Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Before I Toss My Computer Out the Window...


  • Please log in to reply
6 replies to this topic

#1 7Mozart7

7Mozart7

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Local time:02:32 AM

Posted 20 August 2014 - 02:00 PM

Hello good people. I'm having some problems with my computer & hope to get some advice on fixing the problems

 

My computer was fine until about a year ago, when I inadvertently downloaded something called the "DJ/MIXI" (or something like that) adware virus. I thought I got rid of it, but now I'm not sure. Also, like a fool, I allowed a few friends to use my computer for some time, & think they managed to get some nasty stuff on the computer as well

 

The problems are many, running  extremely slow, sites won't open, weird ads on the pages, can't download certain things, can't compose mail, etc. The list goes on & on

 

I realize there's a list of tasks to do that I post here afterward, but not sure where that list is on the board

 

Any help would be greatly appreciated


Edited by hamluis, 20 August 2014 - 02:01 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 maggot7

maggot7

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:32 AM

Posted 20 August 2014 - 02:13 PM

Hey 7Mozart7! Let's see what's going on.

 

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.


#3 7Mozart7

7Mozart7
  • Topic Starter

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Local time:02:32 AM

Posted 21 August 2014 - 07:44 AM

Sorry, didn't know my post was moved, & thanks for replying

 

OK, I'll do what you advise & post it as soon as possible

 

Thanks again



#4 7Mozart7

7Mozart7
  • Topic Starter

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Local time:02:32 AM

Posted 21 August 2014 - 09:56 PM

 It seems the last one, ESET, was the only one that found anything, but man, it found a lot. How the heck does this crap get on my computer?

 

Anyway,here's the results...

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by *********** (administrator) on 21-08-2014 at 07:49:29
Running from "K:\"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
802.11n Wireless LAN Card = Wireless Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : **********-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home.network

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : home.network
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 38-60-77-9E-D3-94
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::b558:379c:774c:afce%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.0.5(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, August 20, 2014 1:27:42 PM
   Lease Expires . . . . . . . . . . : Thursday, August 28, 2014 7:26:11 AM
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 339239031
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-39-D2-DE-74-DE-2B-AD-0F-76
   DNS Servers . . . . . . . . . . . : 208.59.247.45
                                       208.59.247.46
   NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : 802.11n Wireless LAN Card
   Physical Address. . . . . . . . . : 74-DE-2B-AD-0F-76
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home.network:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home.network
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{FD61DA1F-0F87-4931-A3EC-82A91630F4B2}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:3097:1393:f5ff:fffa(Preferred)
   Link-local IPv6 Address . . . . . : fe80::3097:1393:f5ff:fffa%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  208.59.247.45

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Address:  2607:f8b0:4009:807::1003


Pinging google.com [74.125.225.37] with 32 bytes of data:
Reply from 74.125.225.37: bytes=32 time=11ms TTL=55
Reply from 74.125.225.37: bytes=32 time=9ms TTL=55

Ping statistics for 74.125.225.37:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 9ms, Maximum = 11ms, Average = 10ms
Server:  ns2.dns.rcn.net
Address:  208.59.247.45

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.

Pinging *****.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=42ms TTL=51
Reply from 98.139.183.24: bytes=32 time=44ms TTL=51

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 42ms, Maximum = 44ms, Average = 43ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...38 60 77 9e d3 94 ......Realtek PCIe GBE Family Controller
 11...74 de 2b ad 0f 76 ......802.11n Wireless LAN Card
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1         10.0.0.5     10
         10.0.0.0    255.255.255.0         On-link          10.0.0.5    266
         10.0.0.5  255.255.255.255         On-link          10.0.0.5    266
       10.0.0.255  255.255.255.255         On-link          10.0.0.5    266
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link          10.0.0.5    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link          10.0.0.5    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:90d7:3097:1393:f5ff:fffa/128
                                    On-link
 12    266 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::3097:1393:f5ff:fffa/128
                                    On-link
 12    266 fe80::b558:379c:774c:afce/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 12    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\system32\Sendori.dll [357664] (Sendori)
Catalog9 02 C:\Windows\system32\Sendori.dll [357664] (Sendori)
Catalog9 03 C:\Windows\system32\Sendori.dll [357664] (Sendori)
Catalog9 04 C:\Windows\system32\Sendori.dll [357664] (Sendori)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\Sendori.dll [357664] (Sendori)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\Sendori64.dll [464160] (Sendori)
x64-Catalog9 02 C:\Windows\System32\Sendori64.dll [464160] (Sendori)
x64-Catalog9 03 C:\Windows\System32\Sendori64.dll [464160] (Sendori)
x64-Catalog9 04 C:\Windows\System32\Sendori64.dll [464160] (Sendori)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\Sendori64.dll [464160] (Sendori)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/21/2014 07:27:37 AM) (Source: SendoriService) (User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/20/2014 09:35:57 PM) (Source: SendoriService) (User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/20/2014 01:28:18 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/19/2014 07:51:00 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 11.0.9600.17239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 8f68

Start Time: 01cfbb2d1d3d28dc

Termination Time: 1900

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (08/19/2014 07:50:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 31.0.0.5310, time stamp: 0x53c75e91
Faulting module name: mozalloc.dll, version: 31.0.0.5310, time stamp: 0x53c72e91
Exception code: 0x80000003
Fault offset: 0x0000141b
Faulting process id: 0x7054
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (08/19/2014 06:04:35 PM) (Source: SendoriService) (User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/19/2014 02:01:00 PM) (Source: SendoriService) (User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/19/2014 07:40:02 AM) (Source: SendoriService) (User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/19/2014 00:10:29 AM) (Source: CVHSVC) (User: )
Description: Information only.
Error: The requested name is valid, but no data of the requested type was found.
 ErrorCode: 14007(0x36b7).

Error: (08/18/2014 05:46:02 AM) (Source: SendoriService) (User: )
Description: In the enable methodObject reference not set to an instance of an object.


System errors:
=============
Error: (08/21/2014 07:26:07 AM) (Source: Service Control Manager) (User: )
Description: The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/20/2014 09:34:35 PM) (Source: Service Control Manager) (User: )
Description: The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/20/2014 06:29:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.

Error: (08/20/2014 05:28:36 PM) (Source: Service Control Manager) (User: )
Description: The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/20/2014 01:27:41 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:26:23 PM on ‎8/‎20/‎2014 was unexpected.

Error: (08/20/2014 11:44:26 AM) (Source: Service Control Manager) (User: )
Description: The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/20/2014 07:41:58 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Application Sendori service.

Error: (08/20/2014 07:41:41 AM) (Source: Service Control Manager) (User: )
Description: The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/19/2014 10:04:35 PM) (Source: Service Control Manager) (User: )
Description: The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/19/2014 06:03:02 PM) (Source: Service Control Manager) (User: )
Description: The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.


Microsoft Office Sessions:
=========================
Error: (08/21/2014 07:27:37 AM) (Source: SendoriService)(User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/20/2014 09:35:57 PM) (Source: SendoriService)(User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/20/2014 01:28:18 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/19/2014 07:51:00 PM) (Source: Application Hang)(User: )
Description: iexplore.exe11.0.9600.172398f6801cfbb2d1d3d28dc1900C:\Program Files\Internet Explorer\iexplore.exe

Error: (08/19/2014 07:50:04 PM) (Source: Application Error)(User: )
Description: plugin-container.exe31.0.0.531053c75e91mozalloc.dll31.0.0.531053c72e91800000030000141b705401cfbbc00d5768eaC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllaf43bb1a-2814-11e4-a238-00038a000015

Error: (08/19/2014 06:04:35 PM) (Source: SendoriService)(User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/19/2014 02:01:00 PM) (Source: SendoriService)(User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/19/2014 07:40:02 AM) (Source: SendoriService)(User: )
Description: In the enable methodObject reference not set to an instance of an object.

Error: (08/19/2014 00:10:29 AM) (Source: CVHSVC)(User: )
Description: Error: The requested name is valid, but no data of the requested type was found.
 ErrorCode: 14007(0x36b7).

Error: (08/18/2014 05:46:02 AM) (Source: SendoriService)(User: )
Description: In the enable methodObject reference not set to an instance of an object.


CodeIntegrity Errors:
===================================
  Date: 2014-08-16 01:26:58.750
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-16 01:26:58.750
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-16 01:26:58.740
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-16 01:26:58.730
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-16 01:26:58.720
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-16 01:26:58.720
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-14 09:12:30.590
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-14 09:12:30.588
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-14 09:12:30.588
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-14 09:12:30.555
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.



