Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

rvzr-a.akamaihd.net Pop-ups taking over browser


  • Please log in to reply
12 replies to this topic

#1 tacoslammer2

tacoslammer2

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:56 PM

Posted 05 April 2014 - 08:55 PM

Have had this before and just ran AdwCleaner.exe and it cleaned out the problem.   Just wondering why it and similar problems keep coming back.   Am going to run it again to clean this problem, but what can I do to prevent it from happening again?   Also "MediaPlayerplus' is poping up in this forum.   Use Windows 7 Home Premium SP1; Firefox; PC is Dell XPS 270 with Intel Q6600 quad core CPU; 4 GB memory; Nvidia GTX 770; ~ 1TB over 3 HDs.

 

Thanks.


Edited by tacoslammer2, 05 April 2014 - 08:59 PM.


BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:56 AM

Posted 05 April 2014 - 09:41 PM

Moved this to Am I Infected

 

I copied this explanation from our quietman7...

 

rvzr-a.akamaihd.net is not a virus.

Akamai Technologies is a U.S. Internet Content Delivery Network (CDN) responsible for serving approximately 15-20 percent of all web traffic. Akamai operates a network of servers around the world and rents space to customers who want their web sites to work faster by distributing content from locations close to the user. A CDN receives data and places it on various legitimate servers all over the world. This allows the content (images, music, movies, etc) to load faster because it is delivered to the end user from the nearest server holding the content. Akamai has several CDN networks and akamai.net; akamaiedge.net; akamaihd.net are a few of them.

Facebook, YouTube and Twitter both use akamaihd.net as a CDN to speed up their services. This is the reason why you will see an address in the status bar like "fbstatic-a.akamaihd.net" or "fbcdn-sphotos-f-a.akamaihd.net" when using Facebook or something similar (i.e. cdncache1-a.akamaihd.net, rvzr-a.akamaihd.net, etc) when visiting other websites using Akamai. These addresses are subdomains which show Akamai where visitors go and the percentage of visitors. Also when accessing web sites like Facebook, Yahoo, Bing, Gmail and Twitter, a message may pop-up with an alert advising that a security issue was detected on "xxx.a.akamaihd.net" and ask that you confirm the certificate. If you attempt to connect to a web site over HTTPS, it will often reveal Akamai. See Akamai and SSL.

Permanently blocking akamaihd.net may result in not being able to view web pages correctly.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 tacoslammer2

tacoslammer2
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:56 PM

Posted 05 April 2014 - 10:09 PM

Your information is useless!   It does not address the popup issue in Firefox when I connect to a FoxNews article and try to view a video and have it blocked until I have installed some unknown video player!

 

Continuous pop-ups with various ads and blocking browser links is BS for using a browser.   You cannot have these things poping up all the time.   I have pop-ups blocked in the browsers, use AdBlockPlus, and other devices to keep popups at bay.   FaceBook does not show "akamaihd" in the address bar for anytime I am on FaceBook.  MediaPlayerPlus also keeps throwing popups in the browser.   I just used AdwCleaner to clean up and everything seems OK now.

 

I think I will keep a link to AdwCleaner.exe on my desktop in the event of future similar problems.



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:56 AM

Posted 05 April 2014 - 10:18 PM

Not use less .. You then are infected just not with rxzr.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 tacoslammer2

tacoslammer2
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:56 PM

Posted 05 April 2014 - 11:01 PM

OK  Thanks boopme.   It may take sometime for me to complete all this.   It may be a couple of days before it all gets done and reply back to you with the requested info.



#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:56 AM

Posted 06 April 2014 - 05:59 AM

The information provided by boopme is not useless. In order to deal with rvzr-a.akamaihd.net, you need to understand what it is and is not. Otherwise, once the pop-ups are removed....you may encounter it again and have to start all over.

Please read and follow the instructions in this topic first....then perform the scans advised by boopme.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 tacoslammer2

tacoslammer2
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:56 PM

Posted 06 April 2014 - 09:51 AM

The information provided by boopme is not useless. In order to deal with rvzr-a.akamaihd.net, you need to understand what it is and is not. Otherwise, once the pop-ups are removed....you may encounter it again and have to start all over.

Please read and follow the instructions in this topic first....then perform the scans advised by boopme.

Thanks.   None of the files noted were installed.   However, I did find DMUninstaller listed in Add/Remove programs.   I went to Uninstall it and Win7 reported no program - may have been removed, etc. "Do you want to remove it from the list?".    It was removed from list and I noticed that in the Firefox address area there was a "leggo" block image at the beginning which is now gone!   Go figure.    I don't know for sure but it appears as though the "rvxr" issue is gone.

 

I am posting info boopme requested in another post.



#8 tacoslammer2

tacoslammer2
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:56 PM

Posted 06 April 2014 - 10:07 AM

boopme

Here is the info you requested:

 

MINITOOLBOX  Result.txt

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Tom Beall (administrator) on 05-04-2014 at 21:20:05
Running from "C:\Users\Tom Beall\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    1000gratisproben.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com

There are 15472 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.1.5 metric=1 publish=Yes


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : 2W20MB1
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : ftrdhcpuser.net

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : ftrdhcpuser.net
   Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller
   Physical Address. . . . . . . . . : 00-1A-A0-C0-EE-F2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::ccdf:36d4:5ef8:2807%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.5(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, April 05, 2014 7:29:49 PM
   Lease Expires . . . . . . . . . . : Sunday, April 06, 2014 7:29:47 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 234887840
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-25-C3-7F-00-1A-A0-C0-EE-F2
   DNS Servers . . . . . . . . . . . : 192.168.1.1
                                       184.16.33.54
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.ftrdhcpuser.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : ftrdhcpuser.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:ff:f60:3f57:fefa(Preferred)
   Link-local IPv6 Address . . . . . : fe80::ff:f60:3f57:fefa%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  Wireless_Broadband_Router.ftrdhcpuser.net
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:400a:804::1006
      173.194.33.134
      173.194.33.135
      173.194.33.136
      173.194.33.137
      173.194.33.142
      173.194.33.128
      173.194.33.129
      173.194.33.130
      173.194.33.131
      173.194.33.132
      173.194.33.133


Pinging google.com [173.194.33.136] with 32 bytes of data:
Reply from 173.194.33.136: bytes=32 time=12ms TTL=55
Reply from 173.194.33.136: bytes=32 time=11ms TTL=55

Ping statistics for 173.194.33.136:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 11ms, Maximum = 12ms, Average = 11ms
Server:  Wireless_Broadband_Router.ftrdhcpuser.net
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=20ms TTL=51
Reply from 206.190.36.45: bytes=32 time=17ms TTL=51

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 17ms, Maximum = 20ms, Average = 18ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...00 1a a0 c0 ee f2 ......Broadcom NetXtreme 57xx Gigabit Controller
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.5     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      169.254.0.0      255.255.0.0         On-link       192.168.1.5     21
  169.254.255.255  255.255.255.255         On-link       192.168.1.5    276
      192.168.1.0    255.255.255.0         On-link       192.168.1.5    276
      192.168.1.5  255.255.255.255         On-link       192.168.1.5    276
    192.168.1.255  255.255.255.255         On-link       192.168.1.5    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.5    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.5    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
      169.254.0.0      255.255.0.0      192.168.1.5       1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:6ab8:ff:f60:3f57:fefa/128
                                    On-link
 11    276 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::ff:f60:3f57:fefa/128
                                    On-link
 11    276 fe80::ccdf:36d4:5ef8:2807/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 11    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/05/2014 08:50:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/05/2014 07:31:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/05/2014 07:12:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/05/2014 03:53:21 PM) (Source: Reinstaller) (User: )
Description: Service cannot be started. The service process could not connect to the service controller

Error: (04/05/2014 03:32:38 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/05/2014 02:47:23 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 3436.  Message ID: [0x2509].

Error: (04/05/2014 02:44:56 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 7116.  Message ID: [0x2509].

Error: (04/05/2014 02:44:26 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 2732.  Message ID: [0x2509].

Error: (04/05/2014 02:29:50 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 1492.  Message ID: [0x2509].

Error: (04/05/2014 02:29:04 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 3560.  Message ID: [0x2509].


System errors:
=============
Error: (04/05/2014 07:12:45 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume F: were aborted during detection because a critical control file could not be opened.

Error: (04/05/2014 07:11:39 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume F: were deleted because the shadow copy storage could not grow in time.  Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.

Error: (04/05/2014 03:55:41 PM) (Source: Service Control Manager) (User: )
Description: The System Update kb77600 service terminated unexpectedly.  It has done this 1 time(s).

Error: (04/05/2014 03:32:50 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume F: were aborted during detection because a critical control file could not be opened.

Error: (04/05/2014 03:31:43 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume F: were deleted because the shadow copy storage could not grow in time.  Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.

Error: (04/05/2014 01:41:26 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (04/05/2014 01:41:26 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.

Error: (04/05/2014 01:40:59 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume F: were aborted during detection because a critical control file could not be opened.

Error: (04/05/2014 01:39:55 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume F: were deleted because the shadow copy storage could not grow in time.  Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.

Error: (04/05/2014 01:26:07 PM) (Source: Service Control Manager) (User: )
Description: The System Update kb77600 service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (04/05/2014 08:50:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Tom Beall\Desktop\esetsmartinstaller_enu.exe

Error: (04/05/2014 07:31:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/05/2014 07:12:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/05/2014 03:53:21 PM) (Source: Reinstaller)(User: )
Description: Service cannot be started. The service process could not connect to the service controller

Error: (04/05/2014 03:32:38 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/05/2014 02:47:23 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 3436.  Message ID: [0x2509].

Error: (04/05/2014 02:44:56 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 7116.  Message ID: [0x2509].

Error: (04/05/2014 02:44:26 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 2732.  Message ID: [0x2509].

Error: (04/05/2014 02:29:50 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 1492.  Message ID: [0x2509].

Error: (04/05/2014 02:29:04 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 3560.  Message ID: [0x2509].


