appear on almost every website. Sometimes, my Hotmail account doesn't work properly. Also, the page occassionally keeps scrolling to a random place without any warning,

 

I would like to know if my laptop is infected and if so, please guide me in cleaning everything. Thank you.



BC AdBot (Login to Remove)

 


#2 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:43 AM

Posted 12 March 2014 - 01:53 PM

Download Minitoolbox - http://www.bleepingcomputer.com/download/minitoolbox/

Start the application.Set ticks everywhere.Click GO button.After scan is done a log will appear.Save and attach it here.



#3 ferozpatel_1

ferozpatel_1
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 13 March 2014 - 01:59 PM

Here are the contents of the log:

 

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by user (administrator) on 13-03-2014 at 18:55:14
Running from "C:\Users\user\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


54.204.28.26    hiekeoginmmnpgbpafghcfbdmfpomaje

========================= IP Configuration: ================================

Atheros AR5B95 Wireless Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Ethernet = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : user-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Mixed
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : F2-DF-9A-43-06-B9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetLink ™ Ethernet
   Physical Address. . . . . . . . . : B8-70-F4-A2-00-48
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR5B95 Wireless Network Adapter
   Physical Address. . . . . . . . . : D0-DF-9A-43-06-B9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::b19e:4b78:3fa6:4acb%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.102(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 13 March 2014 17:10:54
   Lease Expires . . . . . . . . . . : 13 March 2014 20:26:04
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 186410397
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-98-55-82-B8-70-F4-A2-00-48
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{EAB8A094-E1D1-4996-B353-970E4E485E96}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{BBBA15E5-9F11-415D-A715-2FC1829CEE26}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{1AB04C5A-1AAB-425E-974D-18A96B02DCC5}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:181f:37c5:3f57:fe99(Preferred)
   Link-local IPv6 Address . . . . . : fe80::181f:37c5:3f57:fe99%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2a00:1450:4009:802::1005
      173.194.34.78
      173.194.34.70
      173.194.34.66
      173.194.34.64
      173.194.34.71
      173.194.34.73
      173.194.34.67
      173.194.34.69
      173.194.34.72
      173.194.34.68
      173.194.34.65


Pinging google.com [173.194.34.70] with 32 bytes of data:
Reply from 173.194.34.70: bytes=32 time=15ms TTL=53
Reply from 173.194.34.70: bytes=32 time=18ms TTL=53

Ping statistics for 173.194.34.70:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 15ms, Maximum = 18ms, Average = 16ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=136ms TTL=46
Reply from 98.138.253.109: bytes=32 time=153ms TTL=46

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 136ms, Maximum = 153ms, Average = 144ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...f2 df 9a 43 06 b9 ......Microsoft Virtual WiFi Miniport Adapter
 12...b8 70 f4 a2 00 48 ......Broadcom NetLink ™ Ethernet
 11...d0 df 9a 43 06 b9 ......Atheros AR5B95 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.102     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.102    281
    192.168.1.102  255.255.255.255         On-link     192.168.1.102    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.102    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.102    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.102    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:5ef5:79fd:181f:37c5:3f57:fe99/128
                                    On-link
 11    281 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::181f:37c5:3f57:fe99/128
                                    On-link
 11    281 fe80::b19e:4b78:3fa6:4acb/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/12/2014 05:20:00 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/11/2014 03:43:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/10/2014 07:41:40 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/09/2014 09:34:36 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/09/2014 09:30:27 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/09/2014 09:30:03 PM) (Source: LMS) (User: NT AUTHORITY)
Description: The service process could not connect to the service controller.

Error: (03/09/2014 03:28:57 PM) (Source: Application Error) (User: )
Description: Faulting application name: PmmUpdate.exe, version: 1.1.36.0, time stamp: 0x4c932097
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x0002e3be
Faulting process id: 0x10bc
Faulting application start time: 0xPmmUpdate.exe0
Faulting application path: PmmUpdate.exe1
Faulting module path: PmmUpdate.exe2
Report Id: PmmUpdate.exe3

Error: (03/08/2014 11:29:40 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/06/2014 02:46:28 AM) (Source: Application Error) (User: )
Description: Windows cannot access the file  for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Auto-updater because of this error.

Program: Auto-updater
File:

The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
    - It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
    - It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.

Additional Data
Error value: 00000000
Disk type: 0

Error: (03/06/2014 02:46:28 AM) (Source: Application Error) (User: )
Description: Faulting application name: WajamUpdater.exe, version: 1.0.0.5, time stamp: 0x4f143f83
Faulting module name: ole32.dll, version: 6.1.7601.17514, time stamp: 0x4ce7b96f
Exception code: 0xc0000096
Fault offset: 0x00048665
Faulting process id: 0xb24
Faulting application start time: 0xWajamUpdater.exe0
Faulting application path: WajamUpdater.exe1
Faulting module path: WajamUpdater.exe2
Report Id: WajamUpdater.exe3


System errors:
=============
Error: (03/10/2014 10:43:37 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v4.0.30319_X86 service to connect.

Error: (03/09/2014 09:33:45 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 21:32:23 on ?09/?03/?2014 was unexpected.

Error: (03/09/2014 09:30:17 PM) (Source: Service Control Manager) (User: )
Description: The Dritek WMI Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/09/2014 09:30:17 PM) (Source: Service Control Manager) (User: )
Description: The Acer ePower Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/09/2014 09:30:17 PM) (Source: Service Control Manager) (User: )
Description: The Windows Live Family Safety Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (03/09/2014 09:30:16 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Management and Security Application Local Management Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/09/2014 09:30:15 PM) (Source: Service Control Manager) (User: )
Description: The Live Updater Service service terminated with the following error:
%%-2147467243

Error: (03/09/2014 09:30:00 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Optimizer Pro Crash Monitor service to connect.

Error: (03/09/2014 09:29:29 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 21:27:34 on ?09/?03/?2014 was unexpected.

Error: (03/06/2014 02:46:36 AM) (Source: Service Control Manager) (User: )
Description: The WajamUpdater service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (03/12/2014 05:20:00 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/11/2014 03:43:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/10/2014 07:41:40 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/09/2014 09:34:36 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/09/2014 09:30:27 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/09/2014 09:30:03 PM) (Source: LMS)(User: NT AUTHORITY)
Description: The service process could not connect to the service controller.

Error: (03/09/2014 03:28:57 PM) (Source: Application Error)(User: )
Description: PmmUpdate.exe1.1.36.04c932097ntdll.dll6.1.7601.18247521ea8e7c00000050002e3be10bc01cf3ac1b5c3be1dC:\Program Files (x86)\EgisTec IPS\PmmUpdate.exeC:\Windows\SysWOW64\ntdll.dll87934130-a79f-11e3-af9e-b870f4a20048

Error: (03/08/2014 11:29:40 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/06/2014 02:46:28 AM) (Source: Application Error)(User: )
Description: Auto-updater000000000

Error: (03/06/2014 02:46:28 AM) (Source: Application Error)(User: )
Description: WajamUpdater.exe1.0.0.54f143f83ole32.dll6.1.7601.175144ce7b96fc000009600048665b2401cf3898c1f1d2bbC:\Program Files (x86)\Wajam\Updater\WajamUpdater.exeC:\Windows\syswow64\ole32.dll8373f72e-a4d9-11e3-a0de-b870f4a20048


=========================== Installed Programs ============================

??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? (Version: 15.4.5722.2)
???? ??? Windows Live (Version: 15.4.3502.0922)
???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? (Version: 15.4.5722.2)
???? Windows Live (Version: 15.4.3502.0922)
?????? ??????? ?? Windows Live (Version: 15.4.3502.0922)
??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? (Version: 15.4.5722.2)
??????? Windows Live Mesh ActiveX ??? (Version: 15.4.5722.2)
???????? ?? Messenger (Version: 15.4.3502.0922)
???????? ?????????? Windows Live (Version: 15.4.3502.0922)
????????? ActiveX ?? Windows Live Mesh ????????????????????????? (???) (Version: 15.4.5722.2)
????????? Messenger (Version: 15.4.3502.0922)
?????????? Windows Live (Version: 15.4.3502.0922)
??????????? ?? Windows Live (Version: 15.4.3502.0922)
Acer Backup Manager (Version: 3.0.0.85)
Acer Crystal Eye Webcam (Version: 1.5.2904.00)
Acer ePower Management (Version: 6.00.3006)
Acer eRecovery Management (Version: 5.00.3002)
Acer GameZone Console (Version: 6.1.0.40497)
Acer Registration (Version: 1.03.3004)
Acer ScreenSaver (Version: 1.1.0301.2011)
Acer Updater (Version: 1.02.3502)
Acrobat.com (Version: 1.6.65)
ActiveX ???????? ?? Windows Live Mesh ?? ?????????? ?????? (Version: 15.4.5722.2)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (Version: 15.4.5722.2)
Adobe Acrobat XI Pro (Version: 11.0.00)
Adobe AIR (Version: 3.9.0.1380)
Adobe Download Assistant (Version: 1.2.6)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Flash Player 12 Plugin (Version: 12.0.0.77)
Adobe Reader 9.5.5 MUI (Version: 9.5.5)
Backup Manager V3 (Version: 3.0.0.85)
Broadcom Gigabit NetLink Controller (Version: 14.6.1.2)
Brother MFL-Pro Suite DCP-7055 (Version: 1.0.7.0)
CCleaner (Version: 4.06)
Chicken Invaders 3
clear.fi (Version: 1.0.1422.00)
clear.fi (Version: 9.0.7418)
clear.fi Client (Version: 1.00.3008)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Complément Messenger (Version: 15.4.3502.0922)
Complemento Messenger (Version: 15.4.3502.0922)
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
Control ActiveX del Windows Live Mesh per a connexions remotes (Version: 15.4.5722.2)
Control ActiveX Windows Live Mesh pentru conexiuni la distan?a (Version: 15.4.5722.2)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (Version: 15.4.5722.2)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (Version: 15.4.5722.2)
D3DX10 (Version: 15.4.2368.0902)
DivX Setup (Version: 2.6.1.3)
DMUninstaller
DomaIQ
Doplnok programu Messenger (Version: 15.4.3502.0922)
Dream Day First Home
Driving Test Success - All Tests 2011 Edition
DuckCapture Standard 2.7 (Version: 2.7)
eBay Worldwide (Version: 2.1.0901)
ETDWare PS/2-X64 8.0.6.3_WHQL (Version: 8.0.6.3)
Farm Frenzy 3 Ice Age
FlashPlayer (Version: 1.6.8)
Flip Words
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsluge polaczen zdalnych (Version: 15.4.5722.2)
Fotogalerija Windows Live (Version: 15.4.3502.0922)
Galapago
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Galeria fotogràfica del Windows Live (Version: 15.4.3502.0922)
Galeria fotografii uslugi Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galerie foto Windows Live (Version: 15.4.3502.0922)
Google Chrome (Version: 33.0.1750.146)
GS Supporter 1.80
HDM Connection Manager (Version: 16.001.05.06.649)
IB Updater 2.0.0.574 (Version: 2.0.0.574)
IB Updater Service (Version: 4.0.7.3)
Identity Card (Version: 1.00.3006)
iLivid (Version: 4.0.0.2901)
Iminent (Version: 7.5.3.1)
Iminent Toolbar on IE and Chrome (Version: 1.8.28.3)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2182)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.2.1001)
Junk Mail filter update (Version: 15.4.3502.0922)
Kontrola Windows Live Mesh ActiveX za daljinske veze (Version: 15.4.5722.2)
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (Version: 15.4.5722.2)
Launch Manager (Version: 5.1.5)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MediaEspresso (Version: 1.0.1418_35759)
Mesh Runtime (Version: 15.4.5722.2)
Messenger ???? (Version: 15.4.3502.0922)
Messenger Assistent (Version: 15.4.3502.0922)
Messenger Companion (Version: 15.4.3502.0922)
Messenger kíséro (Version: 15.4.3502.0922)
Messenger Laguna (Version: 15.4.3502.0922)
Messenger Suradnik (Version: 15.4.3502.0922)
Messenger-kumppani (Version: 15.4.3502.0922)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Starter 2010 - English (Version: 14.0.5131.5000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 27.0.1 (x86 en-US) (Version: 27.0.1)
Mozilla Maintenance Service (Version: 27.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MyDefrag v4.3.1 (Version: 4.0.0.0)
MyWinLocker (Version: 4.0.14.11)
MyWinLocker 4 (Version: 4.0.14.11)
MyWinLocker Suite (Version: 4.0.14.11)
NewSaaver
newsXpresso (Version: 1.0.0.40)
Norton Online Backup (Version: 2.1.17869)
NTI Media Maker 9 (Version: 9.0.2.8942)
Nuance PaperPort 12 (Version: 12.1.0000)
Nuance PDF Viewer Plus (Version: 5.30.3290)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Optimizer Pro v3.2
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená pripojení (Version: 15.4.5722.2)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (Version: 15.4.5722.2)
PaperPort Image Printer 64-bit (Version: 1.00.0001)
Poczta uslugi Windows Live (Version: 15.4.3502.0922)
Podstawowe programy Windows Live (Version: 15.4.3502.0922)
Pomocnik Messenger (Version: 15.4.3502.0922)
Pošta Windows Live (Version: 15.4.3502.0922)
PriceGong 2.6.8 (Version: 2.6.8)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
Realtek High Definition Audio Driver (Version: 6.0.1.6314)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30124)
S?????? f?t???af??? t?? Windows Live (Version: 15.4.3502.0922)
Samsung Kies (Version: 2.6.0.13091_9)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
Scansoft PDF Professional
Shredder (Version: 2.0.8.7)
Skype Click to Call (Version: 7.1.15383.6004)
Skype™ 6.14 (Version: 6.14.104)
SMPlayer 0.6.9 (Version: 0.6.9)
Speccy (Version: 1.23)
Spremljevalec Messenger (Version: 15.4.3502.0922)
Sprill and Ritchie
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? (Version: 15.4.5722.2)
Supreme Savings Helper (Version: 1.0)
Supreme Savings Plugin (Version: 1.27.153.3)
The OFFICIAL DSA THEORY TEST for Car Drivers - DVD (Version: 2.01.0003)
Urruneko konexioetarako Windows Live Mesh ActiveX kontrola (Version: 15.4.5722.2)
Uzak Baglantilar Için Windows Live Mesh ActiveX Denetimi (Version: 15.4.5722.2)
VAFPlayer (Version: 1.6.8)
VaudiX 1.74
VauDixx (Version: )
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Veehd (Version: 2.1 Build 26473)
VEEHD Plugin V9.0 (Version: 1.34.2.13)
VLC media player 2.1.3 (Version: 2.1.3)
Wajam (Version: 1.49)
websave (Version: 1.3.0.1798)
Welcome Center (Version: 1.02.3102)
Windows Live (Version: 15.4.3555.0308)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Argazki Galeria (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogaléria (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live Fotogalleri (Version: 15.4.3502.0922)
Windows Live Fotograf Galerisi (Version: 15.4.3502.0922)
Windows Live Fotótár (Version: 15.4.3502.0922)
Windows Live Galeria de Fotos (Version: 15.4.3502.0922)
Windows Live Galerija fotografija (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (Version: 15.4.5722.2)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-vezérlo távoli kapcsolatokhoz (Version: 15.4.5722.2)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Temel Parçalar (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Liven asennustyökalu (Version: 15.4.3502.0922)
Windows Liven sähköposti (Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
World of Goo
WS.Booster (Version: 4.0.0.1840)
WS.Booster (Version: 4.3.0.1232)
Yontoo 2.051 (Version: 2.051)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 4790.7 MB
Available physical RAM: 2717.95 MB
Total Pagefile: 15869.59 MB
Available Pagefile: 2479.49 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.95 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:449.66 GB) (Free:369.43 GB) NTFS