=========================== Installed Programs ============================
8 (HKLM-x32\...\POSTER_is1) (Version:  - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.0.19480 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 2.7.0.19480 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
AOL Toolbar (HKCU\...\AOL Toolbar) (Version:  - )
AOL Toolbar (HKLM-x32\...\AOL Toolbar) (Version:  - )
AOL Uninstaller (Choose which Products to Remove) (HKLM-x32\...\AOL Uninstaller) (Version:  - AOL Inc.)
Atmosphere Lite v6.0 (HKLM-x32\...\Atmosphere Lite_is1) (Version:  - Vectormedia Software.)
Audacity 1.3.14 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version:  - Audacity Team)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Build-a-lot 4 - Power Source (x32 Version: 2.2.0.97 - WildTangent) Hidden
Chronicles of Albian (x32 Version: 2.2.0.95 - WildTangent) Hidden
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Coupon Companion (HKLM-x32\...\Coupon Companion) (Version: 1.18.149.149 - 215 Apps)
Cradle of Rome 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
CyberLink MediaEspresso (x32 Version: 6.5.1720_38230 - CyberLink Corp.) Hidden
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.2531.52 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.2531.52 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DesignPro 5 (HKLM-x32\...\InstallShield_{C8F04EF6-C4DB-4D86-8D86-32E7DBDA8595}) (Version: 5.5.708 - Avery Dennison)
DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
DownloadTerms (HKCU\...\DownloadTerms) (Version: 1.0 - Unlimited Downloads, LLC)
eBay Worldwide (HKLM-x32\...\{D3E5A972-9A15-427D-AE78-8181A5FD943C}) (Version: 2.2.0409 - OEM)
Etron USB3.0 Host Controller (x32 Version: 0.103 - Etron Technology) Hidden
Express Burn Disc Burning Software (HKLM-x32\...\ExpressBurn) (Version:  - NCH Software)
Express Rip (HKLM-x32\...\ExpressRip) (Version:  - NCH Software)
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
FLV Player (HKLM-x32\...\FLV Player2.0.25) (Version: 2.0.25 - Martijn de Visser Software)
Free YouTube Converter (HKLM-x32\...\Free YouTube Converter_is1) (Version:  - )
Free YouTube to MP3 Converter version 3.10.15.1228 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version:  - DVDVideoSoft Ltd.)
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Gateway Games (HKLM-x32\...\WildTangent gateway Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Gateway Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3502 - Gateway Incorporated)
Gateway Registration (HKLM-x32\...\Gateway Registration) (Version: 1.04.3503 - Gateway Incorporated)
Gateway ScreenSaver (HKLM-x32\...\Gateway Screensaver) (Version: 1.1.0225.2011 - Gateway Incorporated)
Gateway Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3500 - Gateway Incorporated)
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden
HitmanPro 3.6 (HKLM\...\HitmanPro36) (Version: 3.6.2.174 - SurfRight B.V.)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3505 - Gateway Incorporated)
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{ADDF4B84-5D28-4EAE-8511-EF808C8BC81C}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710n-z Help (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Gateway Incorporated)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2353 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Jewel Match 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Anti-Virus 2013 (HKLM-x32\...\InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab)
Kaspersky Anti-Virus 2013 (x32 Version: 13.0.1.4190 - Kaspersky Lab) Hidden
LibreOffice 3.6 (HKLM-x32\...\{AFD5A54E-E9A1-413D-8AA2-C9EDB6782400}) (Version: 3.6.0.4 - The Document Foundation)
Malwarebytes Anti-Malware version 1.70.0.1100 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.70.0.1100 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.6120.5004 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 - English (HKLM-x32\...\{90140011-0061-0409-0000-0000000FF1CE}) (Version: 14.0.6120.5005 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5131.5000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft VC9 runtime libraries (x32 Version: 1.0.0 - AOL Inc.) Hidden
Microsoft VC9 runtime libraries (x32 Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
MixPad Audio Mixer (HKLM-x32\...\MixPad) (Version:  - NCH Software)
Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.8.10800.8.100 - Nero AG)
Nero BackItUp 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero Control Center 10 (x32 Version: 10.6.12700.0.7 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.19900.9.11 - Nero AG) Hidden
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.2.10500.2.100 - Nero AG)
Nero DiscSpeed 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 - Nero AG)
Nero Express 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}) (Version: 10.5.10300 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{68AFA3A7-9265-4ABD-994A-ACA413E3715C}) (Version: 10.6.10100 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.6.10500.3.100 - Nero AG)
Nero RescueAgent 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.2.11600.14.100 - Nero AG)
Nero StartSmart 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.10900.31.0 - Nero AG)
Nitro Reader 3 (HKLM\...\{3C1F302A-CC25-488D-9C24-A76B95BC916F}) (Version: 3.0.6.3 - Nitro)
NOOK for PC (HKLM-x32\...\BN_DesktopReader) (Version: 2.5.4.7070 - Barnesandnoble.com)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
PC Auto Backup (HKLM-x32\...\InstallShield_{662548BC-3506-4843-B7AA-F44D352F76A8}) (Version: 1.1.1.21 - Samsung Electronics Co,. Ltd.)
PC Auto Backup (x32 Version: 1.1.1.21 - Samsung Electronics Co,. Ltd.) Hidden
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden
PrimoPDF -- brought to you by Nitro PDF Software (HKLM-x32\...\PrimoPDF) (Version: 5 - Nitro PDF Software)
RCA Detective™ 3.0.3.0 (HKLM-x32\...\RCA Detective™_is1) (Version:  - RCA)
RCA easyRip 2.5.6.0 (HKLM-x32\...\RCA easyRip_is1) (Version:  - RCA)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6257 - Realtek Semiconductor Corp.)
River Past Audio Converter (HKLM\...\Audio Converter) (Version: 7.7.16 - River Past)
Samsung i-Launcher 1.0.1.54 (HKLM-x32\...\Samsung i-Launcher) (Version: 1.0.1.54 - Samsung Electronics Co., Ltd.)
Sendori (HKLM-x32\...\Sendori) (Version: 2.0.18 - Sendori, Inc.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SmartDraw 2014 (HKLM-x32\...\SmartDraw 2014) (Version:  - SmartDraw, LLC)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Times Reader (HKLM-x32\...\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1) (Version: 2.055 - The New York Times Company)
Times Reader (x32 Version: 2.055 - The New York Times Company) Hidden
Torchlight (x32 Version: 2.2.0.97 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 2.2.0.97 - WildTangent) Hidden
VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version:  - NCH Software)
Welcome Center (HKLM-x32\...\Gateway Welcome Center) (Version: 1.02.3503 - Gateway Incorporated)
WildTangent Games App (Gateway Games) (x32 Version: 4.0.5.14 - WildTangent) Hidden
Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
WinZip 15.0 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240C1}) (Version: 15.0.9411 - WinZip Computing, S.L. )
Youtube Downloader HD v. 2.9.5 (HKLM-x32\...\Youtube Downloader HD_is1) (Version:  - YoutubeDownloaderHD.com)
Zuma's Revenge (x32 Version: 2.2.0.97 - WildTangent) Hidden

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 6048.28 MB
Available physical RAM: 2973.97 MB
Total Pagefile: 12094.73 MB
Available Pagefile: 3560.77 MB
Total Virtual: 4095.88 MB
Available Virtual: 3980.28 MB

========================= Partitions: =====================================

1 Drive c: (Gateway) (Fixed) (Total:917.41 GB) (Free:785.57 GB) NTFS
8 Drive k: (FreeAgent GoFlex Drive) (Fixed) (Total:931.51 GB) (Free:26.87 GB) NTFS

========================= Users: ========================================

User accounts for \\**********-PC

Administrator            Guest                    **********            


**** End of log ****

 

 

 

 

 

 

 