=========================== Installed Programs ============================

3DMark (Version: 1.2.250.0)
Adblock Plus for IE (32-bit and 64-bit) (Version: 1.1)
Adblock Plus for IE (Version: 1.1)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Flash Player 12 Plugin (Version: 12.0.0.77)
Adobe Reader XI (11.0.06) (Version: 11.0.06)
Alexander the Great Secrets of Power (Version: 1.0)
ANT Drivers Installer x64 (Version: 2.3.4)
Apple Application Support (Version: 3.0.1)
Apple Mobile Device Support (Version: 7.1.1.3)
Apple Software Update (Version: 2.1.3.127)
Assassins Creed IV Black Flag
Batman™: Arkham Origins
Belarc Advisor 8.1
BigPatience
Bonjour (Version: 3.0.0.10)
Broadcom NetXtreme-I Netlink Driver and Management Installer (Version: 15.4.14.1)
Canon Easy-PhotoPrint EX
Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data
Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data
Canon Easy-WebPrint EX (Version: 1.3.5.0)
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Canon MG8100 series MP Drivers
Canon MG8100 series User Registration
Canon MP Navigator EX 4.0
Canon My Image Garden (Version: 2.0.1)
Canon My Image Garden Design Files (Version: 2.0.0)
Canon My Printer
Canon Quick Menu (Version: 2.1.0)
CCleaner (Version: 4.12)
CPUID CPU-Z 1.69
CPUID HWMonitor 1.24
Creative ALchemy (Version: 1.43)
Creative Audio Control Panel (Version: 2.00)
Creative Console Launcher
Creative MediaSource 5 (Version: 5.26)
Creative Software AutoUpdate (Version: 1.40)
Creative Sound Blaster Properties x64 Edition
Creative WaveStudio 7 (Version: 7.14)
CrystalDiskInfo 6.1.8 (Version: 6.1.8)
CrystalDiskMark 3.0.1c (Version: 3.0.1c)
D3DX10 (Version: 15.4.2368.0902)
Dell System Detect (Version: 5.4.0.4)
DirectX 9 Runtime (Version: 1.00.0000)
DMUninstaller
Download App (Version: 1.6.5)
Dream Vacation Solitaire FREE
Dreamscapes The Sandman (Version: 1.0)
Elevated Installer (Version: 3.1.7.0)
eReg (Version: 1.20.138.34)
Fences (Version: 1.0)
FileHippo.com Update Checker
FloatLED v1.12
Foxit Cloud (Version: 1.2.75.126)
Foxit Reader (Version: 6.1.4.217)
Futuremark SystemInfo (Version: 4.24.338)
Garmin Express (Version: 3.1.7.0)
Garmin Express Tray (Version: 3.1.7.0)
GeForce Experience NvStream Client Components (Version: 1.6.28)
GIGABYTE OC_GURU II (Version: 1.61.0000)
GIMP 2.8.10 (Version: 2.8.10)
Glary Registry Repair 3.3.0.852
Glary Utilities 2.54.0.1759 (Version: 2.54.0.1759)
Glary Utilities 4.9 (Version: 4.9.0.99)
Hard Disk Sentinel
Heaven Benchmark version 4.0 (Version: 4.0)
IrfanView (remove only) (Version: 4.37)
iTunes (Version: 11.1.5.5)
Java 7 Update 51 (Version: 7.0.510)
K-Lite Codec Pack 10.3.7 Full (Version: 10.3.7)
Little Registry Cleaner
Logitech SetPoint 6.61 (Version: 6.61.15)
Logitech Unifying Software 2.10 (Version: 2.10.37)
Malwarebytes Anti-Malware version 2.0.1.1004 (Version: 2.0.1.1004)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2000 Professional (Version: 9.00.2720)
Microsoft Security Client (Version: 4.5.0216.0)
Microsoft Security Essentials (Version: 4.5.216.0)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Movie Maker (Version: 16.4.3508.0205)
Mozilla Firefox 28.0 (x86 en-US) (Version: 28.0)
Mozilla Maintenance Service (Version: 24.4.0)
Mozilla Thunderbird 24.4.0 (x86 en-US) (Version: 24.4.0)
MSI Afterburner 2.3.1 (Version: 2.3.1)
MSI Kombustor 3.3.0
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Mushroom Age (Version: 1.0)
My Dell (Version: 3.5.6426.22)
Mysteryville (Version: 1.0)
Netflix Icon Installer (Version: 1.0.0)
Network Activity Indicator for Windows 7 (Version: 1.6)
NVIDIA 3D Vision Controller Driver 335.21 (Version: 335.21)
NVIDIA 3D Vision Driver 335.23 (Version: 335.23)
NVIDIA Control Panel 335.23 (Version: 335.23)
NVIDIA GeForce Experience 1.8.2.1 (Version: 1.8.2.1)
NVIDIA Graphics Driver 335.23 (Version: 335.23)
NVIDIA HD Audio Driver 1.3.30.1 (Version: 1.3.30.1)
NVIDIA Install Application (Version: 2.1002.147.1067)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 1.0)
NVIDIA PhysX (Version: 9.13.1220)
NVIDIA PhysX System Software 9.13.1220 (Version: 9.13.1220)
NVIDIA ShadowPlay 11.10.13 (Version: 11.10.13)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3523)
NVIDIA Update 11.10.13 (Version: 11.10.13)
NVIDIA Update Core (Version: 11.10.13)
NVIDIA Virtual Audio 1.2.20 (Version: 1.2.20)
OpenAL
OpenOffice 4.0.1 (Version: 4.01.9714)
Paint.NET v3.5.11 (Version: 3.61.0)
PC Wizard 2013.2.12
Photo Gallery (Version: 16.4.3508.0205)
Platform (Version: 1.38)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Python 2.7.6 (Version: 2.7.6150)
QuickSet (Version: 8.2.12)
RBVirtualFolder64Inst (Version: 1.00.0000)
Registry Repair 4.1.0.388 (Version: 4.1.0.388)
Revo Uninstaller 1.95 (Version: 1.95)
Roxio BackOnTrack (Version: 4.0)
Roxio Burn (Version: 1.6)
Roxio CinePlayer (Version: 5.6)
Roxio CinePlayer Decoder Pack (Version: 4.3.0)
Roxio Creator 2011 (Version: 1.3.166)
Roxio Creator 2011 (Version: 13.0)
Roxio Creator 2011 (Version: 6.0.0)
Roxio Dell install Util (Version: 2.00.0000)
Roxio PhotoShow (Version: 6.0)
Roxio Video Capture USB (Version: 1.22.0000)
Saints Row IV
Savings Bond Wizard
Secunia PSI (3.0.0.9016) (Version: 3.0.0.9016)
SHIELD Streaming (Version: 1.7.321)
SlimDrivers (Version: 2.2.32705)
SmartSound Common Data (Version: 1.1.0)
SmartSound Quicktracks 5 (Version: 5.1.7)
SoundFont Bank Manager (Version: 3.21)
SPAMfighter (Version: 7.6.77)
Speccy (Version: 1.25)
Spotify (Version: 0.9.6.72.ge389c074)
Spybot - Search & Destroy (Version: 2.2.25)
Steam
Stolen Secrets (Version: 1.0)
SUPERAntiSpyware (Version: 5.7.1014)
System Explorer 4.7.0
System Requirements Lab for Intel (Version: 4.5.15.0)
TechPowerUp GPU-Z
Tom Clancy's Splinter Cell® Blacklist™ (Version: 1.00.1000)
Tomb Raider: Anniversary Demo 1.0
True Image WD Edition (Version: 16.0.5958)
TuneUp Utilities 2014 (en-US) (Version: 14.0.1000.275)
TuneUp Utilities 2014 (Version: 14.0.1000.275)
TurboTax 2012 (Version: 2012.0)
TurboTax 2012 WinPerFedFormset (Version: 012.000.2309)
TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0474)
TurboTax 2012 WinPerTaxSupport (Version: 012.000.0186)
TurboTax 2012 woriper (Version: 012.000.1483)
TurboTax 2012 wrapper (Version: 012.000.0127)
TurboTax 2013 (Version: 2013.0)
TurboTax 2013 WinPerFedFormset (Version: 013.000.1790)
TurboTax 2013 WinPerReleaseEngine (Version: 013.000.0463)
TurboTax 2013 WinPerTaxSupport (Version: 013.000.0162)
TurboTax 2013 woriper (Version: 013.000.1237)
TurboTax 2013 wrapper (Version: 013.000.0135)
Unigine Valley Benchmark version 1.0 (Version: 1.0)
Uplay (Version: 4.2)
VD64Inst (Version: 1.00.0000)
VIA Platform Device Manager (Version: 1.38)
Video Card Stability Test (Version: v.1.0.0.3)
VLC media player 2.1.3 (Version: 2.1.3)
WD Drive Utilities (Version: 1.0.7.3)
WD Quick View (Version: 2.3.0.20)
WD SmartWare (Version: 2.3.0.20)
WD SmartWare Installer (Version: 2.3.0.20)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (Version: 04/11/2012 1.2.40.201)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (Version: 02/06/2007 3.1)
Windows Live Communications Platform (Version: 16.4.3508.0205)
Windows Live Essentials (Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3508.0205)
Windows Live Photo Common (Version: 16.4.3508.0205)
Windows Live PIMT Platform (Version: 16.4.3508.0205)
Windows Live SOXE (Version: 16.4.3508.0205)
Windows Live SOXE Definitions (Version: 16.4.3508.0205)
Windows Live UX Platform (Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205)
WinUtilities Free Edition 11.13 (Version: 11.13)
Wizard's Spell (Version: 1.0)

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 4093.35 MB
Available physical RAM: 2302.58 MB
Total Pagefile: 14278.23 MB
Available Pagefile: 12574.28 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.46 MB

========================= Partitions: =====================================

2 Drive c: (Windows OS Drive) (Fixed) (Total:698.64 GB) (Free:513.72 GB) NTFS
4 Drive e: (Hard Drive Dwnlds Info Etc) (Fixed) (Total:120.96 GB) (Free:52.15 GB) NTFS
5 Drive f: (Data - Logical - old "C") (Fixed) (Total:149 GB) (Free:140.59 GB) NTFS

========================= Users: ========================================

User accounts for \\2W20MB1

Administrator            Guest                    Tom Beall                

**** End of log ****

 

---------------------------------------------------------------------------------------------------------------------------------------------------

TDSSKiller -----.txt

 