========================= Users: ========================================

User accounts for \\USER-PC

Administrator            Guest                    user                     

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

22-02-2014 10:13:48 Windows Update
25-02-2014 13:31:11 Windows Update
28-02-2014 12:28:06 Windows Update
02-03-2014 03:00:13 Windows Update
05-03-2014 19:16:51 Windows Update
09-03-2014 15:12:19 Windows Update
12-03-2014 18:35:38 Windows Update

**** End of log ****
 

 



#4 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:43 AM

Posted 13 March 2014 - 02:35 PM

Ok.Download AdwCleaner - http://www.bleepingcomputer.com/download/adwcleaner/

Start the application.Click Scan button.It will be short.After is done click Clean button.The application will ask for reboot.Do it and after restart a log will appear on your desktop.Save and attach it here.



#5 ferozpatel_1

ferozpatel_1
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 16 March 2014 - 07:33 AM

Here is the log:

 

 

# AdwCleaner v3.022 - Report created 15/03/2014 at 16:58:01
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : user - USER-PC
# Running from : C:\Users\user\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : 70e6ca8c
Service Deleted : IB Updater
Service Deleted : SProtection
Service Deleted : WajamUpdater
Service Deleted : Yontoo Desktop Updater

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\StarApp
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\webSaVE
Folder Deleted : C:\ProgramData\VauDixx
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VauDixx
Folder Deleted : C:\Program Files (x86)\Bench
Folder Deleted : C:\Program Files (x86)\Iminent
Folder Deleted : C:\Program Files (x86)\IminentToolbar
Folder Deleted : C:\Program Files (x86)\Optimizer Pro
Folder Deleted : C:\Program Files (x86)\Perion
Folder Deleted : C:\Program Files (x86)\PriceGong
Folder Deleted : C:\Program Files (x86)\TotalRecipeSearch_14EI
Folder Deleted : C:\Program Files (x86)\tuguu sl
Folder Deleted : C:\Program Files (x86)\Vaudix
Folder Deleted : C:\Program Files (x86)\Wajam
Folder Deleted : C:\Program Files (x86)\webSaVE
Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\Program Files (x86)\Supreme Savings Plugin
Folder Deleted : C:\Program Files (x86)\VEEHD Plugin V9.0
Folder Deleted : C:\Program Files (x86)\Common Files\Umbrella
Folder Deleted : C:\Windows\SysWOW64\ARFC
Folder Deleted : C:\Windows\SysWOW64\jmdp
Folder Deleted : C:\Windows\SysWOW64\WNLT
Folder Deleted : C:\Program Files\DomaIQ Uninstaller
Folder Deleted : C:\Program Files\IB Updater
Folder Deleted : C:\Windows\System32\ARFC
Folder Deleted : C:\Windows\System32\ljkb
Folder Deleted : C:\users\user\AppData\Local\BenchUpdater
Folder Deleted : C:\users\user\AppData\Local\iLivid
Folder Deleted : C:\users\user\AppData\Local\torch
Folder Deleted : C:\users\user\AppData\Local\Wajam
Folder Deleted : C:\users\user\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\users\user\AppData\LocalLow\Delta
Folder Deleted : C:\users\user\AppData\LocalLow\IminentToolbar
Folder Deleted : C:\users\user\AppData\LocalLow\PriceGong
Folder Deleted : C:\users\user\AppData\LocalLow\VEEHD Plugin V9.0
Folder Deleted : C:\users\user\AppData\LocalLow\VauDixx
Folder Deleted : C:\users\user\AppData\Roaming\Babylon
Folder Deleted : C:\users\user\AppData\Roaming\file scout
Folder Deleted : C:\users\user\AppData\Roaming\IminentToolbar
Folder Deleted : C:\users\user\AppData\Roaming\Optimizer Pro
Folder Deleted : C:\users\user\AppData\Roaming\Yontoo
Folder Deleted : C:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Folder Deleted : C:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7u89cycn.default-1394770959293\Extensions\5b89f4fc-4956-4b39-8e01-daabf7a94e50@fc8bd6c4-6346-4d41-98ba-5c9af3bd35c6.com
Folder Deleted : C:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\msdleimy.default\Extensions\5b89f4fc-4956-4b39-8e01-daabf7a94e50@fc8bd6c4-6346-4d41-98ba-5c9af3bd35c6.com
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\niogeckbkdcabhnapjbkeiklablhjoca
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpinjohdoeecbkhkcbeinoncieipmmol
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpnbgpaofhgpahgbjfbkgdgoebndmnmi
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhaebgajckjfkbccfabgnaiopnepgccp
File Deleted : C:\END
File Deleted : C:\Windows\System32\dmwu.exe
File Deleted : C:\Windows\System32\ImhxxpComm.dll
File Deleted : C:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
File Deleted : C:\users\user\Desktop\iLivid.lnk
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.babylon.com_0.localstorage
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.babylon.com_0.localstorage-journal
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.triple-search.com_0.localstorage
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.triple-search.com_0.localstorage-journal
File Deleted : C:\Windows\Tasks\bench-sys.job
File Deleted : C:\Windows\System32\Tasks\bench-sys
File Deleted : C:\Windows\Tasks\VEEHD Plugin V9.0-chromeinstaller.job
File Deleted : C:\Windows\System32\Tasks\VEEHD Plugin V9.0-chromeinstaller
File Deleted : C:\Windows\Tasks\VEEHD Plugin V9.0-codedownloader.job
File Deleted : C:\Windows\System32\Tasks\VEEHD Plugin V9.0-codedownloader
File Deleted : C:\Windows\Tasks\VEEHD Plugin V9.0-enabler.job
File Deleted : C:\Windows\System32\Tasks\VEEHD Plugin V9.0-enabler
File Deleted : C:\Windows\Tasks\VEEHD Plugin V9.0-firefoxinstaller.job
File Deleted : C:\Windows\System32\Tasks\VEEHD Plugin V9.0-firefoxinstaller
File Deleted : C:\Windows\Tasks\VEEHD Plugin V9.0-updater.job
File Deleted : C:\Windows\System32\Tasks\VEEHD Plugin V9.0-updater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FE1DEEEA-DB6D-44B8-83F0-34FC0F9D1052}]
Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FE1DEEEA-DB6D-44B8-83F0-34FC0F9D1052}]
Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [happylyrics@hpyproductions.net]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\niogeckbkdcabhnapjbkeiklablhjoca
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Key Deleted : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\esrv.iminentESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.iminentESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\I
Key Deleted : HKLM\SOFTWARE\Classes\Iminent
Key Deleted : HKLM\SOFTWARE\Classes\iminent.iminentappCore
Key Deleted : HKLM\SOFTWARE\Classes\iminent.iminentappCore.1
Key Deleted : HKLM\SOFTWARE\Classes\iminent.iminentdskBnd
Key Deleted : HKLM\SOFTWARE\Classes\iminent.iminentdskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\iminent.iminentHlpr
Key Deleted : HKLM\SOFTWARE\Classes\iminent.iminentHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TotalRecipeSearch_14Installer.Start
Key Deleted : HKLM\SOFTWARE\Classes\TotalRecipeSearch_14Installer.Start.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasmancs
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [IminentMessenger]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@ei.TotalRecipeSearch_14.com/Plugin
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_09de8db5
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032912.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032912.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032912.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032912.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0051384.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0051384.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0051384.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0051384.Sandbox.1
Key Deleted : HKCU\Software\5f53d9d0b33ced44
Key Deleted : HKLM\SOFTWARE\5f53d9d0b33ced44
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1FAFD711-ABF9-4F6A-8130-5166C7371427}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9FD0C1D9-180B-4834-B80B-4B7325AF90E1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A2CC3C46-143B-4142-9D5A-B8543F0A6F55}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD79F359-E577-46DB-AA74-D6E6B8B45BA8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE6FAAB5-8939-9003-A1DF-99EDED590DAC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311291112}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511131184}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322292212}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522132284}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3B181CF2-878B-4758-8FBD-59D8AC5AB12D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{490A5A0F-1471-47FF-8BB5-719F1F5238AD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355295512}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555135584}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366296612}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566136684}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8E5B29C2-BC6E-40BE-B881-AEE35B1F4035}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344294412}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440544134484}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE6FAAB5-8939-9003-A1DF-99EDED590DAC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311291112}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511131184}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1FAFD711-ABF9-4F6A-8130-5166C7371427}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD79F359-E577-46DB-AA74-D6E6B8B45BA8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE6FAAB5-8939-9003-A1DF-99EDED590DAC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311291112}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511131184}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1FAFD711-ABF9-4F6A-8130-5166C7371427}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE6FAAB5-8939-9003-A1DF-99EDED590DAC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110311291112}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FD79F359-E577-46DB-AA74-D6E6B8B45BA8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311291112}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{208D4124-3895-4974-B293-A159BD306078}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7eedfad6-f51f-4e37-ae4b-4ff7f7860e4f}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9857dd76-4fde-46da-a9f0-769de5759751}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c4883119-b82a-42d5-bb86-9567f9d5ca08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{cdc5e422-fb33-466b-80dc-54f37c19188b}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{cf17f9c9-4fd3-4156-9d10-bb1f515e313a}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{34e469fd-9eed-428f-ae02-a91758111737}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4d5c2b64-23d3-4e8e-a4f8-27792098d953}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7c37dedc-6c99-4aba-827d-e3d5449a01e5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{845c73f7-4983-46d4-b22f-865d1a607711}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{cef5d226-b97c-4eef-8427-72c573a0881e}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{460C3D19-B3D4-4964-A550-77D263B0CCCB}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1FAFD711-ABF9-4F6A-8130-5166C7371427}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511131184}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522132284}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3B181CF2-878B-4758-8FBD-59D8AC5AB12D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{490A5A0F-1471-47FF-8BB5-719F1F5238AD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355295512}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555135584}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366296612}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566136684}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511131184}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{34e469fd-9eed-428f-ae02-a91758111737}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4d5c2b64-23d3-4e8e-a4f8-27792098d953}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7c37dedc-6c99-4aba-827d-e3d5449a01e5}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{845c73f7-4983-46d4-b22f-865d1a607711}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{cef5d226-b97c-4eef-8427-72c573a0881e}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\DataMngr
[#] Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\delta LTD
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\IminentToolbar
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\tuguu sl
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKCU\Software\wnlt
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\HappyLyrics
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\Supreme Savings Plugin
Key Deleted : HKCU\Software\AppDataLow\Software\VEEHD Plugin V9.0
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Bench
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\IB Updater
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\IminentToolbar
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\Supreme Savings Plugin
Key Deleted : HKLM\Software\torch
Key Deleted : HKLM\Software\TotalRecipeSearch_14EI
Key Deleted : HKLM\Software\Umbrella
Key Deleted : HKLM\Software\Wajam
Key Deleted : HKLM\Software\VEEHD Plugin V9.0
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EBE677C0-CBCB-4EBF-8098-E27E1B5271CF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DomaIQ Uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Supreme Savings Plugin
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VEEHD Plugin V9.0
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{681002C6-5019-81A2-7871-A43754F71E56}
Key Deleted : [x64] HKLM\SOFTWARE\DomaIQ
Key Deleted : [x64] HKLM\SOFTWARE\IB Updater
Key Deleted : [x64] HKLM\SOFTWARE\Iminent
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\wnlt
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\optimi~1\optpro~1.dll
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL
Key Deleted : HKLM\Software\Classes\Installer\Features\0C776EBEBCBCFBE408892EE7B12517FC
Key Deleted : HKLM\Software\Classes\Installer\Products\0C776EBEBCBCFBE408892EE7B12517FC