21:29:21.0427 0x72e0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
21:29:25.0287 0x72e0  ============================================================
21:29:25.0287 0x72e0  Current date / time: 2014/08/21 21:29:25.0287
21:29:25.0287 0x72e0  SystemInfo:
21:29:25.0287 0x72e0 
21:29:25.0287 0x72e0  OS Version: 6.1.7601 ServicePack: 1.0
21:29:25.0287 0x72e0  Product type: Workstation
21:29:25.0287 0x72e0  ComputerName: **********
21:29:25.0288 0x72e0  UserName: **********
21:29:25.0288 0x72e0  Windows directory: C:\Windows
21:29:25.0288 0x72e0  System windows directory: C:\Windows
21:29:25.0288 0x72e0  Running under WOW64
21:29:25.0288 0x72e0  Processor architecture: Intel x64
21:29:25.0288 0x72e0  Number of processors: 4
21:29:25.0288 0x72e0  Page size: 0x1000
21:29:25.0288 0x72e0  Boot type: Normal boot
21:29:25.0288 0x72e0  ============================================================
21:29:25.0500 0x72e0  KLMD registered as C:\Windows\system32\drivers\18357933.sys
21:29:25.0887 0x72e0  System UUID: {F2C2BE4F-B6CB-04F7-D923-D0217956C8B0}
21:29:26.0535 0x72e0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:29:26.0538 0x72e0  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB5E00 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:29:26.0555 0x72e0  ============================================================
21:29:26.0555 0x72e0  \Device\Harddisk0\DR0:
21:29:26.0556 0x72e0  MBR partitions:
21:29:26.0556 0x72e0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
21:29:26.0556 0x72e0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x72AD3DB0
21:29:26.0556 0x72e0  \Device\Harddisk1\DR1:
21:29:26.0556 0x72e0  MBR partitions:
21:29:26.0556 0x72e0  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705981
21:29:26.0556 0x72e0  ============================================================
21:29:26.0682 0x72e0  C: <-> \Device\Harddisk0\DR0\Partition2
21:29:29.0606 0x72e0  K: <-> \Device\Harddisk1\DR1\Partition1
21:29:29.0606 0x72e0  ============================================================
21:29:29.0606 0x72e0  Initialize success
21:29:29.0606 0x72e0  ============================================================
21:29:39.0501 0x1108  ============================================================
21:29:39.0501 0x1108  Scan started
21:29:39.0501 0x1108  Mode: Manual;
21:29:39.0501 0x1108  ============================================================
21:29:39.0501 0x1108  KSN ping started
21:29:41.0866 0x1108  KSN ping finished: true
21:29:49.0824 0x1108  ================ Scan system memory ========================
21:29:49.0824 0x1108  System memory - ok
21:29:49.0825 0x1108  ================ Scan services =============================
21:29:49.0975 0x1108  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
21:29:49.0982 0x1108  1394ohci - ok
21:29:50.0018 0x1108  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:29:50.0028 0x1108  ACPI - ok
21:29:50.0033 0x1108  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:29:50.0035 0x1108  AcpiPmi - ok
21:29:50.0098 0x1108  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:29:50.0100 0x1108  AdobeARMservice - ok
21:29:50.0197 0x1108  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:29:50.0203 0x1108  AdobeFlashPlayerUpdateSvc - ok
21:29:50.0233 0x1108  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:29:50.0244 0x1108  adp94xx - ok
21:29:50.0279 0x1108  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:29:50.0286 0x1108  adpahci - ok
21:29:50.0319 0x1108  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:29:50.0324 0x1108  adpu320 - ok
21:29:50.0351 0x1108  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:29:50.0353 0x1108  AeLookupSvc - ok
21:29:50.0428 0x1108  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
21:29:50.0439 0x1108  AFD - ok
21:29:50.0479 0x1108  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
21:29:50.0481 0x1108  agp440 - ok
21:29:50.0500 0x1108  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
21:29:50.0502 0x1108  ALG - ok
21:29:50.0529 0x1108  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:29:50.0541 0x1108  aliide - ok
21:29:50.0582 0x1108  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:29:50.0583 0x1108  amdide - ok
21:29:50.0591 0x1108  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:29:50.0597 0x1108  AmdK8 - ok
21:29:50.0604 0x1108  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
21:29:50.0607 0x1108  AmdPPM - ok
21:29:50.0636 0x1108  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:29:50.0641 0x1108  amdsata - ok
21:29:50.0663 0x1108  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:29:50.0667 0x1108  amdsbs - ok
21:29:50.0680 0x1108  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:29:50.0682 0x1108  amdxata - ok
21:29:50.0798 0x1108  [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS         C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
21:29:50.0805 0x1108  AOL ACS - ok
21:29:50.0812 0x1108  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
21:29:50.0814 0x1108  AppID - ok
21:29:50.0827 0x1108  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:29:50.0831 0x1108  AppIDSvc - ok
21:29:50.0867 0x1108  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
21:29:50.0869 0x1108  Appinfo - ok
21:29:50.0883 0x1108  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
21:29:50.0886 0x1108  arc - ok
21:29:50.0896 0x1108  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:29:50.0899 0x1108  arcsas - ok
21:29:51.0010 0x1108  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:29:51.0033 0x1108  aspnet_state - ok
21:29:51.0060 0x1108  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:29:51.0061 0x1108  AsyncMac - ok
21:29:51.0083 0x1108  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
21:29:51.0085 0x1108  atapi - ok
21:29:51.0120 0x1108  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:29:51.0136 0x1108  AudioEndpointBuilder - ok
21:29:51.0156 0x1108  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:29:51.0167 0x1108  AudioSrv - ok
21:29:51.0227 0x1108  AVP - ok
21:29:51.0248 0x1108  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:29:51.0251 0x1108  AxInstSV - ok
21:29:51.0283 0x1108  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
21:29:51.0295 0x1108  b06bdrv - ok
21:29:51.0345 0x1108  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:29:51.0353 0x1108  b57nd60a - ok
21:29:51.0380 0x1108  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:29:51.0383 0x1108  BDESVC - ok
21:29:51.0398 0x1108  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:29:51.0399 0x1108  Beep - ok
21:29:51.0450 0x1108  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
21:29:51.0464 0x1108  BFE - ok
21:29:51.0507 0x1108  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
21:29:51.0557 0x1108  BITS - ok
21:29:51.0572 0x1108  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:29:51.0578 0x1108  blbdrive - ok
21:29:51.0593 0x1108  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:29:51.0596 0x1108  bowser - ok
21:29:51.0607 0x1108  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
21:29:51.0609 0x1108  BrFiltLo - ok
21:29:51.0628 0x1108  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
21:29:51.0629 0x1108  BrFiltUp - ok
21:29:51.0663 0x1108  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
21:29:51.0666 0x1108  Browser - ok
21:29:51.0686 0x1108  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:29:51.0693 0x1108  Brserid - ok
21:29:51.0698 0x1108  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:29:51.0700 0x1108  BrSerWdm - ok
21:29:51.0704 0x1108  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:29:51.0705 0x1108  BrUsbMdm - ok
21:29:51.0709 0x1108  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:29:51.0711 0x1108  BrUsbSer - ok
21:29:51.0732 0x1108  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:29:51.0734 0x1108  BTHMODEM - ok
21:29:51.0754 0x1108  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
21:29:51.0757 0x1108  bthserv - ok
21:29:51.0773 0x1108  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:29:51.0777 0x1108  cdfs - ok
21:29:51.0799 0x1108  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:29:51.0805 0x1108  cdrom - ok
21:29:51.0824 0x1108  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
21:29:51.0827 0x1108  CertPropSvc - ok
21:29:51.0845 0x1108  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
21:29:51.0847 0x1108  circlass - ok
21:29:51.0868 0x1108  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
21:29:51.0875 0x1108  CLFS - ok
21:29:51.0929 0x1108  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:29:51.0932 0x1108  clr_optimization_v2.0.50727_32 - ok
21:29:51.0981 0x1108  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:29:51.0988 0x1108  clr_optimization_v2.0.50727_64 - ok
21:29:52.0054 0x1108  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:29:52.0104 0x1108  clr_optimization_v4.0.30319_32 - ok
21:29:52.0119 0x1108  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:29:52.0126 0x1108  clr_optimization_v4.0.30319_64 - ok
21:29:52.0132 0x1108  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
21:29:52.0135 0x1108  CmBatt - ok
21:29:52.0151 0x1108  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:29:52.0153 0x1108  cmdide - ok
21:29:52.0200 0x1108  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
21:29:52.0211 0x1108  CNG - ok
21:29:52.0246 0x1108  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
21:29:52.0248 0x1108  Compbatt - ok
21:29:52.0261 0x1108  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
21:29:52.0264 0x1108  CompositeBus - ok
21:29:52.0268 0x1108  COMSysApp - ok
21:29:52.0275 0x1108  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:29:52.0279 0x1108  crcdisk - ok
21:29:52.0331 0x1108  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:29:52.0337 0x1108  CryptSvc - ok
21:29:52.0417 0x1108  [ DDAC7684F4BC3F655ED31D8AA494E9AB, 6AE08B3E0544A4A07235BEFE2F18653BB03240039CCC1A1777FE5E342E057AFC ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:29:52.0437 0x1108  cvhsvc - ok
21:29:52.0495 0x1108  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:29:52.0505 0x1108  DcomLaunch - ok
21:29:52.0545 0x1108  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
21:29:52.0550 0x1108  defragsvc - ok
21:29:52.0561 0x1108  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:29:52.0563 0x1108  DfsC - ok
21:29:52.0597 0x1108  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:29:52.0604 0x1108  Dhcp - ok
21:29:52.0614 0x1108  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
21:29:52.0615 0x1108  discache - ok
21:29:52.0632 0x1108  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
21:29:52.0635 0x1108  Disk - ok
21:29:52.0655 0x1108  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:29:52.0659 0x1108  Dnscache - ok
21:29:52.0668 0x1108  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:29:52.0674 0x1108  dot3svc - ok
21:29:52.0690 0x1108  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
21:29:52.0694 0x1108  DPS - ok
21:29:52.0735 0x1108  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:29:52.0736 0x1108  drmkaud - ok
21:29:52.0798 0x1108  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:29:52.0825 0x1108  DXGKrnl - ok
21:29:52.0844 0x1108  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
21:29:52.0846 0x1108  EapHost - ok
21:29:52.0945 0x1108  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
21:29:53.0039 0x1108  ebdrv - ok
21:29:53.0073 0x1108  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
21:29:53.0075 0x1108  EFS - ok
21:29:53.0144 0x1108  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:29:53.0157 0x1108  ehRecvr - ok
21:29:53.0172 0x1108  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
21:29:53.0176 0x1108  ehSched - ok
21:29:53.0214 0x1108  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:29:53.0227 0x1108  elxstor - ok
21:29:53.0238 0x1108  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:29:53.0240 0x1108  ErrDev - ok
21:29:53.0270 0x1108  [ CFBA28FAB72E6A39ADD71D958F219648, 38752186452F1FC4C690BFC7BF624CCEFF44C81532CE5FB96FF1A7C577329A6A ] EtronHub3       C:\Windows\system32\Drivers\EtronHub3.sys
21:29:53.0273 0x1108  EtronHub3 - ok
21:29:53.0290 0x1108  [ 0241CE183139FF15CEA7234058CCF995, 53D967163B5B69EDD621F44EC29594E6F2834D5AC2636D9C2E0616D153D9CE8E ] EtronXHCI       C:\Windows\system32\Drivers\EtronXHCI.sys
21:29:53.0293 0x1108  EtronXHCI - ok
21:29:53.0318 0x1108  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
21:29:53.0328 0x1108  EventSystem - ok
21:29:53.0351 0x1108  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:29:53.0355 0x1108  exfat - ok
21:29:53.0373 0x1108  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:29:53.0380 0x1108  fastfat - ok
21:29:53.0413 0x1108  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
21:29:53.0428 0x1108  Fax - ok
21:29:53.0446 0x1108  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
21:29:53.0447 0x1108  fdc - ok
21:29:53.0468 0x1108  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
21:29:53.0469 0x1108  fdPHost - ok
21:29:53.0487 0x1108  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:29:53.0489 0x1108  FDResPub - ok
21:29:53.0504 0x1108  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:29:53.0507 0x1108  FileInfo - ok
21:29:53.0522 0x1108  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:29:53.0524 0x1108  Filetrace - ok
21:29:53.0530 0x1108  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
21:29:53.0532 0x1108  flpydisk - ok
21:29:53.0557 0x1108  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:29:53.0577 0x1108  FltMgr - ok
21:29:53.0640 0x1108  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
21:29:53.0673 0x1108  FontCache - ok
21:29:53.0707 0x1108  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:29:53.0709 0x1108  FontCache3.0.0.0 - ok
21:29:53.0722 0x1108  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:29:53.0724 0x1108  FsDepends - ok
21:29:53.0756 0x1108  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:29:53.0757 0x1108  Fs_Rec - ok
21:29:53.0780 0x1108  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:29:53.0786 0x1108  fvevol - ok