21:24:20.0512 0x0e0c  TDSS rootkit removing tool 3.0.0.28 Apr  4 2014 12:43:10
21:24:55.0207 0x0e0c  ============================================================
21:24:55.0207 0x0e0c  Current date / time: 2014/04/05 21:24:55.0207
21:24:55.0207 0x0e0c  SystemInfo:
21:24:55.0207 0x0e0c  
21:24:55.0207 0x0e0c  OS Version: 6.1.7601 ServicePack: 1.0
21:24:55.0207 0x0e0c  Product type: Workstation
21:24:55.0207 0x0e0c  ComputerName: 2W20MB1
21:24:55.0207 0x0e0c  UserName: Tom Beall
21:24:55.0207 0x0e0c  Windows directory: C:\Windows
21:24:55.0207 0x0e0c  System windows directory: C:\Windows
21:24:55.0207 0x0e0c  Running under WOW64
21:24:55.0207 0x0e0c  Processor architecture: Intel x64
21:24:55.0207 0x0e0c  Number of processors: 4
21:24:55.0207 0x0e0c  Page size: 0x1000
21:24:55.0207 0x0e0c  Boot type: Normal boot
21:24:55.0207 0x0e0c  ============================================================
21:24:56.0689 0x0e0c  KLMD registered as C:\Windows\system32\drivers\60900143.sys
21:24:56.0829 0x0e0c  System UUID: {47E8096C-507C-C624-F3E4-1A72E4D81825}
21:24:57.0391 0x0e0c  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:24:57.0406 0x0e0c  Drive \Device\Harddisk1\DR1 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:24:57.0422 0x0e0c  Drive \Device\Harddisk2\DR2 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:24:57.0500 0x0e0c  ============================================================
21:24:57.0500 0x0e0c  \Device\Harddisk0\DR0:
21:24:57.0500 0x0e0c  MBR partitions:
21:24:57.0500 0x0e0c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x575452C2
21:24:57.0500 0x0e0c  \Device\Harddisk1\DR1:
21:24:57.0500 0x0e0c  MBR partitions:
21:24:57.0500 0x0e0c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xF1EA73C
21:24:57.0547 0x0e0c  \Device\Harddisk2\DR2:
21:24:57.0547 0x0e0c  MBR partitions:
21:24:57.0547 0x0e0c  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x42F, BlocksNum 0x12A00101
21:24:57.0547 0x0e0c  ============================================================
21:24:57.0562 0x0e0c  C: <-> \Device\Harddisk0\DR0\Partition1
21:24:57.0625 0x0e0c  E: <-> \Device\Harddisk1\DR1\Partition1
21:24:57.0625 0x0e0c  F: <-> \Device\Harddisk2\DR2\Partition1
21:24:57.0625 0x0e0c  ============================================================
21:24:57.0625 0x0e0c  Initialize success
21:24:57.0625 0x0e0c  ============================================================
21:25:04.0270 0x1528  ============================================================
21:25:04.0270 0x1528  Scan started
21:25:04.0270 0x1528  Mode: Manual;
21:25:04.0270 0x1528  ============================================================
21:25:04.0270 0x1528  KSN ping started
21:25:18.0170 0x1528  KSN ping finished: true
21:25:18.0716 0x1528  ================ Scan system memory ========================
21:25:18.0716 0x1528  System memory - ok
21:25:18.0716 0x1528  ================ Scan services =============================
21:25:18.0778 0x1528  [ 620C92D6EEFA9853A3EAD41B5EB9B5FD, 72DD7297179AC6629B816DD9656D5EC3F02BE677EA01A05A5EB808180F0D775F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:25:18.0778 0x1528  !SASCORE - ok
21:25:18.0887 0x1528  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
21:25:18.0887 0x1528  1394ohci - ok
21:25:18.0965 0x1528  [ A15069EEC83EBC54150564B2585CFDBA, CEAF652E38F3222998ED1EACECA73E891E1B47065B4B855D759009945594FF8E ] 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe
21:25:18.0981 0x1528  9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 - ok
21:25:18.0997 0x1528  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:25:19.0012 0x1528  ACPI - ok
21:25:19.0028 0x1528  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:25:19.0028 0x1528  AcpiPmi - ok
21:25:19.0106 0x1528  [ 7736CDCCA38519FD637C82638A06B4FF, 9F6FD63A28BE387AD83707398DC67D88117E5517F8B7499315CE372F90F2B9B8 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
21:25:19.0137 0x1528  AcrSch2Svc - ok
21:25:19.0168 0x1528  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:25:19.0184 0x1528  AdobeARMservice - ok
21:25:19.0262 0x1528  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:25:19.0262 0x1528  AdobeFlashPlayerUpdateSvc - ok
21:25:19.0293 0x1528  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:25:19.0293 0x1528  adp94xx - ok
21:25:19.0309 0x1528  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:25:19.0324 0x1528  adpahci - ok
21:25:19.0340 0x1528  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:25:19.0340 0x1528  adpu320 - ok
21:25:19.0355 0x1528  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:25:19.0355 0x1528  AeLookupSvc - ok
21:25:19.0387 0x1528  [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
21:25:19.0387 0x1528  afcdp - ok
21:25:19.0496 0x1528  [ 051B0369593D350A0610FC2E3F1F8AFD, 4F2AE13B386E22A72B7FCF774197364E55CB82565876FB562F0F808A66FB2B71 ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
21:25:19.0589 0x1528  afcdpsrv - ok
21:25:19.0636 0x1528  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
21:25:19.0652 0x1528  AFD - ok
21:25:19.0667 0x1528  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
21:25:19.0667 0x1528  agp440 - ok
21:25:19.0683 0x1528  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
21:25:19.0683 0x1528  ALG - ok
21:25:19.0699 0x1528  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:25:19.0699 0x1528  aliide - ok
21:25:19.0714 0x1528  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:25:19.0714 0x1528  amdide - ok
21:25:19.0730 0x1528  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:25:19.0745 0x1528  AmdK8 - ok
21:25:19.0761 0x1528  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
21:25:19.0761 0x1528  AmdPPM - ok
21:25:19.0792 0x1528  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:25:19.0792 0x1528  amdsata - ok
21:25:19.0808 0x1528  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:25:19.0808 0x1528  amdsbs - ok
21:25:19.0808 0x1528  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:25:19.0823 0x1528  amdxata - ok
21:25:19.0855 0x1528  [ 9EBE3D1E63AD4F9659BA032679EBB4A3, E3C576F3EE65B6BCDC7ABD86517BEAB4B5618A3AE3434B51E905168DAE05D272 ] Angel2          C:\Windows\system32\DRIVERS\Angel2.sys
21:25:19.0886 0x1528  Angel2 - ok
21:25:19.0901 0x1528  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
21:25:19.0901 0x1528  AppID - ok
21:25:19.0917 0x1528  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:25:19.0917 0x1528  AppIDSvc - ok
21:25:19.0948 0x1528  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
21:25:19.0948 0x1528  Appinfo - ok
21:25:19.0995 0x1528  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:25:20.0011 0x1528  Apple Mobile Device - ok
21:25:20.0011 0x1528  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
21:25:20.0011 0x1528  arc - ok
21:25:20.0026 0x1528  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:25:20.0026 0x1528  arcsas - ok
21:25:20.0089 0x1528  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:25:20.0089 0x1528  aspnet_state - ok
21:25:20.0104 0x1528  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:25:20.0104 0x1528  AsyncMac - ok
21:25:20.0120 0x1528  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
21:25:20.0120 0x1528  atapi - ok
21:25:20.0151 0x1528  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:25:20.0167 0x1528  AudioEndpointBuilder - ok
21:25:20.0198 0x1528  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:25:20.0213 0x1528  AudioSrv - ok
21:25:20.0245 0x1528  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:25:20.0245 0x1528  AxInstSV - ok
21:25:20.0276 0x1528  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
21:25:20.0276 0x1528  b06bdrv - ok
21:25:20.0323 0x1528  [ 459D689278BF58B4944C939B77D85CAA, 4C304AA44E90FCD94F4DAA0A155E050FCE46F75C6820D357EC9DDE39A6AEC3D1 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:25:20.0323 0x1528  b57nd60a - ok
21:25:20.0338 0x1528  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:25:20.0338 0x1528  BDESVC - ok
21:25:20.0354 0x1528  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:25:20.0354 0x1528  Beep - ok
21:25:20.0385 0x1528  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
21:25:20.0401 0x1528  BFE - ok
21:25:20.0447 0x1528  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
21:25:20.0479 0x1528  BITS - ok
21:25:20.0479 0x1528  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:25:20.0479 0x1528  blbdrive - ok
21:25:20.0510 0x1528  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:25:20.0510 0x1528  Bonjour Service - ok
21:25:20.0541 0x1528  [ 369D7E0E01117A1A4A23C9C6A04EED06, 000793ECF7BF88A108A9FF623AF03508AD360854D08BD70DF32C22EBFE78E119 ] BootDefragDriver C:\Windows\system32\drivers\BootDefragDriver.sys
21:25:20.0541 0x1528  BootDefragDriver - ok
21:25:20.0557 0x1528  [ F4BA084CBDE9B67C57BC7891C0225EA8, E818B62B82BFB3104E83F5330A542366FD8190FE906CF3C20E1C199BD37E14AC ] BOT4Service     C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe
21:25:20.0572 0x1528  BOT4Service - ok
21:25:20.0572 0x1528  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:25:20.0572 0x1528  bowser - ok
21:25:20.0603 0x1528  [ F62362D1F8426B48B01DA2E2248BDF5F, 3EED64CB027493162E5445C004E804690298118DB041A956C18AE56913B64EF0 ] BrcmMgmtAgent   C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe
21:25:20.0603 0x1528  BrcmMgmtAgent - ok
21:25:20.0619 0x1528  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
21:25:20.0635 0x1528  BrFiltLo - ok
21:25:20.0635 0x1528  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
21:25:20.0650 0x1528  BrFiltUp - ok
21:25:20.0666 0x1528  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
21:25:20.0681 0x1528  Browser - ok
21:25:20.0697 0x1528  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:25:20.0697 0x1528  Brserid - ok
21:25:20.0713 0x1528  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:25:20.0728 0x1528  BrSerWdm - ok
21:25:20.0744 0x1528  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:25:20.0744 0x1528  BrUsbMdm - ok
21:25:20.0744 0x1528  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:25:20.0744 0x1528  BrUsbSer - ok
21:25:20.0759 0x1528  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:25:20.0759 0x1528  BTHMODEM - ok
21:25:20.0775 0x1528  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
21:25:20.0775 0x1528  bthserv - ok
21:25:20.0791 0x1528  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:25:20.0791 0x1528  cdfs - ok
21:25:20.0822 0x1528  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:25:20.0822 0x1528  cdrom - ok
21:25:20.0822 0x1528  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
21:25:20.0822 0x1528  CertPropSvc - ok
21:25:20.0837 0x1528  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:25:20.0837 0x1528  circlass - ok
21:25:20.0869 0x1528  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
21:25:20.0884 0x1528  CLFS - ok
21:25:20.0947 0x1528  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:25:20.0947 0x1528  clr_optimization_v2.0.50727_32 - ok
21:25:20.0978 0x1528  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:25:20.0978 0x1528  clr_optimization_v2.0.50727_64 - ok
21:25:21.0009 0x1528  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:25:21.0009 0x1528  clr_optimization_v4.0.30319_32 - ok
21:25:21.0025 0x1528  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:25:21.0025 0x1528  clr_optimization_v4.0.30319_64 - ok
21:25:21.0056 0x1528  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
21:25:21.0056 0x1528  CmBatt - ok
21:25:21.0056 0x1528  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:25:21.0056 0x1528  cmdide - ok
21:25:21.0087 0x1528  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
21:25:21.0103 0x1528  CNG - ok
21:25:21.0103 0x1528  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
21:25:21.0103 0x1528  Compbatt - ok
21:25:21.0118 0x1528  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
21:25:21.0118 0x1528  CompositeBus - ok
21:25:21.0134 0x1528  COMSysApp - ok
21:25:21.0165 0x1528  [ 3CA734CE373E5675FBC15CA2C45228E5, A6C6E9FABDE5EA18D266DB71C0CC6B51D682116D1898CCB4E9BA730F15C44B32 ] cpudrv64        C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
21:25:21.0165 0x1528  cpudrv64 - ok
21:25:21.0181 0x1528  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:25:21.0181 0x1528  crcdisk - ok
21:25:21.0227 0x1528  [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
21:25:21.0227 0x1528  Creative ALchemy AL6 Licensing Service - ok
21:25:21.0243 0x1528  [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
21:25:21.0259 0x1528  Creative Audio Engine Licensing Service - ok
21:25:21.0290 0x1528  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:25:21.0290 0x1528  CryptSvc - ok
21:25:21.0321 0x1528  [ DF908DFC09A49F6F71A88E1EBFED97D6, 39CEE8FC2CEAC080E6BE38681AA9FE7FF7828D369E00CA3A233859F9E4D1C5FB ] CT20XUT         C:\Windows\system32\drivers\CT20XUT.SYS
21:25:21.0321 0x1528  CT20XUT - ok
21:25:21.0352 0x1528  [ DF908DFC09A49F6F71A88E1EBFED97D6, 39CEE8FC2CEAC080E6BE38681AA9FE7FF7828D369E00CA3A233859F9E4D1C5FB ] CT20XUT.SYS     C:\Windows\System32\drivers\CT20XUT.SYS
21:25:21.0352 0x1528  CT20XUT.SYS - ok
21:25:21.0383 0x1528  [ 8B15225C82E7F6064D4523DF494BF112, 93F540C6FA55B7A02297FA9185D48DE1936A9DA70AE1B0F215E35450B686EA26 ] ctac32k         C:\Windows\system32\drivers\ctac32k.sys
21:25:21.0399 0x1528  ctac32k - ok
21:25:21.0430 0x1528  [ 80298AE72BDCF141DE89CF4DD54E286A, 0589A4F0932BCA0AE4A080C23BB4D126BFDC2BEB5F9204B14BB3905CC6BF46F8 ] ctaud2k         C:\Windows\system32\drivers\ctaud2k.sys
21:25:21.0446 0x1528  ctaud2k - ok
21:25:21.0508 0x1528  [ 07BA6D17E66879018B30B6C3F976EBED, 1759CE25519358A47E1B1FA02A415DB5D3F6B511AD3820D0AE8A1533B5DC83CD ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
21:25:21.0508 0x1528  CTAudSvcService - ok
21:25:21.0555 0x1528  [ 76E301B0465F0F8D4AD50B1E21A429F2, 226EB9BBF2DA55E490456C3C061ECA6AB4C663893E1007B4142B07E4E48AD052 ] CTEXFIFX        C:\Windows\system32\drivers\CTEXFIFX.SYS
21:25:21.0586 0x1528  CTEXFIFX - ok
21:25:21.0633 0x1528  [ 76E301B0465F0F8D4AD50B1E21A429F2, 226EB9BBF2DA55E490456C3C061ECA6AB4C663893E1007B4142B07E4E48AD052 ] CTEXFIFX.SYS    C:\Windows\System32\drivers\CTEXFIFX.SYS
21:25:21.0649 0x1528  CTEXFIFX.SYS - ok
21:25:21.0664 0x1528  [ 9DD0C0D2EAABB276229B0FBADBABBCDE, 4EF10F29B1E7EB2CB3165C2C36A044FCCC6EC664034E8428F2451110DDA8F6EB ] CTHWIUT         C:\Windows\system32\drivers\CTHWIUT.SYS
21:25:21.0664 0x1528  CTHWIUT - ok
21:25:21.0680 0x1528  [ 9DD0C0D2EAABB276229B0FBADBABBCDE, 4EF10F29B1E7EB2CB3165C2C36A044FCCC6EC664034E8428F2451110DDA8F6EB ] CTHWIUT.SYS     C:\Windows\System32\drivers\CTHWIUT.SYS
21:25:21.0680 0x1528  CTHWIUT.SYS - ok
21:25:21.0680 0x1528  [ 95FE230FB90AAE0240ED6B5882659236, BAF7A7CB05329D1055DE06DFBE63EFDD81F4ADFA2E7373A050E0F7D480461175 ] ctprxy2k        C:\Windows\system32\drivers\ctprxy2k.sys
21:25:21.0680 0x1528  ctprxy2k - ok
21:25:21.0695 0x1528  [ 95DEEDAC0EB4EA39E8E52C82874ECD55, 5210A962155D1987A7A8496413B63FAC4B7139872C34ACBC40CAC2372CDCAACD ] ctsfm2k         C:\Windows\system32\drivers\ctsfm2k.sys
21:25:21.0711 0x1528  ctsfm2k - ok
21:25:21.0742 0x1528  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:25:21.0758 0x1528  DcomLaunch - ok
21:25:21.0789 0x1528  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
21:25:21.0789 0x1528  defragsvc - ok
21:25:21.0805 0x1528  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:25:21.0805 0x1528  DfsC - ok
21:25:21.0820 0x1528  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:25:21.0820 0x1528  Dhcp - ok
21:25:21.0836 0x1528  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
21:25:21.0836 0x1528  discache - ok
21:25:21.0851 0x1528  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
21:25:21.0851 0x1528  Disk - ok
21:25:21.0883 0x1528  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:25:21.0883 0x1528  Dnscache - ok
21:25:21.0914 0x1528  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:25:21.0914 0x1528  dot3svc - ok
