Jump to content

NSCodeRed

Honorary Members
  • Posts

    42
  • Joined

  • Last visited

Everything posted by NSCodeRed

  1. Unfortunately it didn't seem to help my problem but here is the link... http://paste.ubuntu.com/6587439
  2. Ok so my computer is up and running now, well mostly. It seems the only problem I currently have is booting windows. It will say the Boot Manager is missing, so I let it restart, press Esc till a boot menu appears, I'll change the BIOS to let the drive with windows installed boot first, save anx exit, and everything will see great until I go to turn my laptop on the next time and I'll have to repeat everything again. Any ideas!?
  3. Yes! I had an issue with windows having no drivers for anything until I found my Asus/Windows discs. Haven't been able to use them yet because work took me out of state for a bit but Im back and will have an update in 24 hours!
  4. Ok so what I did was take out my other 750gb drive and delete all the partitions on the remaining drive and started from there. Windows seems to be loading fine, I'll let you know when I have my os/laptop working and functional.
  5. I couldn't locate my discs or get any, so I downloaded the .iso file from windows and have been trying to load windows again (I have everything backed up on an external hdd) since it appears like my whole C:Drive was wiped but it is somehow failing to create a new system partition and I don't know how to view the setup logs for my information as to why...
  6. I've been looking and can't find it lol. I'll report back when I do...
  7. It wont even load into the advanced options menu at startup. All I can do is enter the Setup Utility...
  8. Ran it, Windows startup repair popped up and now windows won't boot from my C drive. Says select bootable drive/media...
  9. Here is the log... mbar-log-2013-11-24 (21-50-34).txt
  10. I got an error message from Microsoft when it tried to install an update (Error 8004FF86) Security Essentials still says I have a virus, and for some reason sometimes I can't gain internet access through my router even though I can on other devices. I haven't had any more BSOD or blue screens but Windows has shut down twice unexpectedly.
  11. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-11-2013 Ran by Nick (administrator) on NICK-PC on 21-11-2013 22:30:25 Running from C:\Users\Nick\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe () C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe (Seiko Epson Corporation) C:\Windows\system32\EscSvc64.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe () C:\ExpressGateUtil\VAWinService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (Microsoft Corporation) C:\Windows\syswow64\dllhost.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Sentelic Corporation) C:\Program Files\FSP\FspUip.exe (Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (ASUS) C:\Windows\AsScrPro.exe () C:\ExpressGateUtil\VAWinAgent.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (Windows ® Win 7 DDK provider) C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe (Intel® Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2012-01-31] (Realtek Semiconductor) HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [617120 2011-03-13] (Atheros Commnucations) HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-03-13] (Atheros Commnucations) HKLM\...\Run: [fspuip] - C:\Program Files\FSP\FspUip.exe [4285952 2011-06-19] (Sentelic Corporation) HKLM\...\Run: [intelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] () HKLM\...\Run: [THXCfg64] - C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64 HKLM\...\Run: [setwallpaper] - c:\programdata\SetWallpaper.cmd HKLM\...\Run: [MSC] - "C:\Program Files\Microsoft Security Client\mssecex.exe" -hide -runkey <===== ATTENTION (File name is altered) HKLM-x32\...\Run: [Nuance PDF Reader-reminder] - C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini [371 2013-11-21] () HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [731472 2011-02-23] (ecareme) HKLM-x32\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3058304 2011-08-23] (ASUS) HKLM-x32\...\Run: [THX TruStudio NB Settings] - C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909312 2011-03-16] (Creative Technology Ltd) HKLM-x32\...\Run: [updReg] - C:\Windows\Updreg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM-x32\...\Run: [VAWinAgent] - C:\ExpressGateUtil\VAWinAgent.exe [45448 2011-04-07] () HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUS) HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [ACMON] - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-06] (ASUS) HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-02] (ASUSTeK Computer Inc.) HKLM-x32\...\Run: [FLxHCIm64] - C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe [48128 2012-07-19] (Windows ® Win 7 DDK provider) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe [1058880 2013-03-28] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated) Startup: C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk ShortcutTarget: Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/?rlz=1W4CHBA_enUS551 StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - {7E560C20-D716-46B4-91AF-BF3C53806D98} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=714647&p={searchTerms} BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\EPSON Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION) BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\EPSON Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION) DPF: HKLM-x32 {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.5.1.0.