21:29:53.0810 0x1108  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:29:53.0814 0x1108  gagp30kx - ok
21:29:53.0868 0x1108  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:29:53.0874 0x1108  GamesAppService - ok
21:29:53.0916 0x1108  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
21:29:53.0941 0x1108  gpsvc - ok
21:29:53.0996 0x1108  [ C9B2D1D3F86FD3673EF847DEF73B6F9E, 9D3822A6464F685F770F8D02A8AE623A676888F135E8425C3BAF1CC077429A7F ] GREGService     C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe
21:29:53.0998 0x1108  GREGService - ok
21:29:54.0013 0x1108  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:29:54.0016 0x1108  hcw85cir - ok
21:29:54.0049 0x1108  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:29:54.0057 0x1108  HdAudAddService - ok
21:29:54.0086 0x1108  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:29:54.0090 0x1108  HDAudBus - ok
21:29:54.0113 0x1108  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
21:29:54.0114 0x1108  HidBatt - ok
21:29:54.0135 0x1108  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:29:54.0138 0x1108  HidBth - ok
21:29:54.0160 0x1108  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:29:54.0165 0x1108  HidIr - ok
21:29:54.0180 0x1108  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
21:29:54.0182 0x1108  hidserv - ok
21:29:54.0220 0x1108  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:29:54.0221 0x1108  HidUsb - ok
21:29:54.0273 0x1108  [ 44F92C1F913E582BEF9CAC66443C6230, C471417FE22B6D00B98314FB8ED7B20175779B83FBDBBDD9175A8B64EAE53B89 ] hitmanpro36     C:\Windows\system32\drivers\hitmanpro36.sys
21:29:54.0276 0x1108  hitmanpro36 - ok
21:29:54.0291 0x1108  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:29:54.0295 0x1108  hkmsvc - ok
21:29:54.0313 0x1108  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:29:54.0319 0x1108  HomeGroupListener - ok
21:29:54.0347 0x1108  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:29:54.0352 0x1108  HomeGroupProvider - ok
21:29:54.0365 0x1108  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:29:54.0368 0x1108  HpSAMD - ok
21:29:54.0403 0x1108  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:29:54.0418 0x1108  HTTP - ok
21:29:54.0457 0x1108  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:29:54.0459 0x1108  hwpolicy - ok
21:29:54.0476 0x1108  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
21:29:54.0480 0x1108  i8042prt - ok
21:29:54.0501 0x1108  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor          C:\Windows\system32\drivers\iaStor.sys
21:29:54.0513 0x1108  iaStor - ok
21:29:54.0572 0x1108  [ 8FFF9083252C16FE3960173722605E9E, 6546FDA34B9AF94C5E86E5269BBC2F02F1E78D6D4BE5B5EC01F4B284CC934994 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:29:54.0573 0x1108  IAStorDataMgrSvc - ok
21:29:54.0679 0x1108  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:29:54.0688 0x1108  iaStorV - ok
21:29:55.0016 0x1108  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:29:55.0035 0x1108  idsvc - ok
21:29:55.0071 0x1108  IEEtwCollectorService - ok
21:29:55.0449 0x1108  [ 370C2A8629B30F910F740387795DDC6F, 7D2D69F0BC12E86236014003EEA7479BD0FDE9A469459B6550DC3AED07A02030 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
21:29:55.0808 0x1108  igfx - ok
21:29:55.0838 0x1108  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:29:55.0841 0x1108  iirsp - ok
21:29:55.0907 0x1108  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
21:29:55.0934 0x1108  IKEEXT - ok
21:29:56.0028 0x1108  [ A0C2C3D4C03C4FB896CFC53873784178, 7C2178B72D7B7B8FD9045A40656A4492ACF4527AAA0B7D9CB7881487AAD67D95 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:29:56.0099 0x1108  IntcAzAudAddService - ok
21:29:56.0132 0x1108  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
21:29:56.0139 0x1108  IntcDAud - ok
21:29:56.0162 0x1108  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:29:56.0164 0x1108  intelide - ok
21:29:56.0172 0x1108  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:29:56.0174 0x1108  intelppm - ok
21:29:56.0194 0x1108  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:29:56.0198 0x1108  IPBusEnum - ok
21:29:56.0201 0x1108  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:29:56.0203 0x1108  IpFilterDriver - ok
21:29:56.0243 0x1108  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:29:56.0253 0x1108  iphlpsvc - ok
21:29:56.0258 0x1108  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:29:56.0260 0x1108  IPMIDRV - ok
21:29:56.0265 0x1108  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:29:56.0268 0x1108  IPNAT - ok
21:29:56.0302 0x1108  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:29:56.0304 0x1108  IRENUM - ok
21:29:56.0313 0x1108  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:29:56.0314 0x1108  isapnp - ok
21:29:56.0346 0x1108  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:29:56.0352 0x1108  iScsiPrt - ok
21:29:56.0381 0x1108  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:29:56.0385 0x1108  kbdclass - ok
21:29:56.0403 0x1108  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:29:56.0406 0x1108  kbdhid - ok
21:29:56.0417 0x1108  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
21:29:56.0419 0x1108  KeyIso - ok
21:29:56.0475 0x1108  [ 795EC29BA21F1D948FD6FD740C00B599, 780900717A812C5DB78C67057010BD62DF2C756C087599A6F8C67CB4EFA7518C ] KL1             C:\Windows\system32\DRIVERS\kl1.sys
21:29:56.0486 0x1108  KL1 - ok
21:29:56.0552 0x1108  [ FEA38D7024CD9C27D58A862A19DCFA14, 522A15963A105AD551ED45E7BA2AFA7A90408FE7D349307A17F12FE761AFB903 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
21:29:56.0565 0x1108  KLIF - ok
21:29:56.0593 0x1108  [ 31B69BFF28348503E4BD10C2A4F66D05, 891318C2DDF85E43DFCEE73717AEFCE79BC3DCD83FCD58E6F794AB6BF1739688 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
21:29:56.0598 0x1108  KLIM6 - ok
21:29:56.0643 0x1108  [ AEB50941C6D67128B14F88DB9917C4E0, 2ACE46665DE298CC197660A442A3172B1FB460A40BD18AECEA786ACB011FDA43 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
21:29:56.0647 0x1108  klkbdflt - ok
21:29:56.0672 0x1108  [ 72CF64FBF38CD681FA7F37176047E967, BE5683C119DCEF7E678EE477D6CADF873E32D42372A253B7E86B8C335DF28E1C ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
21:29:56.0674 0x1108  klmouflt - ok
21:29:56.0705 0x1108  [ 45ECF097BC6330C2054D7D43B7AD822B, 41684ED54E75FE6BEEA322E7CE888DFDD53EE1F45016E01CE10B84ABB02CBDA8 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
21:29:56.0708 0x1108  kltdi - ok
21:29:56.0724 0x1108  [ 1FCB657B581CC4DF17FD6571F93602DE, D5D95773D19AA47BA619D149FD6068198E2AA05C219C3936E327B3DFFDE6B10C ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
21:29:56.0730 0x1108  kneps - ok
21:29:56.0762 0x1108  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:29:56.0764 0x1108  KSecDD - ok
21:29:56.0775 0x1108  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:29:56.0779 0x1108  KSecPkg - ok
21:29:56.0788 0x1108  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:29:56.0790 0x1108  ksthunk - ok
21:29:56.0816 0x1108  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:29:56.0825 0x1108  KtmRm - ok
21:29:56.0845 0x1108  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:29:56.0851 0x1108  LanmanServer - ok
21:29:56.0874 0x1108  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:29:56.0878 0x1108  LanmanWorkstation - ok
21:29:56.0932 0x1108  [ B705C7097F9A0EC941D02DCE7C7D426C, 1A137BEA25BF7BA1EF190212CD6E556B53293D6388E9F7E790BF53F641F3CF89 ] Live Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
21:29:56.0938 0x1108  Live Updater Service - ok
21:29:56.0962 0x1108  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:29:56.0965 0x1108  lltdio - ok
21:29:57.0000 0x1108  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:29:57.0007 0x1108  lltdsvc - ok
21:29:57.0020 0x1108  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:29:57.0022 0x1108  lmhosts - ok
21:29:57.0069 0x1108  [ 50C7CE53EF461870410355F1F2E7D515, D6E84C63D74E4603D37FD7CC88BF51DE23CD17DB1D1AD4ADBED62F949F3C470C ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:29:57.0076 0x1108  LMS - ok
21:29:57.0107 0x1108  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:29:57.0113 0x1108  LSI_FC - ok
21:29:57.0118 0x1108  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:29:57.0122 0x1108  LSI_SAS - ok
21:29:57.0130 0x1108  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:29:57.0133 0x1108  LSI_SAS2 - ok
21:29:57.0140 0x1108  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:29:57.0144 0x1108  LSI_SCSI - ok
21:29:57.0162 0x1108  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
21:29:57.0166 0x1108  luafv - ok
21:29:57.0242 0x1108  [ 1704A8189EE5580AB147CFD25C5C8770, DFA076FD36B5CC844D4BE3B865E9A1F809E14CCB1D78D82A2D8D8EE38210E6EB ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
21:29:57.0251 0x1108  McComponentHostService - ok
21:29:57.0266 0x1108  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:29:57.0269 0x1108  Mcx2Svc - ok
21:29:57.0273 0x1108  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:29:57.0275 0x1108  megasas - ok
21:29:57.0296 0x1108  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
21:29:57.0303 0x1108  MegaSR - ok
21:29:57.0316 0x1108  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
21:29:57.0319 0x1108  MEIx64 - ok
21:29:57.0342 0x1108  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
21:29:57.0345 0x1108  MMCSS - ok
21:29:57.0349 0x1108  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
21:29:57.0351 0x1108  Modem - ok
21:29:57.0375 0x1108  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:29:57.0378 0x1108  monitor - ok
21:29:57.0383 0x1108  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:29:57.0386 0x1108  mouclass - ok
21:29:57.0409 0x1108  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:29:57.0411 0x1108  mouhid - ok
21:29:57.0428 0x1108  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:29:57.0431 0x1108  mountmgr - ok
21:29:57.0503 0x1108  [ 4E9D8041D352A33332FD6F59A3A78B03, D4E6229B07EF9866993EEE4F6223DC7F1FF1108273FE14A3DC74E65C181DE56A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:29:57.0507 0x1108  MozillaMaintenance - ok
21:29:57.0520 0x1108  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:29:57.0525 0x1108  mpio - ok
21:29:57.0560 0x1108  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:29:57.0562 0x1108  mpsdrv - ok
21:29:57.0591 0x1108  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:29:57.0609 0x1108  MpsSvc - ok
21:29:57.0645 0x1108  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:29:57.0649 0x1108  MRxDAV - ok
21:29:57.0683 0x1108  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:29:57.0686 0x1108  mrxsmb - ok
21:29:57.0699 0x1108  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:29:57.0705 0x1108  mrxsmb10 - ok
21:29:57.0721 0x1108  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:29:57.0725 0x1108  mrxsmb20 - ok
21:29:57.0752 0x1108  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:29:57.0754 0x1108  msahci - ok
21:29:57.0768 0x1108  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:29:57.0773 0x1108  msdsm - ok
21:29:57.0788 0x1108  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
21:29:57.0794 0x1108  MSDTC - ok
21:29:57.0816 0x1108  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:29:57.0817 0x1108  Msfs - ok
21:29:57.0831 0x1108  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:29:57.0832 0x1108  mshidkmdf - ok
21:29:57.0846 0x1108  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:29:57.0848 0x1108  msisadrv - ok
21:29:57.0877 0x1108  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:29:57.0882 0x1108  MSiSCSI - ok
21:29:57.0886 0x1108  msiserver - ok
21:29:57.0916 0x1108  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:29:57.0917 0x1108  MSKSSRV - ok
21:29:57.0922 0x1108  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:29:57.0924 0x1108  MSPCLOCK - ok
21:29:57.0931 0x1108  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:29:57.0932 0x1108  MSPQM - ok
21:29:57.0953 0x1108  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:29:57.0962 0x1108  MsRPC - ok
21:29:57.0980 0x1108  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
21:29:57.0981 0x1108  mssmbios - ok
21:29:57.0984 0x1108  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:29:57.0985 0x1108  MSTEE - ok
21:29:57.0988 0x1108  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
21:29:57.0989 0x1108  MTConfig - ok
21:29:57.0999 0x1108  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
21:29:58.0001 0x1108  Mup - ok
21:29:58.0037 0x1108  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
21:29:58.0050 0x1108  napagent - ok
21:29:58.0098 0x1108  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:29:58.0106 0x1108  NativeWifiP - ok
21:29:58.0157 0x1108  [ 13AA2130F2A104DD775EAD0F0EE5417B, EBA07599FC2D10750CE6372EA6BA94EDDAFFF732223A1135F1971B958A6B57A2 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
21:29:58.0171 0x1108  NAUpdate - ok
21:29:58.0225 0x1108  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:29:58.0259 0x1108  NDIS - ok
21:29:58.0293 0x1108  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:29:58.0295 0x1108  NdisCap - ok
21:29:58.0315 0x1108  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:29:58.0317 0x1108  NdisTapi - ok
21:29:58.0328 0x1108  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:29:58.0331 0x1108  Ndisuio - ok
21:29:58.0347 0x1108  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:29:58.0350 0x1108  NdisWan - ok
21:29:58.0362 0x1108  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:29:58.0364 0x1108  NDProxy - ok
21:29:58.0370 0x1108  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:29:58.0372 0x1108  NetBIOS - ok
21:29:58.0398 0x1108  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:29:58.0404 0x1108  NetBT - ok
21:29:58.0417 0x1108  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
21:29:58.0418 0x1108  Netlogon - ok
21:29:58.0460 0x1108  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
21:29:58.0469 0x1108  Netman - ok
21:29:58.0525 0x1108  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:29:58.0554 0x1108  NetMsmqActivator - ok