21:25:21.0929 0x1528  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
21:25:21.0929 0x1528  DPS - ok
21:25:21.0961 0x1528  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:25:21.0961 0x1528  drmkaud - ok
21:25:22.0023 0x1528  [ 1ED08A6264C5C92099D6D1DAE5E8F530, 4045AE77859B1DBF13972451972EAAF6F3C97BEA423E9E78F1C2F14330CD47CA ] DrvAgent64      C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
21:25:22.0039 0x1528  DrvAgent64 - ok
21:25:22.0085 0x1528  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:25:22.0117 0x1528  DXGKrnl - ok
21:25:22.0148 0x1528  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
21:25:22.0148 0x1528  EapHost - ok
21:25:22.0257 0x1528  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
21:25:22.0351 0x1528  ebdrv - ok
21:25:22.0382 0x1528  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
21:25:22.0382 0x1528  EFS - ok
21:25:22.0429 0x1528  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:25:22.0444 0x1528  ehRecvr - ok
21:25:22.0475 0x1528  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
21:25:22.0475 0x1528  ehSched - ok
21:25:22.0507 0x1528  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:25:22.0522 0x1528  elxstor - ok
21:25:22.0538 0x1528  [ 1125E333BB0BA07EA83C13AEDA00ECCB, D13EE9BBB74CF9FA452E544CCA34905105FD60E284FDB764A0D00C7582D8B2C5 ] emupia          C:\Windows\system32\drivers\emupia2k.sys
21:25:22.0538 0x1528  emupia - ok
21:25:22.0538 0x1528  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:25:22.0538 0x1528  ErrDev - ok
21:25:22.0569 0x1528  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
21:25:22.0585 0x1528  EventSystem - ok
21:25:22.0600 0x1528  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:25:22.0600 0x1528  exfat - ok
21:25:22.0616 0x1528  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:25:22.0631 0x1528  fastfat - ok
21:25:22.0663 0x1528  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
21:25:22.0678 0x1528  Fax - ok
21:25:22.0709 0x1528  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:25:22.0709 0x1528  fdc - ok
21:25:22.0725 0x1528  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
21:25:22.0725 0x1528  fdPHost - ok
21:25:22.0725 0x1528  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:25:22.0741 0x1528  FDResPub - ok
21:25:22.0741 0x1528  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:25:22.0741 0x1528  FileInfo - ok
21:25:22.0756 0x1528  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:25:22.0756 0x1528  Filetrace - ok
21:25:22.0772 0x1528  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:25:22.0772 0x1528  flpydisk - ok
21:25:22.0787 0x1528  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:25:22.0787 0x1528  FltMgr - ok
21:25:22.0819 0x1528  [ C06AF3D1E7CA6868A6A3064CE6907C4A, A1A357CF99291E1611A4380BF8866B5B594637C186B5FD1EFDF052D4EB69FAB9 ] fltsrv          C:\Windows\system32\DRIVERS\fltsrv.sys
21:25:22.0834 0x1528  fltsrv - ok
21:25:22.0897 0x1528  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
21:25:22.0928 0x1528  FontCache - ok
21:25:22.0975 0x1528  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:25:22.0975 0x1528  FontCache3.0.0.0 - ok
21:25:23.0037 0x1528  [ D316BB764E63289DEE509F05C31C2956, 3685CD50504725CD7FA65EE27BD450DE5D7058201FF870FF8D833AA81B415C4D ] FoxitCloudUpdateService C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
21:25:23.0053 0x1528  FoxitCloudUpdateService - ok
21:25:23.0053 0x1528  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:25:23.0068 0x1528  FsDepends - ok
21:25:23.0084 0x1528  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:25:23.0084 0x1528  Fs_Rec - ok
21:25:23.0146 0x1528  [ E9B0A5E5A21F19AA293354F84E974EF8, 656A58D26B7FFC0B2483282A38474C326B692E08044CCA80A541B1B39EF1914D ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
21:25:23.0162 0x1528  Futuremark SystemInfo Service - ok
21:25:23.0177 0x1528  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:25:23.0177 0x1528  fvevol - ok
21:25:23.0193 0x1528  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:25:23.0193 0x1528  gagp30kx - ok
21:25:23.0271 0x1528  [ 8FC1230DBCCEB7016A4F183D4808D335, 6381D4DF8303685BF348A6787929CA547DF97C5B69A93565801D9CC82110B55C ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
21:25:23.0271 0x1528  Garmin Core Update Service - ok
21:25:23.0287 0x1528  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:25:23.0287 0x1528  GEARAspiWDM - ok
21:25:23.0333 0x1528  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
21:25:23.0365 0x1528  gpsvc - ok
21:25:23.0427 0x1528  [ FB82CE21D7B134DE2D270DB9DA646818, 5BE414E4B32068FBA13A9C7D9030008B492AB8F108E7E434659122D1E12E238B ] ha20x2k         C:\Windows\system32\drivers\ha20x2k.sys
21:25:23.0474 0x1528  ha20x2k - ok
21:25:23.0489 0x1528  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:25:23.0489 0x1528  hcw85cir - ok
21:25:23.0536 0x1528  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:25:23.0536 0x1528  HdAudAddService - ok
21:25:23.0552 0x1528  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:25:23.0567 0x1528  HDAudBus - ok
21:25:23.0583 0x1528  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
21:25:23.0583 0x1528  HidBatt - ok
21:25:23.0583 0x1528  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:25:23.0599 0x1528  HidBth - ok
21:25:23.0614 0x1528  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:25:23.0614 0x1528  HidIr - ok
21:25:23.0630 0x1528  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
21:25:23.0630 0x1528  hidserv - ok
21:25:23.0661 0x1528  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:25:23.0692 0x1528  HidUsb - ok
21:25:23.0708 0x1528  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:25:23.0708 0x1528  hkmsvc - ok
21:25:23.0739 0x1528  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:25:23.0739 0x1528  HomeGroupListener - ok
21:25:23.0770 0x1528  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:25:23.0786 0x1528  HomeGroupProvider - ok
21:25:23.0786 0x1528  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:25:23.0801 0x1528  HpSAMD - ok
21:25:23.0833 0x1528  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:25:23.0848 0x1528  HTTP - ok
21:25:23.0864 0x1528  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:25:23.0864 0x1528  hwpolicy - ok
21:25:23.0879 0x1528  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
21:25:23.0879 0x1528  i8042prt - ok
21:25:23.0926 0x1528  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:25:23.0926 0x1528  iaStorV - ok
21:25:23.0973 0x1528  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:25:23.0973 0x1528  IDriverT - ok
21:25:24.0035 0x1528  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:25:24.0051 0x1528  idsvc - ok
21:25:24.0067 0x1528  IEEtwCollectorService - ok
21:25:24.0098 0x1528  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:25:24.0098 0x1528  iirsp - ok
21:25:24.0160 0x1528  [ AD5DF6F4FBBC798636EDC66BFEC7D0DE, 837C9BCB6C23FE0901F0F66A57FAB5985984F0EAD9E34F84A9F78349EDE0394F ] IJPLMSVC        C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
21:25:24.0160 0x1528  IJPLMSVC - ok
21:25:24.0191 0x1528  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
21:25:24.0223 0x1528  IKEEXT - ok
21:25:24.0254 0x1528  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:25:24.0254 0x1528  intelide - ok
21:25:24.0269 0x1528  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:25:24.0269 0x1528  intelppm - ok
21:25:24.0316 0x1528  [ 0895CDD7F1542FFCC5BBB560EC78BC16, 383D9FFE7FB313EA201DE877F3D48B5116FFA261EDEF5D0D0FE79F14E9682D25 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
21:25:24.0316 0x1528  IntuitUpdateServiceV4 - ok
21:25:24.0332 0x1528  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:25:24.0347 0x1528  IPBusEnum - ok
21:25:24.0347 0x1528  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:25:24.0347 0x1528  IpFilterDriver - ok
21:25:24.0379 0x1528  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:25:24.0394 0x1528  iphlpsvc - ok
21:25:24.0410 0x1528  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:25:24.0410 0x1528  IPMIDRV - ok
21:25:24.0425 0x1528  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:25:24.0425 0x1528  IPNAT - ok
21:25:24.0503 0x1528  [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:25:24.0519 0x1528  iPod Service - ok
21:25:24.0535 0x1528  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:25:24.0535 0x1528  IRENUM - ok
21:25:24.0535 0x1528  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:25:24.0550 0x1528  isapnp - ok
21:25:24.0566 0x1528  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:25:24.0566 0x1528  iScsiPrt - ok
21:25:24.0581 0x1528  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:25:24.0581 0x1528  kbdclass - ok
21:25:24.0613 0x1528  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:25:24.0613 0x1528  kbdhid - ok
21:25:24.0628 0x1528  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
21:25:24.0628 0x1528  KeyIso - ok
21:25:24.0659 0x1528  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:25:24.0659 0x1528  KSecDD - ok
21:25:24.0659 0x1528  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:25:24.0675 0x1528  KSecPkg - ok
21:25:24.0675 0x1528  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:25:24.0675 0x1528  ksthunk - ok
21:25:24.0706 0x1528  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:25:24.0706 0x1528  KtmRm - ok
21:25:24.0753 0x1528  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:25:24.0753 0x1528  LanmanServer - ok
21:25:24.0769 0x1528  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:25:24.0769 0x1528  LanmanWorkstation - ok
21:25:24.0847 0x1528  [ D186AAAE72691136BDE00BBB41F48D12, C64885A726C0642C92BC4993667696DFEC8D284C20872D58E49786EE280A01ED ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
21:25:24.0847 0x1528  LBTServ - ok
21:25:24.0878 0x1528  [ 015BABFCD2E911C505204257DAB5ADC5, 94239919E967ABA12394D445E2D126447B5B7FB042DB95B1CCB280AF02D93833 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
21:25:24.0878 0x1528  LEqdUsb - ok
21:25:24.0893 0x1528  [ 20A23B8863AAA8A23EEB9E2919F529FD, 5DD7C780346DA6A36AB55B38109167B3BE138713C5A7C913BFED2B61F34E8BA1 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
21:25:24.0893 0x1528  LHidEqd - ok
21:25:24.0893 0x1528  [ 77D5786C6A7765503884E38706C9FD5E, 827DC2069AA0997DB87E118AAAA53575D97A89147C1451464986F8D68A329D41 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
21:25:24.0909 0x1528  LHidFilt - ok
21:25:24.0909 0x1528  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:25:24.0909 0x1528  lltdio - ok
21:25:24.0925 0x1528  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:25:24.0940 0x1528  lltdsvc - ok
21:25:24.0956 0x1528  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:25:24.0956 0x1528  lmhosts - ok
21:25:24.0956 0x1528  [ F84023FB2E3DEA06103501974A2EDB44, 38144EB7DE7F0B33F9C3E637715834CD0860CCE11915C77065000949767D98DF ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
21:25:24.0956 0x1528  LMouFilt - ok
21:25:24.0987 0x1528  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:25:24.0987 0x1528  LSI_FC - ok
21:25:25.0003 0x1528  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:25:25.0003 0x1528  LSI_SAS - ok
21:25:25.0018 0x1528  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:25:25.0018 0x1528  LSI_SAS2 - ok
21:25:25.0034 0x1528  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:25:25.0049 0x1528  LSI_SCSI - ok
21:25:25.0049 0x1528  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
21:25:25.0049 0x1528  luafv - ok
21:25:25.0081 0x1528  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:25:25.0081 0x1528  Mcx2Svc - ok
21:25:25.0096 0x1528  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:25:25.0096 0x1528  megasas - ok
21:25:25.0127 0x1528  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
21:25:25.0127 0x1528  MegaSR - ok
21:25:25.0143 0x1528  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
21:25:25.0143 0x1528  MMCSS - ok
21:25:25.0159 0x1528  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
21:25:25.0159 0x1528  Modem - ok
21:25:25.0174 0x1528  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:25:25.0174 0x1528  monitor - ok
21:25:25.0174 0x1528  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:25:25.0190 0x1528  mouclass - ok
21:25:25.0190 0x1528  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:25:25.0205 0x1528  mouhid - ok
21:25:25.0205 0x1528  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:25:25.0205 0x1528  mountmgr - ok
21:25:25.0237 0x1528  [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:25:25.0252 0x1528  MozillaMaintenance - ok
21:25:25.0283 0x1528  [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
21:25:25.0283 0x1528  MpFilter - ok
21:25:25.0299 0x1528  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:25:25.0299 0x1528  mpio - ok
21:25:25.0330 0x1528  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:25:25.0330 0x1528  mpsdrv - ok
21:25:25.0361 0x1528  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:25:25.0393 0x1528  MpsSvc - ok
21:25:25.0408 0x1528  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:25:25.0424 0x1528  MRxDAV - ok
21:25:25.0439 0x1528  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:25:25.0439 0x1528  mrxsmb - ok
21:25:25.0455 0x1528  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:25:25.0455 0x1528  mrxsmb10 - ok
21:25:25.0471 0x1528  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:25:25.0471 0x1528  mrxsmb20 - ok
21:25:25.0502 0x1528  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:25:25.0502 0x1528  msahci - ok
21:25:25.0517 0x1528  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:25:25.0517 0x1528  msdsm - ok
21:25:25.0533 0x1528  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
21:25:25.0549 0x1528  MSDTC - ok
21:25:25.0549 0x1528  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:25:25.0549 0x1528  Msfs - ok
21:25:25.0564 0x1528  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:25:25.0564 0x1528  mshidkmdf - ok
21:25:25.0564 0x1528  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:25:25.0564 0x1528  msisadrv - ok
21:25:25.0595 0x1528  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:25:25.0595 0x1528  MSiSCSI - ok
21:25:25.0611 0x1528  msiserver - ok
21:25:25.0627 0x1528  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:25:25.0627 0x1528  MSKSSRV - ok
21:25:25.0642 0x1528  [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:25:25.0642 0x1528  MsMpSvc - ok
21:25:25.0673 0x1528  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:25:25.0673 0x1528  MSPCLOCK - ok
21:25:25.0689 0x1528  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:25:25.0689 0x1528  MSPQM - ok
21:25:25.0705 0x1528  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:25:25.0720 0x1528  MsRPC - ok
21:25:25.0736 0x1528  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:25:25.0736 0x1528  mssmbios - ok
21:25:25.0736 0x1528  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:25:25.0736 0x1528  MSTEE - ok
21:25:25.0751 0x1528  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
21:25:25.0751 0x1528  MTConfig - ok
21:25:25.0767 0x1528  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
21:25:25.0767 0x1528  Mup - ok
21:25:25.0783 0x1528  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
21:25:25.0798 0x1528  napagent - ok
21:25:25.0829 0x1528  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:25:25.0829 0x1528  NativeWifiP - ok
21:25:25.0876 0x1528  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:25:25.0892 0x1528  NDIS - ok
21:25:25.0907 0x1528  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:25:25.0907 0x1528  NdisCap - ok
21:25:25.0923 0x1528  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:25:25.0923 0x1528  NdisTapi - ok
21:25:25.0939 0x1528  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:25:25.0939 0x1528  Ndisuio - ok
21:25:25.0954 0x1528  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:25:25.0954 0x1528  NdisWan - ok