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v27.0.1 (en-US)

[ File : C:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7u89cycn.default-1394770959293\prefs.js ]

Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.InstallationThankYouPage", false);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.InstallationTime", 1394049836);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384_dbWasSet", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384_dbWasSet_FF25_FIX", true[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.active", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.addressbar", "NA");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.addressbarenhanced", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.asyncdb.was_copied", "true");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.asyncdb_dbWasSet", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.asyncdb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.asyncinternaldb.was_copied", "true");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.asyncinternaldb_dbWasSet", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.asyncinternaldb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.backgroundver", 1);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.certdomaininstaller", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.changeprevious", false);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.cookie.InstallationTime.value", "%221394049836%22");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.cookie.InstallerParams.value", "%7B%22source_id%22%3A%22001059%22%2C%22sub_id%22%3A%220%22%2C%22uz[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.description", "VEEHD Plugin - Enjoy the future of internet video with High Definition");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.domain", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.enablesearch", false);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.homepage", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.iframe", false);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerIdentifiers.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerIdentifiers.value", "%7B%22installer_bic%22%3A%22222761F123404089BCE83F955B0C5[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerParams.value", "%7B%22source_id%22%3A%22001059%22%2C%22sub_id%22%3A%220%22%2C%[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerParamsCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerParamsCache.value", "%7B%22source_id%22%3A%22001059%22%2C%22sub_id%22%3A%220%2[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerUserIdentifiersCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Stan[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.InstallerUserIdentifiersCache.value", "%7B%22installer_bic%22%3A%22222761F123404089BCE8[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_appVer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_appVer.value", "27");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_lastVersion.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Tim[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_lastVersion.value", "1");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_meta.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_meta.value", "%7B%7D");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_nextCheck.expiration", "Sat Mar 15 2014 17:58:14 GMT+0000 (GMT Standard Time)[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_nextCheck.value", "true");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_queue.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.Resources_queue.value", "%7B%7D");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.__defualt_browser__.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.__defualt_browser__.value", "%22ie%22");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.installer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT Standard Time)");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.installer.value", "%7B%22InstallerIdentifiers%22%3A%7B%22installer_bic%22%3A%22222761F1[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_bundledUrls.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT St[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_bundledWithHash.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GM[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_bundledWithHash.value", "null");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_last_executable_request.expiration", "Sun Mar 16 2014 02:12:49 GMT+[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_last_executable_request.value", "%22hxxp%3A//download.bleepingcompu[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_notBundledArr_.expiration", "Fri Feb 01 2030 00:00:00 GMT+0000 (GMT[...]
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.internaldb.monetization_plugin_notBundledArr_.value", "%5B%5D");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.lastDailyReport", "1394884664432");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.lastUpdate", "1394884664432");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.manifesturl", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.name", "VEEHD Plugin V9.0");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.newtab", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.opensearch", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.pluginsurl", "hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/apps/51384/plugins/094/ff/plugins.json");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.pluginsversion", 20);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.publisher", "installdaddy");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.searchstatus", 0);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.setnewtab", false);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.thankyou", "");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.updateinterval", 360);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.51384.ver", 27);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.FilesValidatorDueTime", "1394884664413");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.apps", "51384");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.bic", "144bede19a0314ceb96eeed55d26b6c1");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.cid", 51384);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.firstrun", false);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.hadappinstalled", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.installationdate", 1394771630);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.modetype", "production");
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.reportInstall", true);
Line Deleted : user_pref("extensions.a5b89f4fc49564b398e01daabf7a94e50fc8bd6c463464d4198ba5c9af3bd35c6com51384.statsDailyCounter", 4);
Line Deleted : user_pref("extensions.crossrider.bic", "144bede19a0314ceb96eeed55d26b6c1");

-\\ Google Chrome v

[ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : icon_url
Deleted : search_url
Deleted : keyword

*************************

AdwCleaner[R0].txt - [56351 octets] - [15/03/2014 15:02:14]
AdwCleaner[S0].txt - [52363 octets] - [15/03/2014 16:58:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [52424 octets] ##########
 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 AM

Posted 18 March 2014 - 02:19 PM

Thank you for posting in the 3 day waiting topic.


Reset the Hosts file back to the default. Use the Fix It button.


Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 ferozpatel_1

ferozpatel_1
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 18 March 2014 - 03:05 PM

Here are the contents of the TDSS Report:

 

 