21:29:58.0584 0x1108  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:29:58.0589 0x1108  NetPipeActivator - ok
21:29:58.0605 0x1108  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
21:29:58.0616 0x1108  netprofm - ok
21:29:58.0685 0x1108  [ 5758FD37BF31E759F8610311E4D08ECA, 4F502E4DBD7725F2929CACD6D5E68018C5F7C10A9D12CD131CC69E72530DEA5F ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
21:29:58.0728 0x1108  netr28x - ok
21:29:58.0736 0x1108  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:29:58.0738 0x1108  NetTcpActivator - ok
21:29:58.0743 0x1108  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:29:58.0747 0x1108  NetTcpPortSharing - ok
21:29:58.0770 0x1108  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:29:58.0772 0x1108  nfrd960 - ok
21:29:58.0869 0x1108  [ DCD9287B04DE83CA22C8057C358243EA, 5B6D0485E7320B9493DD47B8454FC749917AABF05B00B9F370843BB57CB7F37E ] NitroReaderDriverReadSpool3 C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
21:29:58.0873 0x1108  NitroReaderDriverReadSpool3 - ok
21:29:58.0889 0x1108  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:29:58.0899 0x1108  NlaSvc - ok
21:29:59.0030 0x1108  [ 5839A8027D6D324A7CD494051A96628C, 474F2D0BB463ABE68D7C4D2C630860AED4B722EC62C616C91EE00AA965378382 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
21:29:59.0102 0x1108  NOBU - ok
21:29:59.0116 0x1108  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:29:59.0117 0x1108  Npfs - ok
21:29:59.0130 0x1108  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
21:29:59.0132 0x1108  nsi - ok
21:29:59.0140 0x1108  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:29:59.0142 0x1108  nsiproxy - ok
21:29:59.0225 0x1108  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:29:59.0282 0x1108  Ntfs - ok
21:29:59.0294 0x1108  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
21:29:59.0296 0x1108  Null - ok
21:29:59.0337 0x1108  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:29:59.0342 0x1108  nvraid - ok
21:29:59.0372 0x1108  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:29:59.0377 0x1108  nvstor - ok
21:29:59.0392 0x1108  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:29:59.0396 0x1108  nv_agp - ok
21:29:59.0402 0x1108  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:29:59.0405 0x1108  ohci1394 - ok
21:29:59.0461 0x1108  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:29:59.0465 0x1108  ose - ok
21:29:59.0634 0x1108  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:29:59.0755 0x1108  osppsvc - ok
21:29:59.0786 0x1108  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:29:59.0795 0x1108  p2pimsvc - ok
21:29:59.0827 0x1108  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
21:29:59.0836 0x1108  p2psvc - ok
21:29:59.0849 0x1108  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
21:29:59.0852 0x1108  Parport - ok
21:29:59.0883 0x1108  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:29:59.0885 0x1108  partmgr - ok
21:29:59.0903 0x1108  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:29:59.0908 0x1108  PcaSvc - ok
21:29:59.0918 0x1108  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
21:29:59.0925 0x1108  pci - ok
21:29:59.0948 0x1108  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:29:59.0950 0x1108  pciide - ok
21:29:59.0977 0x1108  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:29:59.0982 0x1108  pcmcia - ok
21:30:00.0000 0x1108  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:30:00.0003 0x1108  pcw - ok
21:30:00.0029 0x1108  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:30:00.0042 0x1108  PEAUTH - ok
21:30:00.0109 0x1108  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:30:00.0110 0x1108  PerfHost - ok
21:30:00.0166 0x1108  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
21:30:00.0214 0x1108  pla - ok
21:30:00.0294 0x1108  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:30:00.0303 0x1108  PlugPlay - ok
21:30:00.0336 0x1108  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:30:00.0339 0x1108  PNRPAutoReg - ok
21:30:00.0365 0x1108  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:30:00.0371 0x1108  PNRPsvc - ok
21:30:00.0407 0x1108  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:30:00.0418 0x1108  PolicyAgent - ok
21:30:00.0447 0x1108  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
21:30:00.0451 0x1108  Power - ok
21:30:00.0470 0x1108  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:30:00.0473 0x1108  PptpMiniport - ok
21:30:00.0493 0x1108  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
21:30:00.0497 0x1108  Processor - ok
21:30:00.0534 0x1108  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:30:00.0540 0x1108  ProfSvc - ok
21:30:00.0550 0x1108  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:30:00.0551 0x1108  ProtectedStorage - ok
21:30:00.0570 0x1108  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:30:00.0574 0x1108  Psched - ok
21:30:00.0636 0x1108  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:30:00.0685 0x1108  ql2300 - ok
21:30:00.0696 0x1108  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:30:00.0701 0x1108  ql40xx - ok
21:30:00.0722 0x1108  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
21:30:00.0729 0x1108  QWAVE - ok
21:30:00.0738 0x1108  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:30:00.0740 0x1108  QWAVEdrv - ok
21:30:00.0748 0x1108  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:30:00.0749 0x1108  RasAcd - ok
21:30:00.0758 0x1108  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:30:00.0761 0x1108  RasAgileVpn - ok
21:30:00.0778 0x1108  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
21:30:00.0782 0x1108  RasAuto - ok
21:30:00.0795 0x1108  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:30:00.0799 0x1108  Rasl2tp - ok
21:30:00.0816 0x1108  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
21:30:00.0825 0x1108  RasMan - ok
21:30:00.0839 0x1108  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:30:00.0842 0x1108  RasPppoe - ok
21:30:00.0853 0x1108  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:30:00.0856 0x1108  RasSstp - ok
21:30:00.0874 0x1108  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:30:00.0882 0x1108  rdbss - ok
21:30:00.0887 0x1108  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
21:30:00.0890 0x1108  rdpbus - ok
21:30:00.0898 0x1108  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:30:00.0900 0x1108  RDPCDD - ok
21:30:00.0918 0x1108  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:30:00.0920 0x1108  RDPENCDD - ok
21:30:00.0928 0x1108  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:30:00.0930 0x1108  RDPREFMP - ok
21:30:00.0967 0x1108  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:30:00.0972 0x1108  RDPWD - ok
21:30:00.0999 0x1108  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:30:01.0004 0x1108  rdyboost - ok
21:30:01.0034 0x1108  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:30:01.0037 0x1108  RemoteAccess - ok
21:30:01.0054 0x1108  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:30:01.0059 0x1108  RemoteRegistry - ok
21:30:01.0074 0x1108  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:30:01.0077 0x1108  RpcEptMapper - ok
21:30:01.0097 0x1108  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
21:30:01.0099 0x1108  RpcLocator - ok
21:30:01.0130 0x1108  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
21:30:01.0140 0x1108  RpcSs - ok
21:30:01.0155 0x1108  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:30:01.0158 0x1108  rspndr - ok
21:30:01.0189 0x1108  [ E50CFB92986DCAB49DE93788FD695813, EAE103008B967B0F064EDDA551AA553EE7C22D39D14FA0BBFEF41C4D1B6C99E5 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
21:30:01.0203 0x1108  RTL8167 - ok
21:30:01.0217 0x1108  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
21:30:01.0218 0x1108  SamSs - ok
21:30:01.0232 0x1108  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:30:01.0236 0x1108  sbp2port - ok
21:30:01.0257 0x1108  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:30:01.0263 0x1108  SCardSvr - ok
21:30:01.0281 0x1108  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:30:01.0283 0x1108  scfilter - ok
21:30:01.0327 0x1108  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
21:30:01.0353 0x1108  Schedule - ok
21:30:01.0375 0x1108  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:30:01.0378 0x1108  SCPolicySvc - ok
21:30:01.0393 0x1108  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:30:01.0398 0x1108  SDRSVC - ok
21:30:01.0411 0x1108  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:30:01.0413 0x1108  secdrv - ok
21:30:01.0427 0x1108  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
21:30:01.0430 0x1108  seclogon - ok
21:30:01.0442 0x1108  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
21:30:01.0446 0x1108  SENS - ok
21:30:01.0457 0x1108  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:30:01.0460 0x1108  SensrSvc - ok
21:30:01.0465 0x1108  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:30:01.0467 0x1108  Serenum - ok
21:30:01.0483 0x1108  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
21:30:01.0485 0x1108  Serial - ok
21:30:01.0489 0x1108  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:30:01.0491 0x1108  sermouse - ok
21:30:01.0516 0x1108  Service Sendori - ok
21:30:01.0536 0x1108  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
21:30:01.0540 0x1108  SessionEnv - ok
21:30:01.0547 0x1108  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:30:01.0549 0x1108  sffdisk - ok
21:30:01.0554 0x1108  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:30:01.0557 0x1108  sffp_mmc - ok
21:30:01.0570 0x1108  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:30:01.0572 0x1108  sffp_sd - ok
21:30:01.0579 0x1108  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:30:01.0580 0x1108  sfloppy - ok
21:30:01.0640 0x1108  [ B2F21560016B3C200FC34F2BD13DE469, CBA4728F4F9C9BCC163B0AD1B4BCC370836CC07668F66EF732D03904382D7828 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfswin7.sys
21:30:01.0657 0x1108  Sftfs - ok
21:30:01.0729 0x1108  [ 13693B6354DD6E72DC5131DA7D764B90, 447EFDA7CFB1F62EA316219D996406C8DC374097DB903F362D6E945227D8BB2D ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:30:01.0740 0x1108  sftlist - ok
21:30:01.0759 0x1108  [ AD9449F3BF407DBD1742A465F2163847, E4BD90893B24BB391B1F47230741FAB941520BEF82E1F1629EE5475BC73D61F6 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaywin7.sys
21:30:01.0765 0x1108  Sftplay - ok
21:30:01.0782 0x1108  [ 78A1496BA75C7D5700CECB77DDD291BB, 662312024B907531F12609803CFAB36B2AD7F117B03E7F01B0851BF964A9F1A6 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirwin7.sys
21:30:01.0784 0x1108  Sftredir - ok
21:30:01.0800 0x1108  [ DA674FD0164D64BD4980A619410D57E3, 46DC26FCAADA34B1B18B51BA51462741A2FE55CCCA967FC7349158DFB044DC6B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvolwin7.sys
21:30:01.0804 0x1108  Sftvol - ok
21:30:01.0826 0x1108  [ C3CDDD18F43D44AB713CF8C4916F7696, 38093295825AFDD08D7E32CC4EF2A6C447F6D6E3C6F7EA5554C25E7C3F16FC92 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:30:01.0830 0x1108  sftvsa - ok
21:30:01.0856 0x1108  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:30:01.0864 0x1108  SharedAccess - ok
21:30:01.0894 0x1108  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:30:01.0904 0x1108  ShellHWDetection - ok
21:30:01.0920 0x1108  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:30:01.0924 0x1108  SiSRaid2 - ok
21:30:01.0934 0x1108  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:30:01.0938 0x1108  SiSRaid4 - ok
21:30:01.0979 0x1108  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:30:01.0982 0x1108  SkypeUpdate - ok
21:30:01.0990 0x1108  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:30:01.0993 0x1108  Smb - ok
21:30:02.0029 0x1108  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:30:02.0031 0x1108  SNMPTRAP - ok
21:30:02.0039 0x1108  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:30:02.0040 0x1108  spldr - ok
21:30:02.0085 0x1108  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
21:30:02.0098 0x1108  Spooler - ok
21:30:02.0217 0x1108  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
21:30:02.0353 0x1108  sppsvc - ok
21:30:02.0375 0x1108  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:30:02.0379 0x1108  sppuinotify - ok
21:30:02.0421 0x1108  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:30:02.0434 0x1108  srv - ok
21:30:02.0454 0x1108  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:30:02.0464 0x1108  srv2 - ok
21:30:02.0480 0x1108  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:30:02.0484 0x1108  srvnet - ok
21:30:02.0499 0x1108  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:30:02.0503 0x1108  SSDPSRV - ok
21:30:02.0516 0x1108  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:30:02.0519 0x1108  SstpSvc - ok
21:30:02.0532 0x1108  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:30:02.0535 0x1108  stexstor - ok
21:30:02.0580 0x1108  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
21:30:02.0595 0x1108  stisvc - ok
21:30:02.0610 0x1108  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
21:30:02.0612 0x1108  swenum - ok
21:30:02.0641 0x1108  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
21:30:02.0654 0x1108  swprv - ok
21:30:02.0714 0x1108  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
21:30:02.0768 0x1108  SysMain - ok
21:30:02.0789 0x1108  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:30:02.0795 0x1108  TabletInputService - ok
21:30:02.0816 0x1108  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:30:02.0825 0x1108  TapiSrv - ok
21:30:02.0843 0x1108  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
21:30:02.0848 0x1108  TBS - ok
21:30:02.0937 0x1108  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:30:02.0990 0x1108  Tcpip - ok
21:30:03.0037 0x1108  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:30:03.0071 0x1108  TCPIP6 - ok
21:30:03.0115 0x1108  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:30:03.0116 0x1108  tcpipreg - ok