21:25:25.0954 0x1528  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:25:25.0970 0x1528  NDProxy - ok
21:25:25.0985 0x1528  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:25:25.0985 0x1528  NetBIOS - ok
21:25:26.0001 0x1528  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:25:26.0017 0x1528  NetBT - ok
21:25:26.0032 0x1528  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
21:25:26.0032 0x1528  Netlogon - ok
21:25:26.0063 0x1528  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
21:25:26.0063 0x1528  Netman - ok
21:25:26.0126 0x1528  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:25:26.0126 0x1528  NetMsmqActivator - ok
21:25:26.0141 0x1528  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:25:26.0141 0x1528  NetPipeActivator - ok
21:25:26.0188 0x1528  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
21:25:26.0204 0x1528  netprofm - ok
21:25:26.0204 0x1528  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:25:26.0219 0x1528  NetTcpActivator - ok
21:25:26.0219 0x1528  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:25:26.0219 0x1528  NetTcpPortSharing - ok
21:25:26.0235 0x1528  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:25:26.0235 0x1528  nfrd960 - ok
21:25:26.0282 0x1528  [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:25:26.0282 0x1528  NisDrv - ok
21:25:26.0313 0x1528  [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
21:25:26.0313 0x1528  NisSrv - ok
21:25:26.0344 0x1528  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:25:26.0344 0x1528  NlaSvc - ok
21:25:26.0360 0x1528  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:25:26.0360 0x1528  Npfs - ok
21:25:26.0360 0x1528  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
21:25:26.0360 0x1528  nsi - ok
21:25:26.0375 0x1528  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:25:26.0375 0x1528  nsiproxy - ok
21:25:26.0438 0x1528  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:25:26.0485 0x1528  Ntfs - ok
21:25:26.0500 0x1528  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
21:25:26.0500 0x1528  Null - ok
21:25:26.0531 0x1528  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
21:25:26.0531 0x1528  NVHDA - ok
21:25:26.0906 0x1528  [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:25:27.0233 0x1528  nvlddmkm - ok
21:25:27.0327 0x1528  [ D2FE0376285A783693469422678E878B, 9F0B1A6694CA7BDAAA3B26BE1D344A3FC7B98162518A259C273360EFF075CD75 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
21:25:27.0358 0x1528  NvNetworkService - ok
21:25:27.0374 0x1528  [ 241A095631570A9CEF4F126C87605C60, AFDA5AF5F210336061BFF0FAB0ED93EE495312BED639EC5DB56FBAC0EA8247D3 ] NVR0Dev         C:\Windows\nvoclk64.sys
21:25:27.0389 0x1528  NVR0Dev - ok
21:25:27.0405 0x1528  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:25:27.0421 0x1528  nvraid - ok
21:25:27.0421 0x1528  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:25:27.0436 0x1528  nvstor - ok
21:25:27.0920 0x1528  [ 4F0E2990DB12849D428DE7B0AC5D92B9, 77A058EFFE07E46F0DFF419DC1C204C245598E6A6F6EDFF545802D9C1573EAA0 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
21:25:28.0372 0x1528  NvStreamSvc - ok
21:25:28.0450 0x1528  [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:25:28.0481 0x1528  nvsvc - ok
21:25:28.0497 0x1528  [ 939C0FAE9CC0CDD69E6508BDE4C11FE5, 1E82FF4A8797A0EC5DF0E54DE7F358542C73FFFBECADDF86ED66839182E3B55D ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
21:25:28.0497 0x1528  nvvad_WaveExtensible - ok
21:25:28.0513 0x1528  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:25:28.0513 0x1528  nv_agp - ok
21:25:28.0528 0x1528  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:25:28.0544 0x1528  ohci1394 - ok
21:25:28.0559 0x1528  [ FA78441F605C39545810F33A08528AEA, 016291DE1DA59F150B88311392813513072C824168E665C9F512646D954DC120 ] ossrv           C:\Windows\system32\drivers\ctoss2k.sys
21:25:28.0575 0x1528  ossrv - ok
21:25:28.0591 0x1528  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:25:28.0591 0x1528  p2pimsvc - ok
21:25:28.0622 0x1528  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
21:25:28.0622 0x1528  p2psvc - ok
21:25:28.0637 0x1528  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
21:25:28.0653 0x1528  Parport - ok
21:25:28.0669 0x1528  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:25:28.0669 0x1528  partmgr - ok
21:25:28.0684 0x1528  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:25:28.0684 0x1528  PcaSvc - ok
21:25:28.0700 0x1528  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
21:25:28.0700 0x1528  pci - ok
21:25:28.0715 0x1528  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:25:28.0715 0x1528  pciide - ok
21:25:28.0731 0x1528  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:25:28.0747 0x1528  pcmcia - ok
21:25:28.0747 0x1528  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:25:28.0747 0x1528  pcw - ok
21:25:28.0778 0x1528  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:25:28.0793 0x1528  PEAUTH - ok
21:25:28.0856 0x1528  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:25:28.0856 0x1528  PerfHost - ok
21:25:28.0918 0x1528  [ 601E47C30CEA734CEE883D9A6FAA8032, 48FD78C1C68AD2AF4F1332E76CABF0589317173B16EEB350BEC0DBC6054F9576 ] pla             C:\Windows\system32\pla.dll
21:25:28.0965 0x1528  pla - ok
21:25:29.0012 0x1528  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:25:29.0012 0x1528  PlugPlay - ok
21:25:29.0027 0x1528  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:25:29.0027 0x1528  PNRPAutoReg - ok
21:25:29.0043 0x1528  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:25:29.0059 0x1528  PNRPsvc - ok
21:25:29.0090 0x1528  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:25:29.0105 0x1528  PolicyAgent - ok
21:25:29.0137 0x1528  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
21:25:29.0137 0x1528  Power - ok
21:25:29.0152 0x1528  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:25:29.0152 0x1528  PptpMiniport - ok
21:25:29.0168 0x1528  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
21:25:29.0183 0x1528  Processor - ok
21:25:29.0215 0x1528  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:25:29.0230 0x1528  ProfSvc - ok
21:25:29.0230 0x1528  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
21:25:29.0230 0x1528  ProtectedStorage - ok
21:25:29.0246 0x1528  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:25:29.0246 0x1528  Psched - ok
21:25:29.0277 0x1528  [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI             C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
21:25:29.0277 0x1528  PSI - ok
21:25:29.0293 0x1528  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
21:25:29.0308 0x1528  PxHlpa64 - ok
21:25:29.0355 0x1528  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:25:29.0417 0x1528  ql2300 - ok
21:25:29.0433 0x1528  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:25:29.0433 0x1528  ql40xx - ok
21:25:29.0464 0x1528  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
21:25:29.0464 0x1528  QWAVE - ok
21:25:29.0480 0x1528  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:25:29.0480 0x1528  QWAVEdrv - ok
21:25:29.0495 0x1528  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:25:29.0495 0x1528  RasAcd - ok
21:25:29.0495 0x1528  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:25:29.0495 0x1528  RasAgileVpn - ok
21:25:29.0527 0x1528  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
21:25:29.0527 0x1528  RasAuto - ok
21:25:29.0527 0x1528  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:25:29.0542 0x1528  Rasl2tp - ok
21:25:29.0558 0x1528  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
21:25:29.0558 0x1528  RasMan - ok
21:25:29.0573 0x1528  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:25:29.0573 0x1528  RasPppoe - ok
21:25:29.0589 0x1528  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:25:29.0589 0x1528  RasSstp - ok
21:25:29.0605 0x1528  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:25:29.0605 0x1528  rdbss - ok
21:25:29.0620 0x1528  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
21:25:29.0620 0x1528  rdpbus - ok
21:25:29.0636 0x1528  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:25:29.0636 0x1528  RDPCDD - ok
21:25:29.0651 0x1528  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:25:29.0651 0x1528  RDPENCDD - ok
21:25:29.0651 0x1528  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:25:29.0667 0x1528  RDPREFMP - ok
21:25:29.0683 0x1528  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:25:29.0683 0x1528  RdpVideoMiniport - ok
21:25:29.0714 0x1528  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:25:29.0714 0x1528  RDPWD - ok
21:25:29.0729 0x1528  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:25:29.0729 0x1528  rdyboost - ok
21:25:29.0745 0x1528  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:25:29.0745 0x1528  RemoteAccess - ok
21:25:29.0761 0x1528  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:25:29.0761 0x1528  RemoteRegistry - ok
21:25:29.0854 0x1528  [ 053A0D66B1982D93A20062E4DA40B29B, 04D31F60ABC1F09531FFFDF6FCF1CF0E31E13C544BE86C7ABF78614A80733CB4 ] RoxMediaDB13    C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxMediaDB13.exe
21:25:29.0885 0x1528  RoxMediaDB13 - ok
21:25:29.0917 0x1528  [ 495C85B15470374A9499451893742EE6, 9C0E3714DCF51274823B6A50D156710307307B95B83406808CA98E8BDF56972D ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxWatch13.exe
21:25:29.0917 0x1528  RoxWatch12 - ok
21:25:29.0948 0x1528  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:25:29.0948 0x1528  RpcEptMapper - ok
21:25:29.0963 0x1528  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
21:25:29.0963 0x1528  RpcLocator - ok
21:25:29.0995 0x1528  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
21:25:30.0010 0x1528  RpcSs - ok
21:25:30.0057 0x1528  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:25:30.0057 0x1528  rspndr - ok
21:25:30.0119 0x1528  [ 6FA271B6816AFFAEF640808FC51AC8AF, 696679114F6A106EC94C21E2A33FE17AF86368BCF9A796AAEA37EA6E8748AD6A ] RTCore64        C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
21:25:30.0151 0x1528  RTCore64 - ok
21:25:30.0166 0x1528  [ 27DB9153D259D632D15483DEEAB799ED, AC2C54D8ECF93484DE0C14E6966C3BCF3EF315CD4F54A6343C34159EC5F2FFAC ] Sahdad64        C:\Windows\system32\Drivers\Sahdad64.sys
21:25:30.0166 0x1528  Sahdad64 - ok
21:25:30.0182 0x1528  [ F77849D909B90BCACFCF7295AECF299B, D77FED8D81E8C8A91DCD975ECD8E7DF7C6611B8686BC9EC01830A0A0FDBF25E8 ] Saibad64        C:\Windows\system32\Drivers\Saibad64.sys
21:25:30.0182 0x1528  Saibad64 - ok
21:25:30.0213 0x1528  [ 704D415290A568F68DE20942DAC23F7E, C9F23C7D1384B579B2C02682D5C8D8232FADE083C117FAD75DB64FFE31964FB6 ] SaibVdAd64      C:\Windows\system32\Drivers\SaibVdAd64.sys
21:25:30.0213 0x1528  SaibVdAd64 - ok
21:25:30.0213 0x1528  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
21:25:30.0213 0x1528  SamSs - ok
21:25:30.0275 0x1528  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:25:30.0275 0x1528  SASDIFSV - ok
21:25:30.0275 0x1528  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:25:30.0275 0x1528  SASKUTIL - ok
21:25:30.0322 0x1528  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:25:30.0322 0x1528  sbp2port - ok
21:25:30.0338 0x1528  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:25:30.0338 0x1528  SCardSvr - ok
21:25:30.0353 0x1528  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:25:30.0353 0x1528  scfilter - ok
21:25:30.0385 0x1528  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
21:25:30.0416 0x1528  Schedule - ok
21:25:30.0447 0x1528  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:25:30.0447 0x1528  SCPolicySvc - ok
21:25:30.0463 0x1528  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:25:30.0463 0x1528  SDRSVC - ok
21:25:30.0587 0x1528  [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
21:25:30.0697 0x1528  SDScannerService - ok
21:25:30.0759 0x1528  [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:25:30.0790 0x1528  SDUpdateService - ok
21:25:30.0837 0x1528  [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:25:30.0837 0x1528  SDWSCService - ok
21:25:30.0837 0x1528  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:25:30.0837 0x1528  secdrv - ok
21:25:30.0853 0x1528  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
21:25:30.0853 0x1528  seclogon - ok
21:25:30.0931 0x1528  [ 398A81D590424441B2F5C5C08073CADB, 1E064DFCC49EB0D8A4150276BF796B9DFA030C451570A170EC940F8CBAAD80F3 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
21:25:30.0962 0x1528  Secunia PSI Agent - ok
21:25:30.0993 0x1528  [ 8C2D3A80FC90A860F0F24DEB67471481, CE4D17B63149C44B4CD5CB7776FD4705DC675F6D2D077D53BE15578294EBC9D4 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
21:25:31.0009 0x1528  Secunia Update Agent - ok
21:25:31.0024 0x1528  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
21:25:31.0024 0x1528  SENS - ok
21:25:31.0040 0x1528  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:25:31.0040 0x1528  SensrSvc - ok
21:25:31.0071 0x1528  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:25:31.0071 0x1528  Serenum - ok
21:25:31.0087 0x1528  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
21:25:31.0087 0x1528  Serial - ok
21:25:31.0102 0x1528  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:25:31.0102 0x1528  sermouse - ok
21:25:31.0118 0x1528  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
21:25:31.0118 0x1528  SessionEnv - ok
21:25:31.0149 0x1528  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:25:31.0149 0x1528  sffdisk - ok
21:25:31.0165 0x1528  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:25:31.0165 0x1528  sffp_mmc - ok
21:25:31.0180 0x1528  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:25:31.0180 0x1528  sffp_sd - ok
21:25:31.0180 0x1528  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:25:31.0180 0x1528  sfloppy - ok
21:25:31.0211 0x1528  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:25:31.0211 0x1528  SharedAccess - ok
21:25:31.0243 0x1528  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:25:31.0258 0x1528  ShellHWDetection - ok
21:25:31.0274 0x1528  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:25:31.0274 0x1528  SiSRaid2 - ok
21:25:31.0289 0x1528  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:25:31.0289 0x1528  SiSRaid4 - ok
21:25:31.0305 0x1528  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:25:31.0305 0x1528  Smb - ok
21:25:31.0336 0x1528  [ E3E56CAF0472163871B922FC7CBC9654, 1D7208519DB904E1B27F8D5214CA219BD52AB8C1AB64F22F8959DC4E8955AD37 ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
21:25:31.0352 0x1528  snapman - ok
21:25:31.0352 0x1528  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:25:31.0367 0x1528  SNMPTRAP - ok
21:25:31.0414 0x1528  [ 1FF9D58C8FD03454B5E6D97EC3E93B0B, 3ABCFD3D7BABC07D51663407D993B8602895F41BB395B542E778196FE1A565B5 ] SPAMfighter Update Service C:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe
21:25:31.0414 0x1528  SPAMfighter Update Service - ok
21:25:31.0430 0x1528  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:25:31.0430 0x1528  spldr - ok
21:25:31.0461 0x1528  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
21:25:31.0477 0x1528  Spooler - ok
21:25:31.0586 0x1528  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
21:25:31.0679 0x1528  sppsvc - ok
21:25:31.0695 0x1528  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:25:31.0695 0x1528  sppuinotify - ok
21:25:31.0726 0x1528  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:25:31.0742 0x1528  srv - ok
21:25:31.0757 0x1528  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:25:31.0757 0x1528  srv2 - ok
21:25:31.0773 0x1528  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:25:31.0773 0x1528  srvnet - ok
21:25:31.0789 0x1528  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:25:31.0804 0x1528  SSDPSRV - ok
21:25:31.0820 0x1528  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:25:31.0820 0x1528  SstpSvc - ok