20:02:27.0181 0x12f8  TDSS rootkit removing tool 3.0.0.25 Feb 27 2014 15:23:02
20:02:30.0111 0x12f8  ============================================================
20:02:30.0111 0x12f8  Current date / time: 2014/03/18 20:02:30.0111
20:02:30.0111 0x12f8  SystemInfo:
20:02:30.0111 0x12f8  
20:02:30.0111 0x12f8  OS Version: 6.1.7601 ServicePack: 1.0
20:02:30.0111 0x12f8  Product type: Workstation
20:02:30.0111 0x12f8  ComputerName: USER-PC
20:02:30.0111 0x12f8  UserName: user
20:02:30.0111 0x12f8  Windows directory: C:\Windows
20:02:30.0111 0x12f8  System windows directory: C:\Windows
20:02:30.0111 0x12f8  Running under WOW64
20:02:30.0111 0x12f8  Processor architecture: Intel x64
20:02:30.0111 0x12f8  Number of processors: 4
20:02:30.0111 0x12f8  Page size: 0x1000
20:02:30.0111 0x12f8  Boot type: Normal boot
20:02:30.0111 0x12f8  ============================================================
20:02:30.0461 0x12f8  KLMD registered as C:\Windows\system32\drivers\21472288.sys
20:02:30.0921 0x12f8  System UUID: {8E37CC62-5A15-276E-E4D7-BEA4033D75DC}
20:02:31.0601 0x12f8  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:02:31.0601 0x12f8  ============================================================
20:02:31.0601 0x12f8  \Device\Harddisk0\DR0:
20:02:31.0601 0x12f8  MBR partitions:
20:02:31.0601 0x12f8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2000800, BlocksNum 0x32000
20:02:31.0601 0x12f8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2032800, BlocksNum 0x38353000
20:02:31.0601 0x12f8  ============================================================
20:02:31.0631 0x12f8  C: <-> \Device\Harddisk0\DR0\Partition2
20:02:31.0631 0x12f8  ============================================================
20:02:31.0631 0x12f8  Initialize success
20:02:31.0631 0x12f8  ============================================================
20:02:39.0323 0x0ddc  ============================================================
20:02:39.0333 0x0ddc  Scan started
20:02:39.0333 0x0ddc  Mode: Manual;
20:02:39.0333 0x0ddc  ============================================================
20:02:39.0333 0x0ddc  KSN ping started
20:02:42.0005 0x0ddc  KSN ping finished: true
20:02:42.0175 0x0ddc  ================ Scan system memory ========================
20:02:42.0175 0x0ddc  System memory - ok
20:02:42.0175 0x0ddc  ================ Scan services =============================
20:02:42.0455 0x0ddc  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
20:02:42.0475 0x0ddc  1394ohci - ok
20:02:42.0545 0x0ddc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
20:02:42.0565 0x0ddc  ACPI - ok
20:02:42.0605 0x0ddc  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
20:02:42.0615 0x0ddc  AcpiPmi - ok
20:02:42.0785 0x0ddc  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:02:42.0785 0x0ddc  AdobeARMservice - ok
20:02:42.0965 0x0ddc  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:02:43.0105 0x0ddc  AdobeFlashPlayerUpdateSvc - ok
20:02:43.0175 0x0ddc  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
20:02:43.0205 0x0ddc  adp94xx - ok
20:02:43.0265 0x0ddc  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
20:02:43.0295 0x0ddc  adpahci - ok
20:02:43.0315 0x0ddc  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
20:02:43.0335 0x0ddc  adpu320 - ok
20:02:43.0375 0x0ddc  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
20:02:43.0385 0x0ddc  AeLookupSvc - ok
20:02:43.0465 0x0ddc  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
20:02:43.0495 0x0ddc  AFD - ok
20:02:43.0525 0x0ddc  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
20:02:43.0525 0x0ddc  agp440 - ok
20:02:43.0555 0x0ddc  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
20:02:43.0555 0x0ddc  ALG - ok
20:02:43.0595 0x0ddc  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
20:02:43.0595 0x0ddc  aliide - ok
20:02:43.0625 0x0ddc  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
20:02:43.0635 0x0ddc  amdide - ok
20:02:43.0655 0x0ddc  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
20:02:43.0655 0x0ddc  AmdK8 - ok
20:02:43.0675 0x0ddc  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
20:02:43.0675 0x0ddc  AmdPPM - ok
20:02:43.0715 0x0ddc  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
20:02:43.0725 0x0ddc  amdsata - ok
20:02:43.0765 0x0ddc  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
20:02:43.0775 0x0ddc  amdsbs - ok
20:02:43.0785 0x0ddc  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
20:02:43.0795 0x0ddc  amdxata - ok
20:02:43.0825 0x0ddc  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
20:02:43.0835 0x0ddc  AppID - ok
20:02:43.0875 0x0ddc  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
20:02:43.0885 0x0ddc  AppIDSvc - ok
20:02:43.0925 0x0ddc  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
20:02:43.0925 0x0ddc  Appinfo - ok
20:02:43.0945 0x0ddc  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
20:02:43.0945 0x0ddc  arc - ok
20:02:43.0975 0x0ddc  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
20:02:43.0975 0x0ddc  arcsas - ok
20:02:44.0135 0x0ddc  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:02:44.0135 0x0ddc  aspnet_state - ok
20:02:44.0165 0x0ddc  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
20:02:44.0165 0x0ddc  AsyncMac - ok
20:02:44.0205 0x0ddc  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
20:02:44.0205 0x0ddc  atapi - ok
20:02:44.0345 0x0ddc  [ CC406DA84E7DD3FA3AD20340DBC66CF2, 295F02AA66A3E7879329DC18A741021923C7B389AD8AC6C25A07CAAD6D9CAD33 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
20:02:44.0475 0x0ddc  athr - ok
20:02:44.0605 0x0ddc  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:02:44.0655 0x0ddc  AudioEndpointBuilder - ok
20:02:44.0695 0x0ddc  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
20:02:44.0725 0x0ddc  AudioSrv - ok
20:02:44.0785 0x0ddc  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
20:02:44.0795 0x0ddc  AxInstSV - ok
20:02:44.0875 0x0ddc  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
20:02:44.0905 0x0ddc  b06bdrv - ok
20:02:44.0985 0x0ddc  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
20:02:45.0005 0x0ddc  b57nd60a - ok
20:02:45.0035 0x0ddc  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
20:02:45.0035 0x0ddc  BDESVC - ok
20:02:45.0065 0x0ddc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
20:02:45.0065 0x0ddc  Beep - ok
20:02:45.0125 0x0ddc  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
20:02:45.0175 0x0ddc  BFE - ok
20:02:45.0235 0x0ddc  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
20:02:45.0275 0x0ddc  BITS - ok
20:02:45.0315 0x0ddc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
20:02:45.0315 0x0ddc  blbdrive - ok
20:02:45.0345 0x0ddc  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
20:02:45.0345 0x0ddc  bowser - ok
20:02:45.0365 0x0ddc  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
20:02:45.0365 0x0ddc  BrFiltLo - ok
20:02:45.0385 0x0ddc  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
20:02:45.0385 0x0ddc  BrFiltUp - ok
20:02:45.0425 0x0ddc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
20:02:45.0435 0x0ddc  Browser - ok
20:02:45.0465 0x0ddc  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
20:02:45.0475 0x0ddc  Brserid - ok
20:02:45.0495 0x0ddc  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
20:02:45.0495 0x0ddc  BrSerWdm - ok
20:02:45.0505 0x0ddc  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
20:02:45.0505 0x0ddc  BrUsbMdm - ok
20:02:45.0525 0x0ddc  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
20:02:45.0535 0x0ddc  BrUsbSer - ok
20:02:45.0635 0x0ddc  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
20:02:45.0645 0x0ddc  BrYNSvc - ok
20:02:45.0665 0x0ddc  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
20:02:45.0665 0x0ddc  BTHMODEM - ok
20:02:45.0725 0x0ddc  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
20:02:45.0725 0x0ddc  bthserv - ok
20:02:45.0915 0x0ddc  [ BE531939BB6D153DB63DBBFBD398A713, CB63FD4051198A89EDB3CF45199F99F5816A672FA9374E166ED7A5D17ED47468 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
20:02:45.0985 0x0ddc  c2cautoupdatesvc - ok
20:02:46.0125 0x0ddc  [ 33E9F08F675EF94633C8EF8A7C4EADF3, E1556CF27F7FB3B03EE63F3464F5EE92E7B09E67C5D8AA4A9346FEEBD716A152 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
20:02:46.0225 0x0ddc  c2cpnrsvc - ok
20:02:46.0255 0x0ddc  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
20:02:46.0255 0x0ddc  cdfs - ok
20:02:46.0325 0x0ddc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
20:02:46.0335 0x0ddc  cdrom - ok
20:02:46.0385 0x0ddc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
20:02:46.0385 0x0ddc  CertPropSvc - ok
20:02:46.0415 0x0ddc  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
20:02:46.0415 0x0ddc  circlass - ok
20:02:46.0455 0x0ddc  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
20:02:46.0475 0x0ddc  CLFS - ok
20:02:46.0555 0x0ddc  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:02:46.0555 0x0ddc  clr_optimization_v2.0.50727_32 - ok
20:02:46.0605 0x0ddc  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:02:46.0605 0x0ddc  clr_optimization_v2.0.50727_64 - ok
20:02:46.0727 0x0ddc  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:02:46.0727 0x0ddc  clr_optimization_v4.0.30319_32 - ok
20:02:46.0767 0x0ddc  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:02:46.0767 0x0ddc  clr_optimization_v4.0.30319_64 - ok
20:02:46.0817 0x0ddc  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
20:02:46.0817 0x0ddc  CmBatt - ok
20:02:46.0847 0x0ddc  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
20:02:46.0857 0x0ddc  cmdide - ok
20:02:46.0927 0x0ddc  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
20:02:46.0957 0x0ddc  CNG - ok
20:02:46.0987 0x0ddc  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
20:02:46.0987 0x0ddc  Compbatt - ok
20:02:47.0017 0x0ddc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
20:02:47.0027 0x0ddc  CompositeBus - ok
20:02:47.0047 0x0ddc  COMSysApp - ok
20:02:47.0067 0x0ddc  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
20:02:47.0067 0x0ddc  crcdisk - ok
20:02:47.0137 0x0ddc  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
20:02:47.0147 0x0ddc  CryptSvc - ok
20:02:47.0307 0x0ddc  [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:02:47.0347 0x0ddc  cvhsvc - ok
20:02:47.0397 0x0ddc  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
20:02:47.0427 0x0ddc  DcomLaunch - ok
20:02:47.0477 0x0ddc  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
20:02:47.0497 0x0ddc  defragsvc - ok
20:02:47.0537 0x0ddc  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
20:02:47.0537 0x0ddc  DfsC - ok
20:02:47.0577 0x0ddc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
20:02:47.0597 0x0ddc  Dhcp - ok
20:02:47.0637 0x0ddc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
20:02:47.0637 0x0ddc  discache - ok
20:02:47.0667 0x0ddc  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
20:02:47.0677 0x0ddc  Disk - ok
20:02:47.0727 0x0ddc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
20:02:47.0737 0x0ddc  Dnscache - ok
20:02:47.0787 0x0ddc  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
20:02:47.0797 0x0ddc  dot3svc - ok
20:02:47.0817 0x0ddc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
20:02:47.0827 0x0ddc  DPS - ok
20:02:47.0877 0x0ddc  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
20:02:47.0877 0x0ddc  drmkaud - ok
20:02:47.0957 0x0ddc  [ 32C2CD16DC801AEF9EDAAFEA0DBD769E, 70B1FF6DC4368292525DE39363EC2B24B8A3AE040E8CCAC128A13941BF38A3D9 ] DsiWMIService   C:\Program Files (x86)\Launch Manager\dsiwmis.exe
20:02:47.0997 0x0ddc  DsiWMIService - ok
20:02:48.0077 0x0ddc  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
20:02:48.0107 0x0ddc  DXGKrnl - ok
20:02:48.0157 0x0ddc  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] e9f32388        C:\Windows\system32\rundll32.exe
20:02:48.0167 0x0ddc  e9f32388 - ok
20:02:48.0217 0x0ddc  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
20:02:48.0227 0x0ddc  EapHost - ok
20:02:48.0437 0x0ddc  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
20:02:48.0617 0x0ddc  ebdrv - ok
20:02:48.0657 0x0ddc  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
20:02:48.0657 0x0ddc  EFS - ok
20:02:48.0707 0x0ddc  [ 03E6888DA1A85ACF14AC2A3C328A9E62, 120A7A10F6DAC991B91BFEC5430FD9F929E173AB513891B229F19A9BA4EC3998 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
20:02:48.0717 0x0ddc  EgisTec Ticket Service - ok
20:02:48.0827 0x0ddc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
20:02:48.0877 0x0ddc  ehRecvr - ok
20:02:48.0897 0x0ddc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
20:02:48.0897 0x0ddc  ehSched - ok
20:02:48.0967 0x0ddc  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
20:02:48.0997 0x0ddc  elxstor - ok
20:02:49.0157 0x0ddc  [ EB1C213A8550F066B2CCC29C9F41E2AE, D23E92EA5389F4FD1B3157FD611AC5301384DB21BAE5E935D507548CB2E49CDC ] ePowerSvc       C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
20:02:49.0217 0x0ddc  ePowerSvc - ok
20:02:49.0237 0x0ddc  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
20:02:49.0237 0x0ddc  ErrDev - ok
20:02:49.0297 0x0ddc  [ DBAA0C650C9549DC5C599D1E81DEDAAD, C8DF68CDACEF27C91CFD1FE8032A8DAF830D9E77C573C25DE5D41FC3DB824ABA ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
20:02:49.0307 0x0ddc  ETD - ok
20:02:49.0367 0x0ddc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
20:02:49.0407 0x0ddc  EventSystem - ok
20:02:49.0427 0x0ddc  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
20:02:49.0437 0x0ddc  exfat - ok
20:02:49.0467 0x0ddc  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
20:02:49.0477 0x0ddc  fastfat - ok
20:02:49.0527 0x0ddc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