21:30:03.0134 0x1108  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:30:03.0135 0x1108  TDPIPE - ok
21:30:03.0167 0x1108  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:30:03.0168 0x1108  TDTCP - ok
21:30:03.0187 0x1108  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:30:03.0190 0x1108  tdx - ok
21:30:03.0204 0x1108  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
21:30:03.0206 0x1108  TermDD - ok
21:30:03.0232 0x1108  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
21:30:03.0247 0x1108  TermService - ok
21:30:03.0263 0x1108  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
21:30:03.0265 0x1108  Themes - ok
21:30:03.0285 0x1108  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
21:30:03.0287 0x1108  THREADORDER - ok
21:30:03.0300 0x1108  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
21:30:03.0303 0x1108  TrkWks - ok
21:30:03.0341 0x1108  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:30:03.0346 0x1108  TrustedInstaller - ok
21:30:03.0373 0x1108  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:30:03.0375 0x1108  tssecsrv - ok
21:30:03.0387 0x1108  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:30:03.0389 0x1108  TsUsbFlt - ok
21:30:03.0406 0x1108  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
21:30:03.0408 0x1108  TsUsbGD - ok
21:30:03.0436 0x1108  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:30:03.0439 0x1108  tunnel - ok
21:30:03.0445 0x1108  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:30:03.0448 0x1108  uagp35 - ok
21:30:03.0465 0x1108  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:30:03.0471 0x1108  udfs - ok
21:30:03.0484 0x1108  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:30:03.0486 0x1108  UI0Detect - ok
21:30:03.0508 0x1108  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:30:03.0511 0x1108  uliagpkx - ok
21:30:03.0529 0x1108  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:30:03.0534 0x1108  umbus - ok
21:30:03.0564 0x1108  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
21:30:03.0566 0x1108  UmPass - ok
21:30:03.0688 0x1108  [ 374EBDA379A8F38E0CFC2211611E7167, 0D6C3002B28E27C052227488CEE69FA99399421FF777EB48031E6080A759F532 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:30:03.0763 0x1108  UNS - ok
21:30:03.0784 0x1108  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
21:30:03.0795 0x1108  upnphost - ok
21:30:03.0815 0x1108  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:30:03.0819 0x1108  usbccgp - ok
21:30:03.0863 0x1108  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:30:03.0867 0x1108  usbcir - ok
21:30:03.0894 0x1108  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
21:30:03.0897 0x1108  usbehci - ok
21:30:03.0936 0x1108  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:30:03.0946 0x1108  usbhub - ok
21:30:03.0983 0x1108  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:30:03.0985 0x1108  usbohci - ok
21:30:04.0001 0x1108  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:30:04.0004 0x1108  usbprint - ok
21:30:04.0043 0x1108  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
21:30:04.0046 0x1108  usbscan - ok
21:30:04.0065 0x1108  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:30:04.0068 0x1108  USBSTOR - ok
21:30:04.0095 0x1108  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
21:30:04.0097 0x1108  usbuhci - ok
21:30:04.0111 0x1108  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
21:30:04.0113 0x1108  UxSms - ok
21:30:04.0128 0x1108  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
21:30:04.0129 0x1108  VaultSvc - ok
21:30:04.0142 0x1108  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:30:04.0144 0x1108  vdrvroot - ok
21:30:04.0170 0x1108  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
21:30:04.0182 0x1108  vds - ok
21:30:04.0217 0x1108  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:30:04.0219 0x1108  vga - ok
21:30:04.0237 0x1108  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:30:04.0238 0x1108  VgaSave - ok
21:30:04.0260 0x1108  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:30:04.0267 0x1108  vhdmp - ok
21:30:04.0298 0x1108  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:30:04.0300 0x1108  viaide - ok
21:30:04.0322 0x1108  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:30:04.0326 0x1108  volmgr - ok
21:30:04.0355 0x1108  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:30:04.0364 0x1108  volmgrx - ok
21:30:04.0399 0x1108  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:30:04.0406 0x1108  volsnap - ok
21:30:04.0432 0x1108  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:30:04.0437 0x1108  vsmraid - ok
21:30:04.0502 0x1108  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
21:30:04.0553 0x1108  VSS - ok
21:30:04.0571 0x1108  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
21:30:04.0573 0x1108  vwifibus - ok
21:30:04.0592 0x1108  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
21:30:04.0595 0x1108  vwififlt - ok
21:30:04.0621 0x1108  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
21:30:04.0630 0x1108  W32Time - ok
21:30:04.0648 0x1108  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:30:04.0650 0x1108  WacomPen - ok
21:30:04.0667 0x1108  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:30:04.0670 0x1108  WANARP - ok
21:30:04.0676 0x1108  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:30:04.0678 0x1108  Wanarpv6 - ok
21:30:04.0712 0x1108  [ ECEB715BECE47E101DDEC06B11126066, 6BD577D6EABD48B1BA31955DB3DEEE68528EA54375CA64D233B723D161B45CBA ] wanatw          C:\Windows\system32\DRIVERS\wanatw64.sys
21:30:04.0715 0x1108  wanatw - ok
21:30:04.0809 0x1108  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
21:30:04.0851 0x1108  WatAdminSvc - ok
21:30:04.0919 0x1108  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
21:30:04.0970 0x1108  wbengine - ok
21:30:04.0986 0x1108  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:30:04.0992 0x1108  WbioSrvc - ok
21:30:05.0019 0x1108  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:30:05.0030 0x1108  wcncsvc - ok
21:30:05.0043 0x1108  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:30:05.0046 0x1108  WcsPlugInService - ok
21:30:05.0058 0x1108  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
21:30:05.0060 0x1108  Wd - ok
21:30:05.0097 0x1108  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:30:05.0115 0x1108  Wdf01000 - ok
21:30:05.0138 0x1108  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:30:05.0141 0x1108  WdiServiceHost - ok
21:30:05.0147 0x1108  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:30:05.0150 0x1108  WdiSystemHost - ok
21:30:05.0192 0x1108  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
21:30:05.0198 0x1108  WebClient - ok
21:30:05.0208 0x1108  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:30:05.0214 0x1108  Wecsvc - ok
21:30:05.0227 0x1108  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:30:05.0231 0x1108  wercplsupport - ok
21:30:05.0252 0x1108  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:30:05.0255 0x1108  WerSvc - ok
21:30:05.0264 0x1108  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:30:05.0265 0x1108  WfpLwf - ok
21:30:05.0282 0x1108  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:30:05.0283 0x1108  WIMMount - ok
21:30:05.0303 0x1108  WinDefend - ok
21:30:05.0323 0x1108  WinHttpAutoProxySvc - ok
21:30:05.0386 0x1108  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:30:05.0394 0x1108  Winmgmt - ok
21:30:05.0466 0x1108  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:30:05.0532 0x1108  WinRM - ok
21:30:05.0584 0x1108  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:30:05.0604 0x1108  WinUsb - ok
21:30:05.0900 0x1108  [ 66887CCA6BB95BFF71C6B8120EAF04AA, B27F8F4ED6C571F2C181D913CE4FDD6B6EE94670C1161DD75B2C7CE8AA12EF40 ] WiselinkPro     C:\Program Files (x86)\Samsung\PC Auto Backup\WiselinkPro.exe
21:30:06.0110 0x1108  WiselinkPro - ok
21:30:06.0168 0x1108  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:30:06.0201 0x1108  Wlansvc - ok
21:30:06.0252 0x1108  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:30:06.0254 0x1108  wlcrasvc - ok
21:30:06.0369 0x1108  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:30:06.0459 0x1108  wlidsvc - ok
21:30:06.0497 0x1108  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:30:06.0499 0x1108  WmiAcpi - ok
21:30:06.0529 0x1108  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:30:06.0534 0x1108  wmiApSrv - ok
21:30:06.0552 0x1108  WMPNetworkSvc - ok
21:30:06.0580 0x1108  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:30:06.0582 0x1108  WPCSvc - ok
21:30:06.0591 0x1108  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:30:06.0595 0x1108  WPDBusEnum - ok
21:30:06.0610 0x1108  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:30:06.0611 0x1108  ws2ifsl - ok
21:30:06.0630 0x1108  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
21:30:06.0633 0x1108  wscsvc - ok
21:30:06.0635 0x1108  WSearch - ok
21:30:06.0730 0x1108  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:30:06.0797 0x1108  wuauserv - ok
21:30:06.0832 0x1108  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:30:06.0834 0x1108  WudfPf - ok
21:30:06.0874 0x1108  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:30:06.0878 0x1108  WUDFRd - ok
21:30:06.0916 0x1108  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:30:06.0920 0x1108  wudfsvc - ok
21:30:06.0953 0x1108  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:30:06.0959 0x1108  WwanSvc - ok
21:30:06.0974 0x1108  ================ Scan global ===============================
21:30:07.0001 0x1108  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
21:30:07.0032 0x1108  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:30:07.0045 0x1108  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:30:07.0071 0x1108  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
21:30:07.0104 0x1108  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
21:30:07.0112 0x1108  [ Global ] - ok
21:30:07.0113 0x1108  ================ Scan MBR ==================================
21:30:07.0125 0x1108  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:30:07.0322 0x1108  \Device\Harddisk0\DR0 - ok
21:30:07.0334 0x1108  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
21:30:07.0341 0x1108  \Device\Harddisk1\DR1 - ok
21:30:07.0344 0x1108  ================ Scan VBR ==================================
21:30:07.0345 0x1108  [ C7E6F22C8C0781CAA951123CE1E23175 ] \Device\Harddisk0\DR0\Partition1
21:30:07.0391 0x1108  \Device\Harddisk0\DR0\Partition1 - ok
21:30:07.0396 0x1108  [ A994C9A0CF4A5376A3D827B6E8DBD8CE ] \Device\Harddisk0\DR0\Partition2
21:30:07.0421 0x1108  \Device\Harddisk0\DR0\Partition2 - ok
21:30:07.0429 0x1108  [ CB8D70169C33D4E9A3C5B42B93187D5C ] \Device\Harddisk1\DR1\Partition1
21:30:07.0482 0x1108  \Device\Harddisk1\DR1\Partition1 - ok
21:30:07.0485 0x1108  ================ Scan generic autorun ======================
21:30:07.0520 0x1108  [ 8723825DB6C6494C0DD0EDC1349353FF, ADF07130ADE4BBE7D7E0A8761A7341AB96E42B9A83D00D364955DD62B277EF28 ] C:\Windows\system32\igfxtray.exe
21:30:07.0526 0x1108  IgfxTray - ok
21:30:07.0555 0x1108  [ 74B35B5E55C01A7D3700A8D95A922A79, 485BD842A6345F0E4658A4F5A4871D3C642C31F38F35DAC568B5D6D2A677D343 ] C:\Windows\system32\hkcmd.exe
21:30:07.0565 0x1108  HotKeysCmds - ok
21:30:07.0584 0x1108  [ A3D89D5A569770271A1F780A1E256947, FFBCDD5D42B5E721642B339E85DAF4C6C896B855ED3EBC49B58E27220E53799E ] C:\Windows\system32\igfxpers.exe
21:30:07.0593 0x1108  Persistence - ok
21:30:07.0974 0x1108  [ FF01BF4D9C1D6AB832E0A788E75CC330, 64B2D68947000B3970AA97AC548791220BF5BF12B4D7F39C6BB3E373BB42BD3E ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
21:30:08.0285 0x1108  RtHDVCpl - ok
21:30:08.0391 0x1108  [ D3E69D500466C17498AAF7F83D12FFF0, F5723FC28396489EADDDCAD67A0E46B56D859590823E3CFA7254BA6709DC5AE6 ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
21:30:08.0436 0x1108  Norton Online Backup - ok
21:30:08.0490 0x1108  [ 22EC0852DBF032A93D8DA697065FA189, 83A613C3C615EBCDAD32DF5CFFAD11642198D209AA5E22233DDDB517697070DA ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
21:30:08.0492 0x1108  RemoteControl10 - ok
21:30:08.0548 0x1108  [ 278C64B644C224B28E601381103811A6, FF80C2DCDBB6954C84223B01B430A3A250A3937E6A77AD63627C1BDD94E86C6B ] C:\Program Files (x86)\Gateway\Hotkey Utility\HotkeyUtility.exe
21:30:08.0559 0x1108  Hotkey Utility - ok
21:30:08.0654 0x1108  [ 3F654601A593A96BC4A47035B0829E69, 236ED57BFF34F6A67D9A7765D218F1D525CC56B98F8200FFCDDA00F5EBF3AD97 ] C:\Program Files (x86)\Common Files\AOL\1323980765\ee\AOLSoftware.exe
21:30:08.0655 0x1108  HostManager - ok
21:30:08.0710 0x1108  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
21:30:08.0729 0x1108  Adobe ARM - ok
21:30:08.0802 0x1108  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
21:30:08.0848 0x1108  Sidebar - ok
21:30:08.0867 0x1108  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
21:30:08.0870 0x1108  mctadmin - ok
21:30:08.0898 0x1108  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
21:30:08.0918 0x1108  Sidebar - ok
21:30:08.0928 0x1108  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
21:30:08.0932 0x1108  mctadmin - ok
21:30:09.0001 0x1108  [ 843401664451C560582F445DE7333E15, 31D94EB408B4AB9B4F754269D9907AE9F7D227E75C03EE4C67D0A87B8D8F6307 ] C:\Users\H**********\Documents\RCA easyRip\EZDock.exe
21:30:09.0012 0x1108  Easy Dock - ok
21:30:09.0084 0x1108  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
21:30:09.0137 0x1108  Sidebar - ok
21:30:09.0141 0x1108  Waiting for KSN requests completion. In queue: 315
21:30:10.0141 0x1108  Waiting for KSN requests completion. In queue: 315
21:30:11.0141 0x1108  Waiting for KSN requests completion. In queue: 315
21:30:12.0398 0x1108  AV detected via SS2: Kaspersky Anti-Virus, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
21:30:12.0469 0x1108  Win FW state via NFP2: enabled
21:30:14.0956 0x1108  ============================================================
21:30:14.0956 0x1108  Scan finished
21:30:14.0956 0x1108  ============================================================
21:30:14.0977 0x214c  Detected object count: 0
21:30:14.0977 0x214c  Actual detected object count: 0