21:25:31.0867 0x1528  [ 7EE717B9B9F183B236BBE9E25FA497F2, 489611EA72A7BBF593852D5C441B3714CCE2E3E3518B5B569CDF59DD0C60A950 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:25:31.0882 0x1528  Steam Client Service - ok
21:25:31.0945 0x1528  [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:25:31.0945 0x1528  Stereo Service - ok
21:25:31.0960 0x1528  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:25:31.0960 0x1528  stexstor - ok
21:25:31.0991 0x1528  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
21:25:32.0007 0x1528  stisvc - ok
21:25:32.0069 0x1528  [ 64421ADAEE91E036A0799E3B82526BAD, AE4D9C280DB0AB0CAAD0BFD07B1596E379E37DA249E122F02AC5FFB3979B5083 ] Suite Service   C:\Program Files (x86)\Fighters\FighterSuiteService.exe
21:25:32.0101 0x1528  Suite Service - ok
21:25:32.0116 0x1528  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:25:32.0116 0x1528  swenum - ok
21:25:32.0132 0x1528  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
21:25:32.0147 0x1528  swprv - ok
21:25:32.0366 0x1528  [ 430D7B719DD345E305DF94529FFD183D, 05C1878DE927DF3EB274C8CB3E31DA903EB5446F0DEBE22F1209C61B43F4515A ] syncagentsrv    C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
21:25:32.0537 0x1528  syncagentsrv - ok
21:25:32.0600 0x1528  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
21:25:32.0662 0x1528  SysMain - ok
21:25:32.0740 0x1528  [ 196E20CE11EDB0EA3EDA491FCD3C943B, DDE0CA36C1E2C15621CAB6CCD84EB3F415F800B62629C213016B0C2FB04E7035 ] SystemExplorerHelpService C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
21:25:32.0896 0x1528  SystemExplorerHelpService - ok
21:25:32.0912 0x1528  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:25:32.0927 0x1528  TabletInputService - ok
21:25:32.0943 0x1528  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:25:32.0943 0x1528  TapiSrv - ok
21:25:32.0959 0x1528  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
21:25:32.0974 0x1528  TBS - ok
21:25:33.0037 0x1528  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:25:33.0099 0x1528  Tcpip - ok
21:25:33.0146 0x1528  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:25:33.0193 0x1528  TCPIP6 - ok
21:25:33.0224 0x1528  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:25:33.0224 0x1528  tcpipreg - ok
21:25:33.0224 0x1528  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:25:33.0224 0x1528  TDPIPE - ok
21:25:33.0302 0x1528  [ AC28A6FCA485821499FF018695CEDE16, 8BA6086EB1831FDEDB9E195EA7D5F2FE2B0944E4E0B0CDB41CD06971F7DAC805 ] tdrpman         C:\Windows\system32\DRIVERS\tdrpman.sys
21:25:33.0364 0x1528  tdrpman - ok
21:25:33.0395 0x1528  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:25:33.0395 0x1528  TDTCP - ok
21:25:33.0411 0x1528  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:25:33.0411 0x1528  tdx - ok
21:25:33.0427 0x1528  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:25:33.0427 0x1528  TermDD - ok
21:25:33.0473 0x1528  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
21:25:33.0489 0x1528  TermService - ok
21:25:33.0505 0x1528  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
21:25:33.0505 0x1528  Themes - ok
21:25:33.0520 0x1528  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
21:25:33.0520 0x1528  THREADORDER - ok
21:25:33.0567 0x1528  [ DE604462206F7D8C203F767F425FCA8D, 149FBF6367C45415B939A9B1A7A10DA7A5E19F28CE533BCBE2B20DA4B78F8645 ] tib             C:\Windows\system32\DRIVERS\tib.sys
21:25:33.0614 0x1528  tib - ok
21:25:33.0629 0x1528  [ 8C750FE6DE38AF13506B99EC2F519F79, 232D18416E9DE3A676C625280CF172ED180B5AF98C69E5B24CC780D480549E35 ] tib_mounter     C:\Windows\system32\DRIVERS\tib_mounter.sys
21:25:33.0629 0x1528  tib_mounter - ok
21:25:33.0645 0x1528  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
21:25:33.0645 0x1528  TrkWks - ok
21:25:33.0692 0x1528  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:25:33.0707 0x1528  TrustedInstaller - ok
21:25:33.0723 0x1528  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:25:33.0723 0x1528  tssecsrv - ok
21:25:33.0754 0x1528  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:25:33.0754 0x1528  TsUsbFlt - ok
21:25:33.0785 0x1528  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
21:25:33.0785 0x1528  TsUsbGD - ok
21:25:33.0895 0x1528  [ FDD4A2791EAC764854CA2C20F611E428, CD8F6FD6A544D7A7C689EA006925962929466693BAA7947CFAA221D686531C5D ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
21:25:33.0957 0x1528  TuneUp.UtilitiesSvc - ok
21:25:34.0004 0x1528  [ 45427C4B8CAC6B241478F149B935CD80, 7F772D6D00D1ADD394F5907804661C75780EE9F8DF21EF0719D3E4ABA00092B7 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys
21:25:34.0004 0x1528  TuneUpUtilitiesDrv - ok
21:25:34.0019 0x1528  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:25:34.0019 0x1528  tunnel - ok
21:25:34.0035 0x1528  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:25:34.0035 0x1528  uagp35 - ok
21:25:34.0066 0x1528  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:25:34.0066 0x1528  udfs - ok
21:25:34.0097 0x1528  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:25:34.0097 0x1528  UI0Detect - ok
21:25:34.0113 0x1528  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:25:34.0113 0x1528  uliagpkx - ok
21:25:34.0144 0x1528  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:25:34.0144 0x1528  umbus - ok
21:25:34.0160 0x1528  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
21:25:34.0160 0x1528  UmPass - ok
21:25:34.0175 0x1528  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
21:25:34.0191 0x1528  upnphost - ok
21:25:34.0222 0x1528  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:25:34.0222 0x1528  usbccgp - ok
21:25:34.0253 0x1528  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:25:34.0253 0x1528  usbcir - ok
21:25:34.0269 0x1528  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:25:34.0269 0x1528  usbehci - ok
21:25:34.0300 0x1528  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:25:34.0316 0x1528  usbhub - ok
21:25:34.0363 0x1528  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
21:25:34.0363 0x1528  usbohci - ok
21:25:34.0378 0x1528  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
21:25:34.0378 0x1528  usbprint - ok
21:25:34.0394 0x1528  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:25:34.0409 0x1528  USBSTOR - ok
21:25:34.0425 0x1528  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
21:25:34.0425 0x1528  usbuhci - ok
21:25:34.0441 0x1528  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
21:25:34.0441 0x1528  UxSms - ok
21:25:34.0487 0x1528  [ ED52BD327DE6B8AAFC05CF8F46B0E4FB, FBDB05197DFDBB9BE7C762B38BC35B45267D9FB68B49297BB521F2852AB80C12 ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
21:25:34.0503 0x1528  UxTuneUp - ok
21:25:34.0503 0x1528  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
21:25:34.0519 0x1528  VaultSvc - ok
21:25:34.0519 0x1528  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:25:34.0519 0x1528  vdrvroot - ok
21:25:34.0550 0x1528  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
21:25:34.0565 0x1528  vds - ok
21:25:34.0581 0x1528  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:25:34.0581 0x1528  vga - ok
21:25:34.0581 0x1528  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:25:34.0597 0x1528  VgaSave - ok
21:25:34.0612 0x1528  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:25:34.0612 0x1528  vhdmp - ok
21:25:34.0628 0x1528  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:25:34.0628 0x1528  viaide - ok
21:25:34.0643 0x1528  [ 35E8A18D1C558D5C2FF2FFED2FD396F6, 5516AC03964DD33CF239AB3FB1D41BAB7454DB35FB38C45907614C3DB8F23391 ] vididr          C:\Windows\system32\DRIVERS\vididr.sys
21:25:34.0643 0x1528  vididr - ok
21:25:34.0659 0x1528  [ 0DCD5C8F2E0B3650C4A29F6569C074FD, 8FB24D79ADE1541C5DD6241A3395EF2E6575A8376111294CD5C87ECA798EDCFD ] vidsflt         C:\Windows\system32\DRIVERS\vidsflt.sys
21:25:34.0675 0x1528  vidsflt - ok
21:25:34.0690 0x1528  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:25:34.0690 0x1528  volmgr - ok
21:25:34.0706 0x1528  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:25:34.0706 0x1528  volmgrx - ok
21:25:34.0721 0x1528  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:25:34.0721 0x1528  volsnap - ok
21:25:34.0737 0x1528  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:25:34.0753 0x1528  vsmraid - ok
21:25:34.0799 0x1528  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
21:25:34.0846 0x1528  VSS - ok
21:25:34.0877 0x1528  [ F99910CE8CD3BE1FEAAACA06D0298279, FA685768F6768E9BC8A9078836513F86FD78BDBB29B3ED049511498E21DB9F7A ] VUSB3HUB        C:\Windows\system32\DRIVERS\ViaHub3.sys
21:25:34.0877 0x1528  VUSB3HUB - ok
21:25:34.0893 0x1528  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
21:25:34.0893 0x1528  vwifibus - ok
21:25:34.0924 0x1528  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
21:25:34.0924 0x1528  W32Time - ok
21:25:34.0940 0x1528  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:25:34.0940 0x1528  WacomPen - ok
21:25:34.0971 0x1528  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:25:34.0971 0x1528  WANARP - ok
21:25:34.0987 0x1528  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:25:34.0987 0x1528  Wanarpv6 - ok
21:25:35.0049 0x1528  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
21:25:35.0096 0x1528  WatAdminSvc - ok
21:25:35.0143 0x1528  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
21:25:35.0189 0x1528  wbengine - ok
21:25:35.0221 0x1528  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:25:35.0236 0x1528  WbioSrvc - ok
21:25:35.0252 0x1528  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:25:35.0252 0x1528  wcncsvc - ok
21:25:35.0267 0x1528  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:25:35.0283 0x1528  WcsPlugInService - ok
21:25:35.0283 0x1528  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
21:25:35.0283 0x1528  Wd - ok
21:25:35.0377 0x1528  [ 17C40FC988BE24CAE78FE5F03348C7BA, 3DBEB89D1286B27BBA8037E4BB1AB620C3D260D7A5E257CE27EC3AD700C26076 ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
21:25:35.0392 0x1528  WDBackup - ok
21:25:35.0423 0x1528  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
21:25:35.0423 0x1528  WDC_SAM - ok
21:25:35.0455 0x1528  [ 1924EC48CC26D0A2C445E03A5592FF7A, 78DAB90DC8573B47C7E638DC399BEC4172C0D9F930C926AE26309CF2CB2DD3DC ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
21:25:35.0470 0x1528  WDDriveService - ok
21:25:35.0501 0x1528  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:25:35.0517 0x1528  Wdf01000 - ok
21:25:35.0533 0x1528  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:25:35.0548 0x1528  WdiServiceHost - ok
21:25:35.0548 0x1528  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:25:35.0548 0x1528  WdiSystemHost - ok
21:25:35.0579 0x1528  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
21:25:35.0579 0x1528  WebClient - ok
21:25:35.0611 0x1528  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:25:35.0611 0x1528  Wecsvc - ok
21:25:35.0626 0x1528  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:25:35.0626 0x1528  wercplsupport - ok
21:25:35.0657 0x1528  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:25:35.0657 0x1528  WerSvc - ok
21:25:35.0673 0x1528  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:25:35.0673 0x1528  WfpLwf - ok
21:25:35.0689 0x1528  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:25:35.0689 0x1528  WIMMount - ok
21:25:35.0704 0x1528  WinDefend - ok
21:25:35.0720 0x1528  WinHttpAutoProxySvc - ok
21:25:35.0767 0x1528  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:25:35.0782 0x1528  Winmgmt - ok
21:25:35.0829 0x1528  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:25:35.0891 0x1528  WinRM - ok
21:25:35.0923 0x1528  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:25:35.0923 0x1528  WinUsb - ok
21:25:35.0954 0x1528  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:25:35.0969 0x1528  Wlansvc - ok
21:25:36.0094 0x1528  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:25:36.0188 0x1528  wlidsvc - ok
21:25:36.0203 0x1528  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
21:25:36.0203 0x1528  WmiAcpi - ok
21:25:36.0219 0x1528  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:25:36.0235 0x1528  wmiApSrv - ok
21:25:36.0266 0x1528  WMPNetworkSvc - ok
21:25:36.0266 0x1528  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:25:36.0266 0x1528  WPCSvc - ok
21:25:36.0281 0x1528  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:25:36.0281 0x1528  WPDBusEnum - ok
21:25:36.0297 0x1528  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:25:36.0297 0x1528  ws2ifsl - ok
21:25:36.0297 0x1528  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
21:25:36.0313 0x1528  wscsvc - ok
21:25:36.0328 0x1528  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
21:25:36.0328 0x1528  WSDPrintDevice - ok
21:25:36.0359 0x1528  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\Windows\system32\drivers\WSDScan.sys
21:25:36.0359 0x1528  WSDScan - ok
21:25:36.0359 0x1528  WSearch - ok
21:25:36.0453 0x1528  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:25:36.0531 0x1528  wuauserv - ok
21:25:36.0562 0x1528  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:25:36.0562 0x1528  WudfPf - ok
21:25:36.0593 0x1528  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:25:36.0593 0x1528  WUDFRd - ok
21:25:36.0593 0x1528  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:25:36.0609 0x1528  wudfsvc - ok
21:25:36.0625 0x1528  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:25:36.0640 0x1528  WwanSvc - ok
21:25:36.0687 0x1528  [ 6C073A0188501FA5B65D23885114FF24, 321E391962C6A4BDC06DC2AA7772A7D4A48B8DA0E96265ADFDE1EEC5D653E1C5 ] xhcdrv          C:\Windows\system32\DRIVERS\xhcdrv.sys
21:25:36.0687 0x1528  xhcdrv - ok
21:25:36.0703 0x1528  ================ Scan global ===============================
21:25:36.0718 0x1528  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
21:25:36.0749 0x1528  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:25:36.0765 0x1528  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:25:36.0781 0x1528  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
21:25:36.0812 0x1528  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
21:25:36.0827 0x1528  [ Global ] - ok
21:25:36.0827 0x1528  ================ Scan MBR ==================================
21:25:36.0843 0x1528  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:25:36.0999 0x1528  \Device\Harddisk0\DR0 - ok
21:25:36.0999 0x1528  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
21:25:37.0249 0x1528  \Device\Harddisk1\DR1 - ok
21:25:37.0249 0x1528  [ 5F8B5082F3482CC06B72EC5806598AE9 ] \Device\Harddisk2\DR2
21:25:37.0701 0x1528  \Device\Harddisk2\DR2 - ok
21:25:37.0701 0x1528  ================ Scan VBR ==================================
21:25:37.0701 0x1528  [ B2335F8769774561BE0A358DF3A0D3DB ] \Device\Harddisk0\DR0\Partition1
21:25:37.0701 0x1528  \Device\Harddisk0\DR0\Partition1 - ok
21:25:37.0701 0x1528  [ CFE9F3F244AEE43A08B74BA556B9C23E ] \Device\Harddisk1\DR1\Partition1
21:25:37.0748 0x1528  \Device\Harddisk1\DR1\Partition1 - ok
21:25:37.0748 0x1528  [ 3845334567D7E3DA5396D5ECA19920C5 ] \Device\Harddisk2\DR2\Partition1
21:25:37.0795 0x1528  \Device\Harddisk2\DR2\Partition1 - ok
21:25:37.0795 0x1528  Waiting for KSN requests completion. In queue: 42
21:25:38.0809 0x1528  Waiting for KSN requests completion. In queue: 42
21:25:39.0823 0x1528  Waiting for KSN requests completion. In queue: 42
21:25:40.0837 0x1528  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x61000 ( enabled : updated )
21:25:40.0852 0x1528  Win FW state via NFP2: enabled
21:25:43.0411 0x1528  ============================================================
21:25:43.0411 0x1528  Scan finished
21:25:43.0411 0x1528  ============================================================
21:25:43.0411 0x187c  Detected object count: 0
21:25:43.0411 0x187c  Actual detected object count: 0
21:30:05.0438 0x0994  Deinitialize success
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