20:02:49.0567 0x0ddc  Fax - ok
20:02:49.0577 0x0ddc  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
20:02:49.0587 0x0ddc  fdc - ok
20:02:49.0607 0x0ddc  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
20:02:49.0607 0x0ddc  fdPHost - ok
20:02:49.0617 0x0ddc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
20:02:49.0627 0x0ddc  FDResPub - ok
20:02:49.0647 0x0ddc  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
20:02:49.0647 0x0ddc  FileInfo - ok
20:02:49.0667 0x0ddc  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
20:02:49.0667 0x0ddc  Filetrace - ok
20:02:49.0747 0x0ddc  [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:02:49.0817 0x0ddc  FLEXnet Licensing Service - ok
20:02:49.0837 0x0ddc  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
20:02:49.0837 0x0ddc  flpydisk - ok
20:02:49.0877 0x0ddc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
20:02:49.0887 0x0ddc  FltMgr - ok
20:02:49.0997 0x0ddc  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
20:02:50.0047 0x0ddc  FontCache - ok
20:02:50.0107 0x0ddc  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:02:50.0107 0x0ddc  FontCache3.0.0.0 - ok
20:02:50.0127 0x0ddc  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
20:02:50.0137 0x0ddc  FsDepends - ok
20:02:50.0177 0x0ddc  [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
20:02:50.0177 0x0ddc  fssfltr - ok
20:02:50.0317 0x0ddc  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:02:50.0377 0x0ddc  fsssvc - ok
20:02:50.0417 0x0ddc  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
20:02:50.0417 0x0ddc  Fs_Rec - ok
20:02:50.0477 0x0ddc  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
20:02:50.0487 0x0ddc  fvevol - ok
20:02:50.0527 0x0ddc  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
20:02:50.0537 0x0ddc  gagp30kx - ok
20:02:50.0617 0x0ddc  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
20:02:50.0687 0x0ddc  gpsvc - ok
20:02:50.0757 0x0ddc  [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] GREGService     C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
20:02:50.0757 0x0ddc  GREGService - ok
20:02:50.0767 0x0ddc  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
20:02:50.0777 0x0ddc  hcw85cir - ok
20:02:50.0827 0x0ddc  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:02:50.0847 0x0ddc  HdAudAddService - ok
20:02:50.0877 0x0ddc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
20:02:50.0887 0x0ddc  HDAudBus - ok
20:02:50.0937 0x0ddc  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\drivers\HECIx64.sys
20:02:50.0937 0x0ddc  HECIx64 - ok
20:02:50.0957 0x0ddc  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
20:02:50.0957 0x0ddc  HidBatt - ok
20:02:50.0987 0x0ddc  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
20:02:50.0987 0x0ddc  HidBth - ok
20:02:51.0007 0x0ddc  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
20:02:51.0007 0x0ddc  HidIr - ok
20:02:51.0047 0x0ddc  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
20:02:51.0047 0x0ddc  hidserv - ok
20:02:51.0107 0x0ddc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
20:02:51.0107 0x0ddc  HidUsb - ok
20:02:51.0137 0x0ddc  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
20:02:51.0147 0x0ddc  hkmsvc - ok
20:02:51.0177 0x0ddc  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:02:51.0187 0x0ddc  HomeGroupListener - ok
20:02:51.0237 0x0ddc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:02:51.0247 0x0ddc  HomeGroupProvider - ok
20:02:51.0287 0x0ddc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
20:02:51.0287 0x0ddc  HpSAMD - ok
20:02:51.0347 0x0ddc  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
20:02:51.0387 0x0ddc  HTTP - ok
20:02:51.0457 0x0ddc  [ D969D0E26C5B1E813B17066A8318D5D4, 27308902D216CD38F40B9341F40AFDCFEC09EA3122FB88E7C7A5C42D0433315D ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
20:02:51.0467 0x0ddc  hwdatacard - ok
20:02:51.0477 0x0ddc  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
20:02:51.0487 0x0ddc  hwpolicy - ok
20:02:51.0547 0x0ddc  [ B45B3647BA32749B94FA689175EC8C26, F0876ECA6FA66A296DB7E11FA9E4094D96064AE87EC21CC752C9B7E6A7DFEDD2 ] hwusbdev        C:\Windows\system32\DRIVERS\ewusbdev.sys
20:02:51.0557 0x0ddc  hwusbdev - ok
20:02:51.0617 0x0ddc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
20:02:51.0627 0x0ddc  i8042prt - ok
20:02:51.0679 0x0ddc  [ 1384872112E8E7FD5786ECEB8BDDF4C9, DC7844691740805A94F2901F8CB56F1591AF4F0F9C6D92D6B8595F89E6FA5F02 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
20:02:51.0699 0x0ddc  iaStor - ok
20:02:51.0779 0x0ddc  [ 6B24D1C3096DE796D15571079EA5E98C, 89566A7BDEDA7A663110F72B6301998651937E1E3E541EAB054169CEC8C7353F ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:02:51.0779 0x0ddc  IAStorDataMgrSvc - ok
20:02:51.0829 0x0ddc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
20:02:51.0859 0x0ddc  iaStorV - ok
20:02:51.0949 0x0ddc  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:02:51.0999 0x0ddc  idsvc - ok
20:02:52.0029 0x0ddc  IEEtwCollectorService - ok
20:02:52.0419 0x0ddc  [ 31569A2E836C12014148BF7342716946, 07DAEF864AF41E8669A6F2546967014C58898BD42C4C2FA1961F32311D083565 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
20:02:52.0819 0x0ddc  igfx - ok
20:02:52.0889 0x0ddc  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
20:02:52.0889 0x0ddc  iirsp - ok
20:02:52.0979 0x0ddc  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
20:02:53.0029 0x0ddc  IKEEXT - ok
20:02:53.0069 0x0ddc  [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
20:02:53.0069 0x0ddc  Impcd - ok
20:02:53.0269 0x0ddc  [ 650D06E28A43E365A01EC4EE0946FC24, 88AA348F7B674FB81C214C56E1833BD1C4B87FD8626D3B4ED18BA10FE93EFE1C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:02:53.0349 0x0ddc  IntcAzAudAddService - ok
20:02:53.0389 0x0ddc  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
20:02:53.0389 0x0ddc  intelide - ok
20:02:53.0419 0x0ddc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
20:02:53.0419 0x0ddc  intelppm - ok
20:02:53.0459 0x0ddc  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
20:02:53.0469 0x0ddc  IPBusEnum - ok
20:02:53.0499 0x0ddc  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:02:53.0509 0x0ddc  IpFilterDriver - ok
20:02:53.0569 0x0ddc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
20:02:53.0609 0x0ddc  iphlpsvc - ok
20:02:53.0629 0x0ddc  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
20:02:53.0639 0x0ddc  IPMIDRV - ok
20:02:53.0659 0x0ddc  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
20:02:53.0659 0x0ddc  IPNAT - ok
20:02:53.0689 0x0ddc  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
20:02:53.0689 0x0ddc  IRENUM - ok
20:02:53.0709 0x0ddc  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
20:02:53.0709 0x0ddc  isapnp - ok
20:02:53.0739 0x0ddc  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
20:02:53.0749 0x0ddc  iScsiPrt - ok
20:02:53.0809 0x0ddc  [ 0469BFF65BBDEE9E46D0C45EE32A08BD, 8E11F03FC463CBC9FBBF5D2A29FBF1076C9317D2B8B7224E24C22553F160E065 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
20:02:53.0819 0x0ddc  k57nd60a - ok
20:02:53.0839 0x0ddc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
20:02:53.0849 0x0ddc  kbdclass - ok
20:02:53.0869 0x0ddc  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
20:02:53.0869 0x0ddc  kbdhid - ok
20:02:53.0899 0x0ddc  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
20:02:53.0899 0x0ddc  KeyIso - ok
20:02:53.0939 0x0ddc  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
20:02:53.0939 0x0ddc  KSecDD - ok
20:02:53.0959 0x0ddc  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
20:02:53.0959 0x0ddc  KSecPkg - ok
20:02:53.0979 0x0ddc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
20:02:53.0979 0x0ddc  ksthunk - ok
20:02:54.0039 0x0ddc  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
20:02:54.0059 0x0ddc  KtmRm - ok
20:02:54.0119 0x0ddc  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
20:02:54.0129 0x0ddc  LanmanServer - ok
20:02:54.0169 0x0ddc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:02:54.0179 0x0ddc  LanmanWorkstation - ok
20:02:54.0279 0x0ddc  [ 93B73DED2BC688F140C6AE2FBAD45789, B6859BC5D309B99BCCDC3717108B714497AAE9C5B26CE5B201344A41FC4CFF9D ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
20:02:54.0289 0x0ddc  Live Updater Service - ok
20:02:54.0309 0x0ddc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
20:02:54.0309 0x0ddc  lltdio - ok
20:02:54.0349 0x0ddc  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
20:02:54.0359 0x0ddc  lltdsvc - ok
20:02:54.0379 0x0ddc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
20:02:54.0389 0x0ddc  lmhosts - ok
20:02:54.0489 0x0ddc  [ DBC1136A62BD4DECC3632DF650284C2E, 2D6344357D21A9062019C7DDF3DB440ABC724CDA925471BBFA8CCAC65E6A2C80 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:02:54.0499 0x0ddc  LMS - ok
20:02:54.0549 0x0ddc  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
20:02:54.0559 0x0ddc  LSI_FC - ok
20:02:54.0599 0x0ddc  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
20:02:54.0599 0x0ddc  LSI_SAS - ok
20:02:54.0619 0x0ddc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
20:02:54.0619 0x0ddc  LSI_SAS2 - ok
20:02:54.0649 0x0ddc  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
20:02:54.0649 0x0ddc  LSI_SCSI - ok
20:02:54.0669 0x0ddc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
20:02:54.0669 0x0ddc  luafv - ok
20:02:54.0719 0x0ddc  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
20:02:54.0719 0x0ddc  Mcx2Svc - ok
20:02:54.0739 0x0ddc  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
20:02:54.0749 0x0ddc  megasas - ok
20:02:54.0779 0x0ddc  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
20:02:54.0789 0x0ddc  MegaSR - ok
20:02:54.0839 0x0ddc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
20:02:54.0839 0x0ddc  MMCSS - ok
20:02:54.0869 0x0ddc  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
20:02:54.0869 0x0ddc  Modem - ok
20:02:54.0899 0x0ddc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
20:02:54.0899 0x0ddc  monitor - ok
20:02:54.0909 0x0ddc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
20:02:54.0909 0x0ddc  mouclass - ok
20:02:54.0939 0x0ddc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
20:02:54.0939 0x0ddc  mouhid - ok
20:02:54.0959 0x0ddc  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
20:02:54.0969 0x0ddc  mountmgr - ok
20:02:55.0039 0x0ddc  [ 338037EFA0E8E8699B2667D57B751574, 59E0D39806D0C4EB57913AA013242837FD39AD378726AEE42D250CBA87C1C3BF ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:02:55.0039 0x0ddc  MozillaMaintenance - ok
20:02:55.0109 0x0ddc  [ 94C66EDEDCDB6A126880472F9A704D8E, 05CE09C82EC4DA26934888789837F0F1A58DB2D7CE3E073EFD48AB326A275F5A ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
20:02:55.0109 0x0ddc  MpFilter - ok
20:02:55.0159 0x0ddc  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
20:02:55.0169 0x0ddc  mpio - ok
20:02:55.0209 0x0ddc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
20:02:55.0209 0x0ddc  mpsdrv - ok
20:02:55.0279 0x0ddc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
20:02:55.0339 0x0ddc  MpsSvc - ok
20:02:55.0399 0x0ddc  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
20:02:55.0409 0x0ddc  MRxDAV - ok
20:02:55.0449 0x0ddc  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
20:02:55.0459 0x0ddc  mrxsmb - ok
20:02:55.0479 0x0ddc  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:02:55.0489 0x0ddc  mrxsmb10 - ok
20:02:55.0529 0x0ddc  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:02:55.0539 0x0ddc  mrxsmb20 - ok
20:02:55.0599 0x0ddc  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
20:02:55.0599 0x0ddc  msahci - ok
20:02:55.0639 0x0ddc  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
20:02:55.0649 0x0ddc  msdsm - ok
20:02:55.0669 0x0ddc  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
20:02:55.0679 0x0ddc  MSDTC - ok
20:02:55.0729 0x0ddc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
20:02:55.0729 0x0ddc  Msfs - ok
20:02:55.0759 0x0ddc  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
20:02:55.0769 0x0ddc  mshidkmdf - ok
20:02:55.0779 0x0ddc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
20:02:55.0779 0x0ddc  msisadrv - ok
20:02:55.0829 0x0ddc  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
20:02:55.0839 0x0ddc  MSiSCSI - ok
20:02:55.0849 0x0ddc  msiserver - ok
20:02:55.0889 0x0ddc  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
20:02:55.0889 0x0ddc  MSKSSRV - ok
20:02:55.0949 0x0ddc  [ 59FAAF2C83C8169EA20F9E335E418907, 019A5F7E68A62A6958525226ABB21CA3AEAF7CDD9332B199AF8EDE2528B348D3 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:02:55.0959 0x0ddc  MsMpSvc - ok
20:02:55.0979 0x0ddc  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
20:02:55.0979 0x0ddc  MSPCLOCK - ok
20:02:55.0999 0x0ddc  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
20:02:55.0999 0x0ddc  MSPQM - ok
20:02:56.0029 0x0ddc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
20:02:56.0049 0x0ddc  MsRPC - ok
20:02:56.0069 0x0ddc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
20:02:56.0069 0x0ddc  mssmbios - ok
20:02:56.0089 0x0ddc  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
20:02:56.0089 0x0ddc  MSTEE - ok
20:02:56.0109 0x0ddc  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
20:02:56.0109 0x0ddc  MTConfig - ok
20:02:56.0129 0x0ddc  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
20:02:56.0129 0x0ddc  Mup - ok
20:02:56.0149 0x0ddc  [ 9B1EAC6FAF6F37305E822F5588DC8056, AE0DC044159BB03EE8A39AE0682C8F6A78D89AD5A6192E7006D75850ECD50E9D ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
20:02:56.0149 0x0ddc  mwlPSDFilter - ok