 

 

 

 

 

 

 

 

 

# AdwCleaner v3.308 - Report created 21/08/2014 at 08:55:50
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : **********-PC
# Running from : K:\virus-AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\SearchProtect
Folder Deleted : C:\ProgramData\AOL Toolbar
Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\Program Files (x86)\AOL Toolbar
Folder Deleted : C:\Program Files (x86)\NCH Software
Folder Deleted : C:\Users\**********\AppData\Local\DownloadTerms
Folder Deleted : C:\Users\**********\AppData\Local\Strongvault
Folder Deleted : C:\Users\**********\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\**********\AppData\Roaming\Strongvault
File Deleted : C:\Users\**********\AppData\Roaming\Mozilla\Firefox\Profiles\ba8gd0nz.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi

***** [ Scheduled Tasks ] *****

Task Deleted : Scheduled Update for Ask Toolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lpoimibckejjdjcfbdnajaicnklhfplh
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Deleted : HKLM\SOFTWARE\Classes\PCProxy.DataContainer
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{38495740-0035-4471-851E-F5BBB86AB085}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9DC8FA51-B596-4F77-802C-5B295919C205}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3E28F712-0D6C-4EE3-AC8C-8F060F5D7C33}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6CE321DA-DC11-45C6-A0FC-4E8A7D978ABC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EEBC7FF-67DA-4B90-9251-C2C5696E4B48}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{74137531-80F7-406F-9543-7D11385FA8C8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{832599B2-55BF-4437-8F3E-030CF5AEB262}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9B7B034B-944A-4261-B487-862F642F7615}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B1A429DB-FB06-4645-B7C0-0CC405EAD3CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD67706E-819E-4EBD-BF8D-6D6147CC7A49}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F62A4AF9-58B4-4FEC-89CC-D717A547D8E8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220022442293}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{33333333-3333-3333-3333-330033443393}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{22511E2E-7970-414E-BC7C-28D16C4AF54D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C5311E-016D-4999-BCB1-499898429D6C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2C4B6DB8-6413-403B-A038-16A352CFE8B9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{46803190-228D-470E-90FE-F5E0CEA9C4F2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5180FE16-2E09-497B-9C8B-5A6F029ECECB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A4F6E1B3-469E-46EF-A936-FBA9D5EFD2B9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C97AF157-6A27-4F57-9D47-E2D3E4761B77}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0D2C81-7DB5-4599-B7C0-1033418B5672}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660066446693}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77777777-7777-7777-7777-770077447793}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{ED721A76-8160-4DA0-A18E-7FD7C4574774}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{22511E2E-7970-414E-BC7C-28D16C4AF54D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{23C5311E-016D-4999-BCB1-499898429D6C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2C4B6DB8-6413-403B-A038-16A352CFE8B9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{46803190-228D-470E-90FE-F5E0CEA9C4F2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5180FE16-2E09-497B-9C8B-5A6F029ECECB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A4F6E1B3-469E-46EF-A936-FBA9D5EFD2B9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C97AF157-6A27-4F57-9D47-E2D3E4761B77}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED0D2C81-7DB5-4599-B7C0-1033418B5672}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660066446693}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{77777777-7777-7777-7777-770077447793}
Key Deleted : HKCU\Software\AppDataLow\Software\Coupon Companion
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Coupon Companion
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239


-\\ Mozilla Firefox v31.0 (x86 en-US)

[ File : C:\Users\**********\AppData\Roaming\Mozilla\Firefox\Profiles\ba8gd0nz.default\prefs.js ]

Line Deleted : user_pref("extentions.y2layers.installId", "866CA9FF-97AC-727D-FF59-E7DC92E83781");
Line Deleted : user_pref("extentions.y2layers.installId_backup", "866CA9FF-97AC-727D-FF59-E7DC92E83781");

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [11445 octets] - [21/08/2014 08:16:14]
AdwCleaner[R1].txt - [11506 octets] - [21/08/2014 08:48:42]
AdwCleaner[S0].txt - [11326 octets] - [21/08/2014 08:55:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11387 octets] ##########

 

 