AdwCleanerS4.txt

 

# AdwCleaner v3.023 - Report created 05/04/2014 at 21:40:42
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Tom Beall - 2W20MB1
# Running from : C:\Users\Tom Beall\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[x] Not Deleted : C:\Users\Tom Beall\AppData\Roaming\Mozilla\Firefox\Profiles\devomv6p.default-1392576974814\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v28.0 (en-US)

[ File : C:\Users\Tom Beall\AppData\Roaming\Mozilla\Firefox\Profiles\devomv6p.default-1392576974814\prefs.js ]


*************************

AdwCleaner[R0].txt - [2532 octets] - [17/02/2014 05:31:06]
AdwCleaner[R1].txt - [3335 octets] - [24/02/2014 11:53:53]
AdwCleaner[R2].txt - [28361 octets] - [18/03/2014 19:55:39]
AdwCleaner[R3].txt - [2603 octets] - [05/04/2014 19:04:32]
AdwCleaner[R4].txt - [1393 octets] - [05/04/2014 21:36:31]
AdwCleaner[S0].txt - [2335 octets] - [17/02/2014 05:34:52]
AdwCleaner[S1].txt - [3334 octets] - [24/02/2014 11:57:34]
AdwCleaner[S2].txt - [26380 octets] - [18/03/2014 20:09:21]
AdwCleaner[S3].txt - [2602 octets] - [05/04/2014 19:09:20]
AdwCleaner[S4].txt - [1319 octets] - [05/04/2014 21:40:42]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1379 octets] ##########
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Junkware Removal Tool

JRT.txt

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Home Premium x64
Ran by Tom Beall on Sat 04/05/2014 at 21:48:32.73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] spamfighter update service
Successfully deleted: [Service] spamfighter update service
Successfully stopped: [Service] suite service
Successfully deleted: [Service] suite service