20:02:56.0159 0x0ddc  [ AD55C1524B296280ED9C6E0D730D35DA, 8E5F9652CFCB325E131CEB2E4871126EB6F940DF7894B2E7F8241F1EF69920ED ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
20:02:56.0159 0x0ddc  mwlPSDNServ - ok
20:02:56.0179 0x0ddc  [ 2B599E6EC8843637BDD62E7F8F3BA201, 51EE657FC6CA4F2BCC24573B27379231EF30920A559423A860A278C59F4B9F98 ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
20:02:56.0179 0x0ddc  mwlPSDVDisk - ok
20:02:56.0249 0x0ddc  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
20:02:56.0279 0x0ddc  napagent - ok
20:02:56.0329 0x0ddc  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
20:02:56.0359 0x0ddc  NativeWifiP - ok
20:02:56.0459 0x0ddc  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
20:02:56.0539 0x0ddc  NDIS - ok
20:02:56.0559 0x0ddc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
20:02:56.0559 0x0ddc  NdisCap - ok
20:02:56.0579 0x0ddc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
20:02:56.0579 0x0ddc  NdisTapi - ok
20:02:56.0609 0x0ddc  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
20:02:56.0619 0x0ddc  Ndisuio - ok
20:02:56.0639 0x0ddc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
20:02:56.0649 0x0ddc  NdisWan - ok
20:02:56.0679 0x0ddc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
20:02:56.0681 0x0ddc  NDProxy - ok
20:02:56.0691 0x0ddc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
20:02:56.0701 0x0ddc  NetBIOS - ok
20:02:56.0731 0x0ddc  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
20:02:56.0741 0x0ddc  NetBT - ok
20:02:56.0761 0x0ddc  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
20:02:56.0761 0x0ddc  Netlogon - ok
20:02:56.0801 0x0ddc  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
20:02:56.0831 0x0ddc  Netman - ok
20:02:56.0871 0x0ddc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:02:56.0881 0x0ddc  NetMsmqActivator - ok
20:02:56.0891 0x0ddc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:02:56.0901 0x0ddc  NetPipeActivator - ok
20:02:56.0931 0x0ddc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
20:02:56.0971 0x0ddc  netprofm - ok
20:02:56.0991 0x0ddc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:02:56.0991 0x0ddc  NetTcpActivator - ok
20:02:57.0001 0x0ddc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:02:57.0011 0x0ddc  NetTcpPortSharing - ok
20:02:57.0051 0x0ddc  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
20:02:57.0061 0x0ddc  nfrd960 - ok
20:02:57.0131 0x0ddc  [ 91B4E0273D2F6C24EF845F2B41311289, F88594C359A591935561D1ABB4E26B770EA509F0623C10D60D054BCCF8B84660 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:02:57.0131 0x0ddc  NisDrv - ok
20:02:57.0171 0x0ddc  [ 10A43829A9E606AF3EEF25A1C1665923, 84071155939CBE0DB3AD7BB2D916B47103333893258F1B64CAB82E61C6CEF79D ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
20:02:57.0191 0x0ddc  NisSrv - ok
20:02:57.0241 0x0ddc  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
20:02:57.0261 0x0ddc  NlaSvc - ok
20:02:57.0441 0x0ddc  [ 5839A8027D6D324A7CD494051A96628C, 474F2D0BB463ABE68D7C4D2C630860AED4B722EC62C616C91EE00AA965378382 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
20:02:57.0591 0x0ddc  NOBU - ok
20:02:57.0621 0x0ddc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
20:02:57.0621 0x0ddc  Npfs - ok
20:02:57.0651 0x0ddc  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
20:02:57.0661 0x0ddc  nsi - ok
20:02:57.0711 0x0ddc  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
20:02:57.0711 0x0ddc  nsiproxy - ok
20:02:57.0841 0x0ddc  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
20:02:57.0901 0x0ddc  Ntfs - ok
20:02:57.0991 0x0ddc  [ 773EED20BBF50809437373C0285BFA5E, 09D2A16431527FF1075ED1B8B5C8783A82F8697D35F7F84E25166024EAA6F6D0 ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
20:02:58.0001 0x0ddc  NTI IScheduleSvc - ok
20:02:58.0021 0x0ddc  [ EE3BA1024594D5D09E314F206B94069E, 34C8EC3DF1C3088D8A0442CAA4F5506665AFB2DF016709457ED2AB7DA45F53A6 ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
20:02:58.0031 0x0ddc  NTIDrvr - ok
20:02:58.0041 0x0ddc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
20:02:58.0041 0x0ddc  Null - ok
20:02:58.0091 0x0ddc  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
20:02:58.0101 0x0ddc  nvraid - ok
20:02:58.0141 0x0ddc  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
20:02:58.0151 0x0ddc  nvstor - ok
20:02:58.0181 0x0ddc  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
20:02:58.0181 0x0ddc  nv_agp - ok
20:02:58.0211 0x0ddc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
20:02:58.0211 0x0ddc  ohci1394 - ok
20:02:58.0291 0x0ddc  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:02:58.0301 0x0ddc  ose - ok
20:02:58.0541 0x0ddc  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:02:58.0751 0x0ddc  osppsvc - ok
20:02:58.0831 0x0ddc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
20:02:58.0841 0x0ddc  p2pimsvc - ok
20:02:58.0901 0x0ddc  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
20:02:58.0931 0x0ddc  p2psvc - ok
20:02:58.0981 0x0ddc  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
20:02:58.0981 0x0ddc  Parport - ok
20:02:59.0021 0x0ddc  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
20:02:59.0031 0x0ddc  partmgr - ok
20:02:59.0061 0x0ddc  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
20:02:59.0061 0x0ddc  PcaSvc - ok
20:02:59.0091 0x0ddc  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
20:02:59.0091 0x0ddc  pci - ok
20:02:59.0131 0x0ddc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
20:02:59.0141 0x0ddc  pciide - ok
20:02:59.0171 0x0ddc  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
20:02:59.0181 0x0ddc  pcmcia - ok
20:02:59.0201 0x0ddc  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
20:02:59.0201 0x0ddc  pcw - ok
20:02:59.0291 0x0ddc  [ C1C3BAF078BE5A14384A4BA2D730817D, 6E4D2F73A1CB250B3EE270CCE806A37EB2140E34EAF9F48C45CC12D2A451AA16 ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
20:02:59.0301 0x0ddc  PDFProFiltSrvPP - ok
20:02:59.0351 0x0ddc  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
20:02:59.0401 0x0ddc  PEAUTH - ok
20:02:59.0511 0x0ddc  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
20:02:59.0511 0x0ddc  PerfHost - ok
20:02:59.0621 0x0ddc  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
20:02:59.0731 0x0ddc  pla - ok
20:02:59.0811 0x0ddc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
20:02:59.0841 0x0ddc  PlugPlay - ok
20:02:59.0861 0x0ddc  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
20:02:59.0861 0x0ddc  PNRPAutoReg - ok
20:02:59.0891 0x0ddc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
20:02:59.0911 0x0ddc  PNRPsvc - ok
20:02:59.0961 0x0ddc  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
20:02:59.0991 0x0ddc  PolicyAgent - ok
20:03:00.0041 0x0ddc  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
20:03:00.0061 0x0ddc  Power - ok
20:03:00.0101 0x0ddc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
20:03:00.0111 0x0ddc  PptpMiniport - ok
20:03:00.0141 0x0ddc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
20:03:00.0151 0x0ddc  Processor - ok
20:03:00.0201 0x0ddc  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
20:03:00.0211 0x0ddc  ProfSvc - ok
20:03:00.0231 0x0ddc  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
20:03:00.0241 0x0ddc  ProtectedStorage - ok
20:03:00.0261 0x0ddc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
20:03:00.0271 0x0ddc  Psched - ok
20:03:00.0351 0x0ddc  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
20:03:00.0431 0x0ddc  ql2300 - ok
20:03:00.0501 0x0ddc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
20:03:00.0501 0x0ddc  ql40xx - ok
20:03:00.0541 0x0ddc  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
20:03:00.0551 0x0ddc  QWAVE - ok
20:03:00.0571 0x0ddc  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
20:03:00.0571 0x0ddc  QWAVEdrv - ok
20:03:00.0581 0x0ddc  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
20:03:00.0581 0x0ddc  RasAcd - ok
20:03:00.0641 0x0ddc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
20:03:00.0641 0x0ddc  RasAgileVpn - ok
20:03:00.0681 0x0ddc  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
20:03:00.0691 0x0ddc  RasAuto - ok
20:03:00.0711 0x0ddc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
20:03:00.0711 0x0ddc  Rasl2tp - ok
20:03:00.0751 0x0ddc  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
20:03:00.0771 0x0ddc  RasMan - ok
20:03:00.0801 0x0ddc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
20:03:00.0801 0x0ddc  RasPppoe - ok
20:03:00.0831 0x0ddc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
20:03:00.0841 0x0ddc  RasSstp - ok
20:03:00.0901 0x0ddc  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
20:03:00.0911 0x0ddc  rdbss - ok
20:03:00.0931 0x0ddc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
20:03:00.0941 0x0ddc  rdpbus - ok
20:03:00.0951 0x0ddc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
20:03:00.0961 0x0ddc  RDPCDD - ok
20:03:00.0991 0x0ddc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
20:03:00.0991 0x0ddc  RDPENCDD - ok
20:03:01.0001 0x0ddc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
20:03:01.0001 0x0ddc  RDPREFMP - ok
20:03:01.0041 0x0ddc  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
20:03:01.0051 0x0ddc  RDPWD - ok
20:03:01.0091 0x0ddc  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
20:03:01.0101 0x0ddc  rdyboost - ok
20:03:01.0131 0x0ddc  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
20:03:01.0141 0x0ddc  RemoteAccess - ok
20:03:01.0181 0x0ddc  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
20:03:01.0191 0x0ddc  RemoteRegistry - ok
20:03:01.0211 0x0ddc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
20:03:01.0211 0x0ddc  RpcEptMapper - ok
20:03:01.0251 0x0ddc  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
20:03:01.0251 0x0ddc  RpcLocator - ok
20:03:01.0291 0x0ddc  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
20:03:01.0321 0x0ddc  RpcSs - ok
20:03:01.0351 0x0ddc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
20:03:01.0361 0x0ddc  rspndr - ok
20:03:01.0411 0x0ddc  [ 0E3DCF76F11DC431B088A2DFD7265CDA, 7FCC8A9C28B8B2E9EC6AB9FFF7354929838134F61DB9D5BB96C5F6A7ABDC6B6A ] RSUSBSTOR       C:\Windows\System32\Drivers\RtsUStor.sys
20:03:01.0431 0x0ddc  RSUSBSTOR - ok
20:03:01.0441 0x0ddc  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
20:03:01.0451 0x0ddc  SamSs - ok
20:03:01.0471 0x0ddc  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
20:03:01.0471 0x0ddc  sbp2port - ok
20:03:01.0511 0x0ddc  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
20:03:01.0521 0x0ddc  SCardSvr - ok
20:03:01.0541 0x0ddc  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
20:03:01.0551 0x0ddc  scfilter - ok
20:03:01.0601 0x0ddc  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
20:03:01.0661 0x0ddc  Schedule - ok
20:03:01.0691 0x0ddc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
20:03:01.0691 0x0ddc  SCPolicySvc - ok
20:03:01.0713 0x0ddc  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
20:03:01.0723 0x0ddc  SDRSVC - ok
20:03:01.0743 0x0ddc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
20:03:01.0753 0x0ddc  secdrv - ok
20:03:01.0773 0x0ddc  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
20:03:01.0773 0x0ddc  seclogon - ok
20:03:01.0823 0x0ddc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
20:03:01.0833 0x0ddc  SENS - ok
20:03:01.0853 0x0ddc  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
20:03:01.0853 0x0ddc  SensrSvc - ok
20:03:01.0883 0x0ddc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
20:03:01.0883 0x0ddc  Serenum - ok
20:03:01.0923 0x0ddc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
20:03:01.0933 0x0ddc  Serial - ok
20:03:01.0953 0x0ddc  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
20:03:01.0953 0x0ddc  sermouse - ok
20:03:01.0983 0x0ddc  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
20:03:01.0993 0x0ddc  SessionEnv - ok
20:03:02.0013 0x0ddc  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
20:03:02.0013 0x0ddc  sffdisk - ok
20:03:02.0023 0x0ddc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
20:03:02.0023 0x0ddc  sffp_mmc - ok
20:03:02.0043 0x0ddc  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
20:03:02.0043 0x0ddc  sffp_sd - ok
20:03:02.0053 0x0ddc  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
20:03:02.0053 0x0ddc  sfloppy - ok
20:03:02.0143 0x0ddc  [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
20:03:02.0163 0x0ddc  Sftfs - ok
20:03:02.0263 0x0ddc  [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:03:02.0293 0x0ddc  sftlist - ok
20:03:02.0333 0x0ddc  [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
20:03:02.0343 0x0ddc  Sftplay - ok
20:03:02.0383 0x0ddc  [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
20:03:02.0383 0x0ddc  Sftredir - ok
20:03:02.0403 0x0ddc  [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
20:03:02.0403 0x0ddc  Sftvol - ok
20:03:02.0463 0x0ddc  [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:03:02.0463 0x0ddc  sftvsa - ok
20:03:02.0533 0x0ddc  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
20:03:02.0573 0x0ddc  SharedAccess - ok
20:03:02.0633 0x0ddc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:03:02.0643 0x0ddc  ShellHWDetection - ok
20:03:02.0713 0x0ddc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
20:03:02.0713 0x0ddc  SiSRaid2 - ok
20:03:02.0733 0x0ddc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
20:03:02.0733 0x0ddc  SiSRaid4 - ok
20:03:02.0833 0x0ddc  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
20:03:02.0843 0x0ddc  SkypeUpdate - ok
20:03:02.0863 0x0ddc  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
20:03:02.0873 0x0ddc  Smb - ok