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by ********** on Thu 08/21/2014 at 15:56:46.09
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\aol toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\aol toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{66A7A2FF-FC6E-44E2-8E87-4C79118B1FDD}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{724F7944-9608-40DF-A4F0-25E4EC36C404}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D56B4239-8C74-4242-B827-A0F00B145CC9}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3EF64538-8B54-4573-B48F-4D34B0238AB2}



~~~ Files

Successfully deleted: [File] C:\Windows\syswow64\sho213D.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho5DA9.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho6C13.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho7AFA.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho7EBD.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho9540.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho9C63.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoA21F.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoA7BB.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoBD97.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoE293.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoE6BB.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoF115.tmp



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\strongvault online backup"
Successfully deleted: [Folder] "C:\ai_recyclebin"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{0516CAC9-3230-422D-9C39-4FBC40D362EB}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{06BD4CC5-5869-4877-AE20-2973E7B13827}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{0890FB4F-D411-493E-9630-4AA27B3AB8D5}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{0A1A0CBF-C922-4B57-A90A-4D7CEC4D8E12}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{0DA1C327-6B22-4470-A48C-ED9BAB2C6151}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{19748BCF-343F-4DD3-A652-8303A7DF6032}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{1A03108E-3AC9-4250-9D11-3413B887E56B}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{1A50410C-2F11-48B3-8C9E-91B5498666A7}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{1AF10339-F7FC-4D02-8F0D-6C201A585C81}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{1D245CBC-3D44-469F-8823-752A04E17AFF}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{1EDE6C2C-6535-496B-B18E-5FC4760E35AA}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{24C1BD31-1577-4019-8519-AF1BBF2D97EC}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{2526D045-3238-4291-95BD-379FC057CB28}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{2B7F4258-52E0-44FE-B0AF-F02CB29E15E6}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{2EFEDA9D-23D3-4DF1-AC99-93EA8C30CF21}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{31B427D4-B6FF-428A-9AF3-B7F8D6CD45D2}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{3C3E184E-A9C0-46F5-B059-990BD2C8EECA}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{3DFF328D-8995-41B6-A5A3-EB60059D291A}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{41138256-580A-49B7-99B1-7CDBA415059A}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{413E7F41-D24A-4F5C-8CAC-17CC48D4B7C7}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{41F78E3F-E6EA-4CF4-BBF4-21A80A1EB177}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{429F7E66-41F8-46E8-9D6F-FB0B20BBA57E}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{46010810-7835-44DF-8A48-6872D8B32419}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{4758278C-04F4-4AF2-8777-527C692AF12B}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{484BA474-078C-4595-9028-92D6CD6581E8}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{48BBD717-9CF2-47BC-B0B1-E0DD1B654A61}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{4D08ABF4-6668-45B5-B483-D040071B67B4}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{52F0F51C-E8D2-4C3A-B19F-6EFF5027D5DA}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{55A28F86-236C-4847-9421-27331949B007}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{57759510-11D3-4B52-99B2-9798275B44CB}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{5904B3EC-AFA7-4B44-A65F-770C336A7A84}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{5998AFC2-EA17-4B87-BFC4-177F29481A54}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{5FACE79D-650D-48BC-867E-0ECF899F24F0}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{63A07C6C-B1B6-42E7-ADB3-8E6B7DA84DD7}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{66DCF02E-B124-40F3-8D9C-4AF33228A555}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{6C4E6A87-F9FA-4F8B-879B-003E9E90153C}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{6CF650E8-931C-4110-B298-0632EEEB107C}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{6FE4F25E-7759-476B-B97E-51D8AE7D4FC1}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{7027F04D-3CE7-434C-81CF-D6D63365AFE7}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{72E756DE-85EE-435A-8DC1-FB1123BB0A30}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{75DD3B2F-CE31-4B08-9C08-A70B6B223EF3}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{768EF45E-2C66-4F37-B820-5110926AF1D6}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{76DB7F27-24BE-4DEC-AF64-BB2037D48D3E}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{77ADD750-EFE5-49EF-8021-C9984AE27E6B}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{7A25A655-3C19-4F88-A91C-5A50B5A98C56}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{7A30AD3F-28BB-4DC2-AE7B-70AED0A98997}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{8015CBFA-DDA0-4150-BACE-FA3A5EA652B9}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{8479B97D-0B2C-474F-94FD-917B854019E1}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{856F338C-12C8-4AD3-AA4A-3F3790F52279}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{88DB8A6E-B43A-49A0-9699-E1B0C2CC8099}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{8AF9691A-CE84-4B6C-A7F0-2F256C40054A}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{8B41E384-B244-4EE7-AF68-CF94CA2888AB}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{95F646CA-2B4A-4253-AF0E-60BB250FC180}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{98ED2B6E-1DCB-48CA-BF65-C3D83BDFE9D1}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{9BC8CA40-F024-440D-9237-923FF0552D87}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{9BCA5C29-5DAD-4B5E-B980-9C561273D344}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{9EED8A91-965E-44F1-A590-7E6A683E8F70}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{9F3B9188-AAE4-4B13-BB93-55B224AB220F}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{A216D2C9-1941-4269-B072-4410E1E0B47F}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{A30EEA48-7420-4EB8-8F0D-A19470730822}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{A3AF2D3C-F027-4385-9A3C-CC00EC55F25A}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{A7CF855E-53C1-4AC1-8369-E7E67BBEB924}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{AB534B4F-A591-4244-B113-77806E68EA0E}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{AB761B4B-B41B-493C-B3E8-57C8E297F8BB}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{B1D9E235-14B3-431B-8522-C917CC8765AA}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{B6DE3641-00B6-4793-A9B5-27511ECFEDCA}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{BEB4BB2B-2BD3-4693-ADC2-45BBD98EB2E7}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{BF8124AB-E5D5-43F2-88D7-B81A185F021F}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{BFA24155-AC69-474C-8D09-B8622274A7BA}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{C252FC18-CAF5-4E9A-96EE-FC0CFE1F5CBF}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{C544F85E-CC56-468B-BA73-AC6EE6BC6AAA}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{C9873AD3-7304-4EA2-82D4-1CCA6CDD2D3F}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{CC1A43ED-E974-4129-B199-070BEA1543C0}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{CD56D7DB-A8E0-4372-AE7E-BD937DFCFC21}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{CE622325-C375-479D-9001-9EC9D67E57ED}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{D483B084-AB54-4807-9EA7-94A670B89E5F}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{D74E905D-6825-454C-9CDB-5512BE50263F}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{D81E5705-7290-451F-AE11-68F4F579DDBF}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{D8EB2D1C-EFFA-405D-9C60-054158D99F4A}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{DB2B9451-ECCF-4462-B140-58F94AC7A43E}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{DD5EB83B-F928-4582-BD89-65AF31500322}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{DD9F159A-90E9-42B5-B181-3B27B447A7CF}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{E1E90B88-C8A3-4CCE-A61C-26EA9B8AA3BF}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{E2C73D14-4259-4E01-BB4F-A7B284CDA354}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{E362CD4F-1130-4536-8AB4-5A249B1E9023}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{E6D0EEEA-4DD4-431F-B808-2E3DAC7C9D05}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{E705D754-CC02-4625-8809-77FE94B789E3}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{E85B4646-49CC-491E-A9D2-9994805B44C8}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{EA0F9B8F-45A8-44C6-B6CD-D69231CA6763}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{ED26B699-A96E-4CB2-ABD8-01482AEA518E}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{EFA3725F-A775-4570-9A18-E1AFD9670165}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{F0BA2565-0098-43EA-AAEE-5480662F6AB1}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{F15003B6-1685-4BEC-9393-DCA8CA3CBA1C}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{F47C95F1-50E2-46E8-9259-3B7A5926A963}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{F56B45C3-D6CF-4C9F-888B-E2FCA986A42B}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{F6FB10F5-146B-4EE1-B53D-A2603249C413}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{F7C51F8E-E113-4CC3-96A2-E9902BE44258}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{FA5F85E3-8B74-47A5-9F12-A3068581ECE3}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{FD3E2A95-A214-43E1-9C9F-589D066AD0AB}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{FE769602-9196-46F7-B32C-5A74F944A5B4}
Successfully deleted: [Empty Folder] C:\Users\Handman777\appdata\local\{FF33304D-754B-4FCE-9625-AB622FF9D86A}



~~~ FireFox

Successfully deleted: [Folder] C:\Users\**********\AppData\Roaming\mozilla\firefox\profiles\ba8gd0nz.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
Emptied folder: C:\Users\**********\AppData\Roaming\mozilla\firefox\profiles\ba8gd0nz.default\minidumps [124 files]



~~~ Event Viewer Logs were cleared

 

 

 

 

 

 

 

 

 

C:\Windows\SysWOW64\Sendori.dll    a variant of Win32/AdWare.Sendori.A application    
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Components\NCHToolbars\ask.com\ApnStub.exe.vir    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Handman777\AppData\Local\DownloadTerms\temp.dat.vir    a variant of Win32/AdWare.Toolbar.AmyBar.A application    cleaned by deleting - quarantined
C:\OEM\Preload\Autorun\APP\Nero 10 Essentials Gateway Edition\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\Toolbar.exe    a variant of Win32/Bundled.Toolbar.Ask.A potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Sendori\DynLib.dll    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Sendori\Interop.PCProxyLib.dll    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\sendori-win-upgrader.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\Sendori.dll    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\Sendori.Library.dll    a variant of MSIL/Adware.Sendori.A application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Sendori\Sendori.Service.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Sendori\Sendori64.dll    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\SendoriControl.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\SendoriLSP.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\SendoriLSP64.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\SendoriSvc.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Sendori\SendoriTray.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\SendoriUp.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Sendori\sndappv2.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Program Files (x86)\Sendori\Uninstall.exe    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Users\Handman777\AppData\Local\Temp\AskSLib.dll    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\Handman777\AppData\Local\Temp\YontooIEClient.dll    a variant of Win32/Adware.Yontoo.A application    cleaned by deleting - quarantined
C:\Users\Handman777\AppData\Local\Temp\YontooSetup-Silent.exe    Win32/Adware.Yontoo application    cleaned by deleting - quarantined
C:\Users\Handman777\AppData\Local\Temp\is1598539481\4358143_Setup.DAT    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\Handman777\AppData\Local\Temp\is1598539481\88345243_Setup.DAT    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\Handman777\AppData\Local\Temp\is1598539481\BuzzdockSetup-Silent.exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Handman777\AppData\Local\Temp\rninst~0\ui_data\stubinst_pkg_en-us.cab    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Users\Handman777\AppData\Local\Temp\rninst~0\ui_data\inst_config\OCSetupHlp.dll    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Users\Handman777\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\AskPartnerCobrandingTool.exe    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
C:\Users\Handman777\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\RunIE.exe    Win32/Bundled.Toolbar.Ask.H potentially unsafe application    deleted - quarantined
C:\Users\Handman777\Documents\RCA easyRip\RCAeasyRipInstaller.exe    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
C:\Users\Handman777\Downloads\DPSetup.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\Handman777\Downloads\FLVPlayerSetup.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\Handman777\Downloads\InternationalPrimoPDF.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Windows\Installer\1b97661a.msi    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
C:\Windows\System32\Sendori.dll    a variant of Win32/AdWare.Sendori.A application    cleaned by deleting - quarantined
C:\Windows\Temp\nsj4E14.tmp\DynNSIS.dll    a variant of Win32/AdWare.Sendori.C application    cleaned by deleting - quarantined
K:\DPSetup.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
K:\registry-cleaner-rrsetup.exe    probably a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
K:\youtube_downloader_hd_setup.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined


 



#5 maggot7

maggot7

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:32 AM

Posted 25 August 2014 - 11:36 AM

It looks to me like the tools did their job. 

 

However, you need to uninstall these programs:

DownloadTerms (HKCU\...\DownloadTerms) (Version: 1.0 - Unlimited Downloads, LLC)

Free YouTube Converter (HKLM-x32\...\Free YouTube Converter_is1) (Version:  - )
Free YouTube to MP3 Converter version 3.10.15.1228 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version:  - DVDVideoSoft Ltd.)

Sendori (HKLM-x32\...\Sendori) (Version: 2.0.18 - Sendori, Inc.)

Youtube Downloader HD v. 2.9.5 (HKLM-x32\...\Youtube Downloader HD_is1) (Version:  - YoutubeDownloaderHD.com)

 

Do you need instruction to do that?

 

 

 

Otherwise, how is the computer acting?

 

One thing to pay special attention to are the "weird ads" you mentioned. If those are still there or if you are suspicious of some kind of advertising, we still have more work to do


Edited by maggot7, 25 August 2014 - 11:41 AM.


#6 7Mozart7

7Mozart7
  • Topic Starter

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Local time:02:32 AM

Posted 25 August 2014 - 07:49 PM

Thanks for the help

 

OK, the computer seems to be much better, although I'm still experiencing "this page can't be displayed" almost every time I try to get on a site. When I put the address in, it takes awhile for anything to open, & when it does, it's usually the "this page can't" message. When I refresh the page, it usually opens properly

 

I should be able to find & delete the programs you suggested I delete. If I have any problems, I'll let you know here

 

Again, thank you



#7 7Mozart7

7Mozart7
  • Topic Starter

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Local time:02:32 AM

Posted 27 August 2014 - 07:42 PM

Everything you told me to uninstall has been uninstalled. Computer seems to be running much better, although it's still pretty slow, & now, besides the "this page cannot be displayed" message I've been getting, I'm also getting a "server not found" message. After getting those messages on an otherwise blank page, once I refresh it, it usually displays the proper site

 

I don't know why the sites won't open properly the first time, but I'm getting those messages all the time now. Any thoughts?

 

I'm not seeing any of those weird ads anymore, which is great. Again, I do appreciate the help






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users