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\sfagent



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\fighters"
Successfully deleted: [Folder] "C:\Users\Tom Beall\AppData\Roaming\fighters"
Successfully deleted: [Folder] "C:\Users\Tom Beall\appdata\local\fighters"
Successfully deleted: [Folder] "C:\Program Files (x86)\fighters"



~~~ FireFox

Successfully deleted: [File] C:\Users\Tom Beall\AppData\Roaming\mozilla\firefox\profiles\devomv6p.default-1392576974814\user.js
Emptied folder: C:\Users\Tom Beall\AppData\Roaming\mozilla\firefox\profiles\devomv6p.default-1392576974814\minidumps [1 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 04/05/2014 at 21:55:34.88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
ESET
ESETScan.txt

C:\Users\All Users\InstallMate\{2A675125-55F3-4181-A36A-1DD1F18473D3}\Custom.dll    Win32/InstalleRex.L potentially unwanted application    
C:\Users\All Users\InstallMate\{5C2EF089-470F-4D7E-AF95-0F2D87CDD27F}\Custom.dll    Win32/InstalleRex.L potentially unwanted application    
C:\Users\All Users\InstallMate\{79CACBFD-1623-451B-A7F0-5E01A229E90B}\Custom.dll    Win32/InstalleRex.L potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Program Files (x86)\media enhance\44150.crx.vir    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\media enhance\44150.xpi.vir    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\media enhance\media enhance-bg.exe.vir    a variant of Win32/Toolbar.CrossRider.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\media enhance\media enhance-bho64.dll.vir    a variant of Win64/Toolbar.Crossrider.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\media enhance\media enhance-codedownloader.exe.vir    a variant of Win32/Toolbar.CrossRider.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\media enhance\utils.exe.vir    a variant of Win32/Packed.VMDetector.E potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Pixillion\pixillion.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Pixillion\pixillionsetup_v2.72.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension.dll.vir    a variant of MSIL/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension2.dll.vir    a variant of MSIL/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\amfclgbdpgndipgoegfpkkgobahigbcl\GoogleChromeRemotePlugin.dll.vir    Win32/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_22.dll.vir    a variant of Win32/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_23.dll.vir    a variant of Win32/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_24.dll.vir    a variant of Win32/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_25.dll.vir    a variant of Win32/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_26.dll.vir    a variant of Win32/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_27.dll.vir    a variant of Win32/Toolbar.Linkury.D potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Roaming\Mozilla\Firefox\Profiles\devomv6p.default-1392576974814\Extensions\0c822a17-a68f-4066-9257-d229458d21ca@9c178d17-dc61-4aaf-b2da-1425ac7300ac.com\extensionData\plugins\242_price_gong_m.js.vir    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Tom Beall\AppData\Roaming\Mozilla\Firefox\Profiles\devomv6p.default-1392576974814\Extensions\0c822a17-a68f-4066-9257-d229458d21ca@9c178d17-dc61-4aaf-b2da-1425ac7300ac.com\extensionData\plugins\91_monetizationLoader.js.js.vir    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Downloads\cbsidlm-tr1_5-iTV_Media_Player-75280193.exe    Win32/DownloadAdmin.G potentially unwanted application    deleted - quarantined
C:\Downloads\GAMES\AerialFire.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\ashley-jones-and-the-heart-of-egypt.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\azangara.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\aztec-bricks.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\el-dorado-quest.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\fun-and-bullets.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\GreatSecretsDaVinci.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\hidden-art-2.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\mystery-of-unicorn-castle.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\sea-journey.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\the-rise-of-atlantis.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Downloads\GAMES\tibet-quest.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Uninstaller\Uninstall.exe    a variant of MSIL/DomaIQ.A potentially unwanted application    deleted - quarantined
C:\ProgramData\InstallMate\{2A675125-55F3-4181-A36A-1DD1F18473D3}\Custom.dll    Win32/InstalleRex.L potentially unwanted application    deleted - quarantined
C:\ProgramData\InstallMate\{5C2EF089-470F-4D7E-AF95-0F2D87CDD27F}\Custom.dll    Win32/InstalleRex.L potentially unwanted application    deleted - quarantined
C:\ProgramData\InstallMate\{79CACBFD-1623-451B-A7F0-5E01A229E90B}\Custom.dll    Win32/InstalleRex.L potentially unwanted application    deleted - quarantined
C:\Users\Tom Beall\AppData\Local\Temp\jki6CC1.tmp    a variant of MSIL/DomaIQ.X potentially unwanted application    deleted - quarantined
C:\Users\Tom Beall\AppData\Local\Temp\af68881f-fefd-495a-b09b-2af210e7a76f\software\Cloud_Backup_Setup.exe    Win32/MyPCBackup.A potentially unwanted application    deleted - quarantined
C:\Users\Tom Beall\AppData\Local\Temp\af68881f-fefd-495a-b09b-2af210e7a76f\software\speedupmypc.exe    Win32/SpeedUpMyPC.A potentially unwanted application    deleted - quarantined
C:\Users\Tom Beall\AppData\Local\Temp\is-HF1LK.tmp\SpeedUpMyPC-standalone-setup.exe    Win32/SpeedUpMyPC potentially unwanted application    deleted - quarantined
C:\Users\Tom Beall\AppData\Roaming\Mozilla\Firefox\Profiles\devomv6p.default-1392576974814\extensions\a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com\extensionData\plugins\91.js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\Tom Beall\Documents\Downloads\SetupImgBurn_2.5.7.0.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\Tom Beall\Documents\Downloads\Utilities\WeatherBugSetup.msi    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\Tom Beall\Downloads\CCleaner - ccsetup408.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\Tom Beall\Downloads\Image type converter - pixsetup.exe    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
C:\Users\Tom Beall\Downloads\Speccy - spsetup124.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\Tom Beall\Downloads\LiteOn DVD\WinZip180.exe    a variant of Win32/OpenInstall potentially unwanted application    deleted - quarantined
E:\Downloads\cbsidlm-tr1_5-iTV_Media_Player-75280193.exe    Win32/DownloadAdmin.G potentially unwanted application    deleted - quarantined
E:\Downloads\GAMES\AerialFire.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\ashley-jones-and-the-heart-of-egypt.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\azangara.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\aztec-bricks.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\crazy-serpentine.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\el-dorado-quest.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\fun-and-bullets.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\GreatSecretsDaVinci.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\hidden-art-2.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\mystery-of-unicorn-castle.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\sea-journey.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\SolitaireIsle.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\the-rise-of-atlantis.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\GAMES\tibet-quest.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\TV & Cable\freeonlinetvplayer.exe    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\ccsetup411.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\ccsetup412.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\CNET File Update Download Service - cbsidlm-cbsi183-Download_App-PBF-75864009.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\complete-data-wipe-setup.exe    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\CuteWriter text to pdf converter.exe    a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Defraggler - dfsetup216.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\DriverSweeper_3.2.0.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Driver_Fusion_v1.6.0.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\FoxitReader614.0217_enu_Setup.exe    a variant of Win32/OpenCandy.A potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Glary Registry Repair old - rrsetup3.3.zip    probably a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Little_Registry_Cleaner-ORG-10890826.exe    Win32/DownloadAdmin.G potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\pc-wizard_2012.2.0-setup.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Recuva - rcsetup147.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Recuva - rcsetup148.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\SetupImgBurn_2.5.1.0.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\SpamFighter frm CNet - cbsidlm-cbsi145-Spamfighter-SEO-10200268.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\Speccy - spsetup125.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\System Explorer - cbsidlm-cbsi183-System_Explorer-ORG-10784281.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\tsrwatermarkimagesoftwarepro-setup.exe    Win32/DownloadAdmin.G potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\WinUtilities - wufinstall.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Glary Registry Repair old - rrsetup3.3\rrsetup3.3\rrsetup3.3.exe    probably a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Misc\BandooV7.exe    Win32/Toolbar.SearchSuite potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\PHOTO\GIMP\gimp-setup.exe    Win32/DownloadAdmin.G potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\PHOTO\PhotoScape\cbsidlm-cbsi3_2_5_53-PhotoScape-10703122.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
E:\Downloads\Utilities\STORAGE\Hard Drives\CrystalDiskInfo5_6_2-en.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\STORAGE\Hard Drives\CrystalDiskInfo_v6.1.8.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\STORAGE\Hard Drives\CrystalDiskMark3_0_1c-en.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Video\cole2k.media.-.codec.pack.v8.0.1.-advanced-.setup.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Downloads\Utilities\Windows XP Info\radarsync.exe    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
E:\My Documents from C\Downloads\isobuster_eng.exe    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
F:\DOWNLOADS\Utilities\AdwareCleaner - cbsidlm-cbsi145-AdwCleaner-SEO-75851221.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
F:\DOWNLOADS\Utilities\yifi - Player_Setup.exe    a variant of Win32/DomaIQ.BB potentially unwanted application    deleted - quarantined
F:\DOWNLOADS\Utilities\GAMES\cbsidlm-cbsi183-123_Free_Solitaire-ORG-10022517.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

 

OK, what is your conclusion??    Your help is very much appreciated.   Thank You.



#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:56 AM

Posted 06 April 2014 - 04:41 PM

...I did find DMUninstaller listed in Add/Remove programs.   I went to Uninstall it and Win7 reported no program - may have been removed, etc.

That was probably the program responsible for the pop ups...I will add it to the list in the other topic. The more info I collect, the better we are able to help folks resolve this issue.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#10 tacoslammer2

tacoslammer2
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:56 PM

Posted 09 April 2014 - 12:07 AM

Thanks to everyone so far.   The "rvzr" appears to be gone after I deleted the DMUinstaller entry listed in Add/Remove programs.

 

You asked for the results to be posted from MiniToolBox, TDSSKILLEER, ADW Cleaner, JRT, and ESET.  

 

I have not seen that the data has been analyzed be anyone.    I would appreciate some feedback on the results I posted above in #8.   Are any infections or other problems apparent?

 

Thank you.



#11 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:56 AM

Posted 09 April 2014 - 05:32 AM

Your AdwCleaner, JRT, and ESET scan log(s) show that most of the detections were Potentially Unwanted Programs (PUPs), Potentially Unwanted Applications (PUAs) and Potentially Unsafe Applications which do not fall in the same category as malicious files such as viruses, Trojans, worms, rootkits and bots. In most cases they are related to junk software, toolbars, add-ons/plug-ins, and browser extensions bundled with other free third-party software you download from the Internet.

These bundled packages, installers and downloaders can often be the source of various issues and problems to include Adware, pop-up ads, browser hijacking which may change your home page and search engine, and user profile corruption.

PUPs and PUAs are a very broad threat category which can encompass any number of different programs to include those which are benign as well as problematic. Thus, this type of detection does not always necessarily mean the file is malicious or a bad program. To learn more about PUPs and how you get them, please read: About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs)
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#12 tacoslammer2

tacoslammer2
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:56 PM

Posted 09 April 2014 - 08:46 AM

quietman7

Thanks you quiteman7.    I run several programs I thought were removing these types of issues (PUPs, PUAs, etc.), namely:  CCleaner, Spybot-S&D, SuperAntiSpyware, Malwarebytes AntiMalware, TuneUp 2014 Utilities, Glary Utilities, AdBlockPlus, and associated registry cleaners.   My AntiVirus is Microsoft Security Essentials (MSE).   All are the free editions.   MSE is the only one that runs real-time.   My browser, FireFox, is set fairly secure and set to block Pop-Ups.

 

I thought these would keep most of the junk stuff at bay.   LavaSoft's AdAware is not the same ad-prevention software it was several years ago and I do not use it.   Also it interferes with other programs.    I usually use custom installations to avoid the junk associated with installers and down-loaders.    They are getting more sneaky and you have to read the fine print on many to avoid unwanted installations along with the desired program (file).

 

I had McAfee's Total Security at one time but had more problems with it and I dumped it sometime ago in favor of the free MSE.

 

Any advice on other cleaners to use to get rid of the unwanted add-ons? 

 

Thanks.


Edited by tacoslammer2, 09 April 2014 - 08:47 AM.


#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:56 AM

Posted 09 April 2014 - 12:52 PM

You're welcome but my Colleague boopme did all the work to clean up your system...I just provided information and explanations.
 

Any advice on other cleaners to use to get rid of the unwanted add-ons?

AdwCleaner and JRT are specifically designed to do just that. However, they are frequently updated so you should always download the most current version. Malwarebytes will also catch a lot of this if you have it configured to do so.

To check or change PUP settings in Malwarebytes' 1.75, open the program, click the 'Settings' tab and then click the 'Scanner Settings' tab. You will find the Action options at the bottom with a drop down box to the right which allows you to select the action you want Malwarebytes to take. The default action for Malwarebytes' 1.75 PUP detections is "Show in results list and do not check for removal."
- If you want Malwarebytes to remove them, make sure the settings are set to "Show in results list and check for removal."
- If you don't want Malwarebytes to remove them, set the settings back to default.

To check or change PUP settings in Malwarebytes' 2.0, open the program, and click the Detection and Protection Option section. Under Non-Malware Protection, you will see PUP and PUM with a drop down box to the right which allows you to select the action you want Malwarebytes to take. There are three choices.
- If you want Malwarebytes to remove them, make sure the settings are set to "Treat detections as malware."
- If you don't want Malwarebytes to remove them, set the settings to "Ignore Detections."
- If you select "Warn user about detections"...you will be alerted to the detection, and you may choose to ignore it, create an exclusion, or treat it as malware.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users