20:03:02.0903 0x0ddc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
20:03:02.0913 0x0ddc  SNMPTRAP - ok
20:03:02.0923 0x0ddc  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
20:03:02.0933 0x0ddc  spldr - ok
20:03:02.0993 0x0ddc  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
20:03:03.0033 0x0ddc  Spooler - ok
20:03:03.0193 0x0ddc  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
20:03:03.0353 0x0ddc  sppsvc - ok
20:03:03.0373 0x0ddc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
20:03:03.0383 0x0ddc  sppuinotify - ok
20:03:03.0443 0x0ddc  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
20:03:03.0473 0x0ddc  srv - ok
20:03:03.0513 0x0ddc  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
20:03:03.0543 0x0ddc  srv2 - ok
20:03:03.0603 0x0ddc  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
20:03:03.0613 0x0ddc  srvnet - ok
20:03:03.0663 0x0ddc  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
20:03:03.0673 0x0ddc  SSDPSRV - ok
20:03:03.0693 0x0ddc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
20:03:03.0693 0x0ddc  SstpSvc - ok
20:03:03.0733 0x0ddc  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
20:03:03.0733 0x0ddc  stexstor - ok
20:03:03.0823 0x0ddc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
20:03:03.0863 0x0ddc  stisvc - ok
20:03:03.0883 0x0ddc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
20:03:03.0883 0x0ddc  swenum - ok
20:03:03.0913 0x0ddc  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
20:03:03.0953 0x0ddc  swprv - ok
20:03:04.0023 0x0ddc  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
20:03:04.0093 0x0ddc  SysMain - ok
20:03:04.0133 0x0ddc  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:03:04.0133 0x0ddc  TabletInputService - ok
20:03:04.0173 0x0ddc  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
20:03:04.0213 0x0ddc  TapiSrv - ok
20:03:04.0233 0x0ddc  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
20:03:04.0243 0x0ddc  TBS - ok
20:03:04.0383 0x0ddc  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
20:03:04.0483 0x0ddc  Tcpip - ok
20:03:04.0603 0x0ddc  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
20:03:04.0643 0x0ddc  TCPIP6 - ok
20:03:04.0693 0x0ddc  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
20:03:04.0693 0x0ddc  tcpipreg - ok
20:03:04.0733 0x0ddc  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
20:03:04.0743 0x0ddc  TDPIPE - ok
20:03:04.0773 0x0ddc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
20:03:04.0783 0x0ddc  TDTCP - ok
20:03:04.0803 0x0ddc  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
20:03:04.0813 0x0ddc  tdx - ok
20:03:04.0833 0x0ddc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
20:03:04.0833 0x0ddc  TermDD - ok
20:03:04.0893 0x0ddc  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
20:03:04.0943 0x0ddc  TermService - ok
20:03:04.0963 0x0ddc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
20:03:04.0963 0x0ddc  Themes - ok
20:03:05.0003 0x0ddc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
20:03:05.0013 0x0ddc  THREADORDER - ok
20:03:05.0033 0x0ddc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
20:03:05.0043 0x0ddc  TrkWks - ok
20:03:05.0103 0x0ddc  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:03:05.0123 0x0ddc  TrustedInstaller - ok
20:03:05.0153 0x0ddc  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
20:03:05.0153 0x0ddc  tssecsrv - ok
20:03:05.0173 0x0ddc  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
20:03:05.0173 0x0ddc  TsUsbFlt - ok
20:03:05.0213 0x0ddc  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
20:03:05.0213 0x0ddc  TsUsbGD - ok
20:03:05.0243 0x0ddc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
20:03:05.0253 0x0ddc  tunnel - ok
20:03:05.0273 0x0ddc  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
20:03:05.0283 0x0ddc  uagp35 - ok
20:03:05.0293 0x0ddc  [ A17D5E1A6DF4EAB0A480F2C490DE4C9D, 1EA835F172B6BF3D7F496E079DF1CDF00122B2110C08D61427582BC9405D2B7B ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
20:03:05.0293 0x0ddc  UBHelper - ok
20:03:05.0333 0x0ddc  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
20:03:05.0353 0x0ddc  udfs - ok
20:03:05.0393 0x0ddc  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
20:03:05.0403 0x0ddc  UI0Detect - ok
20:03:05.0423 0x0ddc  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
20:03:05.0433 0x0ddc  uliagpkx - ok
20:03:05.0463 0x0ddc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
20:03:05.0463 0x0ddc  umbus - ok
20:03:05.0483 0x0ddc  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
20:03:05.0483 0x0ddc  UmPass - ok
20:03:05.0683 0x0ddc  [ 7466809E6DA561D60C2F1CE8EDE3C73F, A3185049282A51B17C3DA839AF7E90F1CD395B2FB5587514EB2D65CB22854E2C ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:03:05.0763 0x0ddc  UNS - ok
20:03:05.0903 0x0ddc  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
20:03:05.0923 0x0ddc  upnphost - ok
20:03:05.0973 0x0ddc  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
20:03:05.0983 0x0ddc  usbccgp - ok
20:03:06.0053 0x0ddc  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
20:03:06.0063 0x0ddc  usbcir - ok
20:03:06.0103 0x0ddc  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
20:03:06.0103 0x0ddc  usbehci - ok
20:03:06.0173 0x0ddc  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
20:03:06.0183 0x0ddc  usbhub - ok
20:03:06.0223 0x0ddc  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
20:03:06.0233 0x0ddc  usbohci - ok
20:03:07.0695 0x0ddc  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
20:03:07.0695 0x0ddc  usbprint - ok
20:03:07.0855 0x0ddc  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
20:03:07.0855 0x0ddc  usbscan - ok
20:03:07.0905 0x0ddc  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:03:08.0235 0x0ddc  USBSTOR - ok
20:03:08.0325 0x0ddc  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
20:03:08.0325 0x0ddc  usbuhci - ok
20:03:08.0425 0x0ddc  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
20:03:08.0435 0x0ddc  usbvideo - ok
20:03:08.0485 0x0ddc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
20:03:08.0495 0x0ddc  UxSms - ok
20:03:08.0535 0x0ddc  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
20:03:08.0535 0x0ddc  VaultSvc - ok
20:03:08.0595 0x0ddc  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
20:03:08.0595 0x0ddc  vdrvroot - ok
20:03:08.0635 0x0ddc  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
20:03:08.0665 0x0ddc  vds - ok
20:03:08.0725 0x0ddc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
20:03:08.0735 0x0ddc  vga - ok
20:03:08.0755 0x0ddc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
20:03:08.0755 0x0ddc  VgaSave - ok
20:03:08.0785 0x0ddc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
20:03:08.0795 0x0ddc  vhdmp - ok
20:03:08.0825 0x0ddc  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
20:03:08.0825 0x0ddc  viaide - ok
20:03:08.0875 0x0ddc  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
20:03:08.0875 0x0ddc  volmgr - ok
20:03:08.0935 0x0ddc  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
20:03:08.0955 0x0ddc  volmgrx - ok
20:03:09.0015 0x0ddc  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
20:03:09.0025 0x0ddc  volsnap - ok
20:03:09.0055 0x0ddc  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
20:03:09.0065 0x0ddc  vsmraid - ok
20:03:09.0165 0x0ddc  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
20:03:09.0265 0x0ddc  VSS - ok
20:03:09.0275 0x0ddc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
20:03:09.0285 0x0ddc  vwifibus - ok
20:03:09.0315 0x0ddc  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
20:03:09.0315 0x0ddc  vwififlt - ok
20:03:09.0345 0x0ddc  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
20:03:09.0345 0x0ddc  vwifimp - ok
20:03:09.0385 0x0ddc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
20:03:09.0395 0x0ddc  W32Time - ok
20:03:09.0465 0x0ddc  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
20:03:09.0465 0x0ddc  WacomPen - ok
20:03:09.0535 0x0ddc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
20:03:09.0535 0x0ddc  WANARP - ok
20:03:09.0565 0x0ddc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
20:03:09.0565 0x0ddc  Wanarpv6 - ok
20:03:10.0015 0x0ddc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
20:03:10.0075 0x0ddc  WatAdminSvc - ok
20:03:10.0465 0x0ddc  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
20:03:10.0515 0x0ddc  wbengine - ok
20:03:10.0565 0x0ddc  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
20:03:10.0585 0x0ddc  WbioSrvc - ok
20:03:10.0715 0x0ddc  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
20:03:10.0735 0x0ddc  wcncsvc - ok
20:03:10.0765 0x0ddc  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:03:10.0775 0x0ddc  WcsPlugInService - ok
20:03:10.0825 0x0ddc  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
20:03:10.0825 0x0ddc  Wd - ok
20:03:10.0995 0x0ddc  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
20:03:11.0045 0x0ddc  Wdf01000 - ok
20:03:11.0115 0x0ddc  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
20:03:11.0125 0x0ddc  WdiServiceHost - ok
20:03:11.0135 0x0ddc  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
20:03:11.0145 0x0ddc  WdiSystemHost - ok
20:03:11.0255 0x0ddc  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
20:03:11.0265 0x0ddc  WebClient - ok
20:03:11.0355 0x0ddc  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
20:03:11.0375 0x0ddc  Wecsvc - ok
20:03:11.0415 0x0ddc  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
20:03:11.0425 0x0ddc  wercplsupport - ok
20:03:11.0485 0x0ddc  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
20:03:11.0485 0x0ddc  WerSvc - ok
20:03:11.0515 0x0ddc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
20:03:11.0525 0x0ddc  WfpLwf - ok
20:03:11.0545 0x0ddc  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
20:03:11.0545 0x0ddc  WIMMount - ok
20:03:11.0585 0x0ddc  WinDefend - ok
20:03:11.0605 0x0ddc  WinHttpAutoProxySvc - ok
20:03:11.0685 0x0ddc  WinkHandler - ok
20:03:11.0866 0x0ddc  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
20:03:11.0876 0x0ddc  Winmgmt - ok
20:03:12.0376 0x0ddc  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
20:03:12.0436 0x0ddc  WinRM - ok
20:03:12.0556 0x0ddc  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
20:03:12.0556 0x0ddc  WinUsb - ok
20:03:12.0766 0x0ddc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
20:03:12.0796 0x0ddc  Wlansvc - ok
20:03:12.0946 0x0ddc  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:03:12.0956 0x0ddc  wlcrasvc - ok
20:03:13.0546 0x0ddc  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:03:13.0616 0x0ddc  wlidsvc - ok
20:03:13.0686 0x0ddc  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
20:03:13.0686 0x0ddc  WmiAcpi - ok
20:03:13.0776 0x0ddc  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
20:03:13.0796 0x0ddc  wmiApSrv - ok
20:03:13.0866 0x0ddc  WMPNetworkSvc - ok
20:03:13.0936 0x0ddc  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
20:03:13.0946 0x0ddc  WPCSvc - ok
20:03:13.0986 0x0ddc  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
20:03:13.0996 0x0ddc  WPDBusEnum - ok
20:03:14.0016 0x0ddc  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
20:03:14.0016 0x0ddc  ws2ifsl - ok
20:03:14.0076 0x0ddc  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
20:03:14.0086 0x0ddc  wscsvc - ok
20:03:14.0096 0x0ddc  WSearch - ok
20:03:14.0396 0x0ddc  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
20:03:14.0496 0x0ddc  wuauserv - ok
20:03:14.0546 0x0ddc  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
20:03:14.0546 0x0ddc  WudfPf - ok
20:03:14.0616 0x0ddc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
20:03:14.0636 0x0ddc  WUDFRd - ok
20:03:14.0676 0x0ddc  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
20:03:14.0686 0x0ddc  wudfsvc - ok
20:03:14.0766 0x0ddc  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
20:03:14.0786 0x0ddc  WwanSvc - ok
20:03:14.0846 0x0ddc  ================ Scan global ===============================
20:03:14.0906 0x0ddc  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
20:03:14.0996 0x0ddc  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
20:03:15.0026 0x0ddc  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
20:03:15.0106 0x0ddc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
20:03:15.0226 0x0ddc  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
20:03:15.0246 0x0ddc  [ Global ] - ok
20:03:15.0246 0x0ddc  ================ Scan MBR ==================================
20:03:15.0276 0x0ddc  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:03:15.0956 0x0ddc  \Device\Harddisk0\DR0 - ok
20:03:15.0956 0x0ddc  ================ Scan VBR ==================================
20:03:15.0976 0x0ddc  [ 7B81AA6FBF427CF7D5FA215F687DD4DA ] \Device\Harddisk0\DR0\Partition1
20:03:16.0016 0x0ddc  \Device\Harddisk0\DR0\Partition1 - ok
20:03:16.0046 0x0ddc  [ 04B99352D524C535D7AD16BDEAAC1729 ] \Device\Harddisk0\DR0\Partition2
20:03:16.0106 0x0ddc  \Device\Harddisk0\DR0\Partition2 - ok
20:03:16.0106 0x0ddc  Waiting for KSN requests completion. In queue: 60
20:03:17.0108 0x0ddc  Waiting for KSN requests completion. In queue: 60
20:03:18.0108 0x0ddc  Waiting for KSN requests completion. In queue: 60
20:03:19.0128 0x0ddc  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.0.1526.0 ), 0x61000 ( enabled : updated )
20:03:19.0168 0x0ddc  Win FW state via NFP2: enabled
20:03:21.0870 0x0ddc  ============================================================
20:03:21.0870 0x0ddc  Scan finished
20:03:21.0870 0x0ddc  ============================================================
20:03:21.0880 0x12fc  Detected object count: 0
20:03:21.0880 0x12fc  Actual detected object count: 0
 



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 AM

Posted 18 March 2014 - 07:21 PM

How is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 ferozpatel_1

ferozpatel_1
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 19 March 2014 - 12:43 PM

Unfortunately, the problem still remains. I still get pop-up ads and spam links on almost every website. :(



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 AM

Posted 19 March 2014 - 12:48 PM

Look in your Browser's Add ons and disable any unknown items or all of them and see if it stops.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 ferozpatel_1

ferozpatel_1
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 19 March 2014 - 12:55 PM

You were correct! In my Add-Ons, there was a program called SavingsBull. I removed it and those ads and spam links are gone!

 

Is there anything else I need to do?



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 AM

Posted 19 March 2014 - 01:20 PM

Great.. to be sure there are no ther malwares you can run this scan, may need a couple hours but then we know all's good here.

ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 ferozpatel_1

ferozpatel_1
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 22 March 2014 - 09:50 AM

My apologies for the late reply. I finally managed to do the long ESET Scan. Here are the contents of the report:

 

C:\Users\All Users\HostIt\WS.Booster\WS.Booster.exe Win32/TrojanDownloader.Agent.AFD trojan

C:\Users\All Users\InstallMate\{38CBFE3B-9E8F-4323-A1C8-D6ADE328DCCD}\Custom.dll Win32/InstalleRex.M potentially unwanted application
C:\Users\All Users\InstallMate\{4DA7F569-791B-4EA4-AC4F-31399644D79F}\Custom.dll Win32/InstalleRex.M potentially unwanted application
C:\Users\All Users\InstallMate\{4E00B12C-4BE3-4926-ABCD-03C195E393DA}\Custom.dll Win32/InstalleRex.M potentially unwanted application
C:\Users\All Users\InstallMate\{53173E72-1843-469E-A475-506188F41C84}\Custom.dll Win32/InstalleRex.M potentially unwanted application
C:\Users\All Users\InstallMate\{603EED83-E671-4F50-ADBB-AE53BBDDCF75}\Custom.dll Win32/InstalleRex.M potentially unwanted application
C:\Users\All Users\InstallMate\{62FFB76F-2EC4-440D-A6E6-66E6B91C9599}\Custom.dll Win32/InstalleRex.M potentially unwanted application
C:\Users\All Users\InstallMate\{9372F891-C63F-433B-A1D0-8E1D4891DA67}\Custom.dll Win32/InstalleRex.M potentially unwanted application
C:\Users\All Users\MinimumPricuE\dPLwKw0nj3.dll a variant of Win32/AdWare.MultiPlug.N application
C:\Users\All Users\MinimumPricuE\dPLwKw0nj3.exe a variant of Win32/AdWare.MultiPlug.K.gen application
C:\Users\All Users\MinimumPricuE\dPLwKw0nj3.x64.dll a variant of Win64/Adware.MultiPlug.A application
C:\Users\All Users\NewSaaver\cD9dacCknh.dll a variant of Win32/AdWare.MultiPlug.N application
C:\Users\All Users\NewSaaver\cD9dacCknh.exe a variant of Win32/AdWare.MultiPlug.K.gen application
C:\Users\All Users\NewSaaver\cD9dacCknh.x64.dll a variant of Win64/Adware.MultiPlug.A application
C:\Users\All Users\SafeSoft\WS.Booster\WS.Booster.exe Win32/TrojanDownloader.Agent.AFD trojan
C:\Users\All Users\websaavoe\GXH.exe a variant of Win32/AdWare.MultiPlug.S application
C:\Users\All Users\weebsave\H5.exe a variant of Win32/AdWare.MultiPlug.S application
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XI0O2D0S\update[1] a variant of Win32/Toolbar.Perion.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd\2.0.0.574_0\resources\localscript.js.vir Win32/Toolbar.Perion.E potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhaebgajckjfkbccfabgnaiopnepgccp\1\51b8bcad8a95e3.63165065.js.vir Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7u89cycn.default-1394770959293\Extensions\5b89f4fc-4956-4b39-8e01-daabf7a94e50@fc8bd6c4-6346-4d41-98ba-5c9af3bd35c6.com\extensionData\plugins\91_monetizationLoader.js.js.vir JS/Toolbar.Crossrider.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\ARFC\wrtc.exe.vir a variant of Win32/Toolbar.Perion.G potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\WNLT\Installation\WSSetup.exe.vir a variant of Win32/Toolbar.Perion.G potentially unwanted application deleted - quarantined
C:\Program Files\Uninstaller\Uninstall.exe MSIL/DomaIQ.A potentially unwanted application deleted - quarantined
C:\Program Files (x86)\GS Supporter\AssistantSvc.dll a variant of Win32/SProtector.D potentially unwanted application deleted - quarantined
C:\Program Files (x86)\GS Supporter\Assistant_x64.dll a variant of Win64/SProtector.B potentially unwanted application deleted - quarantined
C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted (after the next restart) - quarantined
C:\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe a variant of Win64/Conduit.SearchProtect.A potentially unwanted application deleted - quarantined
C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll a variant of Win64/Conduit.SearchProtect.A potentially unwanted application deleted - quarantined
C:\Program Files (x86)\websaavoe\lo.dll a variant of Win32/AdWare.MultiPlug.N application cleaned by deleting - quarantined
C:\Program Files (x86)\websaavoe\lo.x64.dll a variant of Win64/Adware.MultiPlug.A application cleaned by deleting - quarantined
C:\Program Files (x86)\weebsave\y.dll a variant of Win32/AdWare.MultiPlug.N application cleaned by deleting - quarantined
C:\Program Files (x86)\weebsave\y.x64.dll a variant of Win64/Adware.MultiPlug.A application cleaned by deleting - quarantined
C:\ProgramData\HostIt\WS.Booster\WS.Booster.exe Win32/TrojanDownloader.Agent.AFD trojan cleaned by deleting (after the next restart) - quarantined
C:\ProgramData\InstallMate\{38CBFE3B-9E8F-4323-A1C8-D6ADE328DCCD}\Custom.dll Win32/InstalleRex.M potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{4DA7F569-791B-4EA4-AC4F-31399644D79F}\Custom.dll Win32/InstalleRex.M potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{4E00B12C-4BE3-4926-ABCD-03C195E393DA}\Custom.dll Win32/InstalleRex.M potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{53173E72-1843-469E-A475-506188F41C84}\Custom.dll Win32/InstalleRex.M potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{603EED83-E671-4F50-ADBB-AE53BBDDCF75}\Custom.dll Win32/InstalleRex.M potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{62FFB76F-2EC4-440D-A6E6-66E6B91C9599}\Custom.dll Win32/InstalleRex.M potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{9372F891-C63F-433B-A1D0-8E1D4891DA67}\Custom.dll Win32/InstalleRex.M potentially unwanted application deleted - quarantined
C:\ProgramData\MinimumPricuE\dPLwKw0nj3.dll a variant of Win32/AdWare.MultiPlug.N application cleaned by deleting - quarantined
C:\ProgramData\MinimumPricuE\dPLwKw0nj3.exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\ProgramData\MinimumPricuE\dPLwKw0nj3.x64.dll a variant of Win64/Adware.MultiPlug.A application cleaned by deleting - quarantined
C:\ProgramData\NewSaaver\cD9dacCknh.dll a variant of Win32/AdWare.MultiPlug.N application cleaned by deleting - quarantined
C:\ProgramData\NewSaaver\cD9dacCknh.exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\ProgramData\NewSaaver\cD9dacCknh.x64.dll a variant of Win64/Adware.MultiPlug.A application cleaned by deleting - quarantined
C:\ProgramData\SafeSoft\WS.Booster\WS.Booster.exe Win32/TrojanDownloader.Agent.AFD trojan cleaned by deleting (after the next restart) - quarantined
C:\ProgramData\websaavoe\GXH.exe a variant of Win32/AdWare.MultiPlug.S application cleaned by deleting - quarantined
C:\ProgramData\weebsave\H5.exe a variant of Win32/AdWare.MultiPlug.S application cleaned by deleting - quarantined
C:\temp\t.msi Win32/AdWare.Adpeak.B application deleted - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JORPHF0T\spstub[1].exe Win32/Conduit.SearchProtect.L potentially unwanted application deleted - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OJR6BZX2\SPSetup[1].exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Users\user\AppData\Local\Temp\ICReinstall_installer_firefox_English.exe a variant of Win32/Kryptik.BWAM trojan cleaned by deleting - quarantined
C:\Users\user\AppData\Local\Temp\OZAXXQ.tmp Win32/TrojanDownloader.Agent.AFD trojan cleaned by deleting - quarantined
C:\Users\user\AppData\Local\Temp\QRQFNZ.tmp Win32/TrojanDownloader.Agent.AFD trojan cleaned by deleting - quarantined
C:\Users\user\AppData\Local\Temp\SDWICG.tmp Win32/TrojanDownloader.Agent.AFD trojan cleaned by deleting - quarantined
C:\Users\user\AppData\Local\Temp\UPYYDF.tmp Win32/TrojanDownloader.Agent.AFD trojan cleaned by deleting - quarantined
C:\Users\user\AppData\Local\Temp\VXFQLE.tmp Win32/TrojanDownloader.Agent.AFD trojan cleaned by deleting - quarantined
C:\Users\user\AppData\Local\Temp\nsk88CD\SpSetup.exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Users\user\AppData\Local\Temp\nss95D1\SpSetup.exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Users\user\AppData\Local\Temp\{14E346FF-8284-49BA-887E-140A0864B866}\{F74A6B45-75E0-4119-9CB8-8C1AAB8E994A}\Default\File System\000\t\00\00000000 Win32/Somoto.A potentially unwanted application deleted - quarantined
C:\Users\user\AppData\Local\Temp\{14E346FF-8284-49BA-887E-140A0864B866}\{F74A6B45-75E0-4119-9CB8-8C1AAB8E994A}\Default\File System\000\t\00\00000001 Win32/Somoto.A potentially unwanted application deleted - quarantined
C:\Users\user\AppData\Local\Updater32912\Updater32912.exe a variant of Win32/Toolbar.CrossRider.C potentially unwanted application deleted - quarantined
C:\Users\user\Desktop\Old Firefox Data\msdleimy.default\extensions\5b89f4fc-4956-4b39-8e01-daabf7a94e50@fc8bd6c4-6346-4d41-98ba-5c9af3bd35c6.com\extensionData\plugins\91_monetizationLoader.js.js JS/Toolbar.Crossrider.B potentially unwanted application deleted - quarantined
C:\Users\user\Downloads\ccsetup322.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\Users\user\Downloads\ClickHeretoDownload-0tMgBu0.exe Win32/Somoto.A potentially unwanted application deleted - quarantined
C:\Users\user\Downloads\ClickHeretoDownload-8rVb5ik.exe Win32/Somoto.A potentially unwanted application deleted - quarantined
C:\Users\user\Downloads\ClickHeretoDownload-9OF4iSY.exe Win32/Somoto.A potentially unwanted application deleted - quarantined
C:\Users\user\Downloads\Setup (1).exe a variant of Win32/AdWare.iBryte.S application cleaned by deleting - quarantined
C:\Users\user\Downloads\Setup (2).exe a variant of Win32/AdWare.iBryte.S application cleaned by deleting - quarantined
C:\Users\user\Downloads\Setup.exe MSIL/Solimba potentially unwanted application deleted - quarantined
C:\Users\user\Downloads\SoftonicDownloader_pour_windows-live-messenger-msn-messenger.exe Win32/SoftonicDownloader.E potentially unwanted application deleted - quarantined
C:\Users\user\Downloads\spsetup123.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Windows\Installer\fdfb87.msi Win32/AdWare.Adpeak.B application deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XI0O2D0S\update[1] a variant of Win32/Toolbar.Perion.A potentially unwanted application deleted - quarantined
 


#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 AM

Posted 22 March 2014 - 12:30 PM

Great,, A lot if downloaders dumping all sorts of junk on here..

Looks god to go.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 ferozpatel_1

ferozpatel_1
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:08:43 AM

Posted 23 March 2014 - 08:22 AM

So, I have Microsoft Security Essentials as real-time protection. I also have Malwarebytes Free version. Windows Firewall.

 

Is this good enough to protect my computer?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users