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll" Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [327168] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll" Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Chrome: ======= CHR Extension: (Google Docs) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Reddit Enhancement Suite) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.1.1_0 CHR Extension: (Google Wallet) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0 CHR Extension: (Gmail) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ==================== Services (Whitelisted) ================= R2 AsusUacSvc; C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe [113840 2010-07-27] () R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-03-13] (Atheros) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation) S3 HawkesUpdater; C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe [8192 2003-04-18] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-08-12] (Microsoft Corporation) S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-08-12] (Microsoft Corporation) S4 RemoteAccess; C:\Windows\System32\svchost.exe [27136 2009-07-13] (Microsoft Corporation) R2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [91464 2011-03-25] () ==================== Drivers (Whitelisted) ==================== R3 AiCharger; C:\Windows\SysWow64\DRIVERS\AiCharger.sys [17152 2012-01-30] (ASUSTek Computer Inc.) R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS) R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [77040 2012-11-08] (Fresco Logic) R3 fspad_win764; C:\Windows\System32\DRIVERS\fspad_win764.sys [53760 2011-06-19] (Windows ® Win 7 DDK provider) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation) S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation) S3 catchme; \??\C:\ComboFix\catchme.sys [x] S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-11-21 22:30 - 2013-11-21 22:30 - 00013071 _____ C:\Users\Nick\Desktop\FRST.txt 2013-11-20 19:15 - 2013-11-21 22:28 - 00000000 ____D C:\FRST 2013-11-20 19:13 - 2013-11-20 19:14 - 01957964 _____ (Farbar) C:\Users\Nick\Desktop\FRST64.exe 2013-11-20 07:31 - 2013-11-20 07:31 - 00000000 ____D C:\TDSSKiller_Quarantine 2013-11-20 07:28 - 2013-11-20 07:28 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller (1).zip 2013-11-19 12:01 - 2013-11-19 12:01 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller.zip 2013-11-19 12:00 - 2013-11-19 12:00 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Nick\Desktop\tdsskiller.exe 2013-11-18 23:45 - 2013-11-18 23:45 - 00292936 _____ C:\Windows\Minidump\111813-20342-01.dmp 2013-11-18 20:01 - 2013-11-18 20:02 - 00292888 _____ C:\Windows\Minidump\111813-20638-01.dmp 2013-11-18 18:28 - 2013-11-18 18:29 - 00001274 _____ C:\DelFix.txt 2013-11-18 18:28 - 2013-11-18 18:28 - 00000000 ____D C:\Windows\ERUNT 2013-11-18 18:21 - 2013-11-18 18:21 - 00292904 _____ C:\Windows\Minidump\111813-17534-01.dmp 2013-11-18 18:18 - 2013-11-18 18:18 - 00292848 _____ C:\Windows\Minidump\111813-25318-01.dmp 2013-11-18 14:38 - 2013-11-18 14:49 - 00000000 ____D C:\uninstall.exe 2013-11-18 14:07 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2013-11-18 14:06 - 2013-11-18 14:06 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-18 14:05 - 2013-11-18 14:07 - 00007808 _____ C:\Windows\IE11_main.log 2013-11-18 13:56 - 2013-11-18 13:56 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall.exe 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall (1).exe 2013-11-18 13:53 - 2013-11-18 13:54 - 44335120 _____ (Microsoft Corporation) C:\Users\Nick\Downloads\IE10-Windows6.1-x64-en-us.exe 2013-11-17 02:22 - 2013-11-17 03:08 - 00017006 _____ C:\Users\Nick\Documents\Rap.odt 2013-11-17 00:28 - 2013-11-17 00:29 - 00292872 _____ C:\Windows\Minidump\111713-16161-01.dmp 2013-11-15 18:49 - 2013-11-15 18:49 - 00048651 _____ C:\Users\Nick\Downloads\[kickass.to]the.purge.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:18 - 2013-11-15 16:18 - 00066883 _____ C:\Users\Nick\Downloads\[kickass.to]white.house.down.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051170 _____ C:\Users\Nick\Downloads\[kickass.to]man.of.steel.2013.1080p.bluray.x264.sector7.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051089 _____ C:\Users\Nick\Downloads\[kickass.to]the.internship.2013.unrated.1080p.bluray.dts.x264.publichd.torrent 2013-11-14 10:51 - 2013-11-14 10:51 - 00292792 _____ C:\Windows\Minidump\111413-22323-01.dmp 2013-11-14 07:27 - 2013-11-14 07:27 - 00000000 ____D C:\Program Files (x86)\ESET 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default\AppData\Roaming\Adobe 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Adobe 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default\AppData\Roaming\ASUS WebStorage 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ASUS WebStorage 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Malwarebytes 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Malwarebytes 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default User\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default\AppData\Local\Google 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default User\AppData\Local\Google 2013-11-13 20:51 - 2013-11-13 20:51 - 00292848 _____ C:\Windows\Minidump\111313-34788-01.dmp 2013-11-13 20:11 - 2013-11-14 07:22 - 00000000 ____D C:\Windows\system32\MpEngineStore 2013-11-13 15:01 - 2013-11-13 15:01 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Malwarebytes 2013-11-13 15:00 - 2013-11-13 15:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Nick\Downloads\mbam-setup-1.75.0.1300.exe 2013-11-13 15:00 - 2013-11-13 15:00 - 00001111 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-11-13 15:00 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-11-13 06:59 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2013-11-13 06:59 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2013-11-13 06:59 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2013-11-13 06:59 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2013-11-13 06:59 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2013-11-13 06:59 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-11-13 06:59 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-11-13 06:59 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll 2013-11-13 06:59 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll 2013-11-13 06:59 - 2013-10-03 21:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2013-11-13 06:59 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2013-11-13 06:59 - 2013-10-03 20:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2013-11-13 06:59 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll 2013-11-13 06:59 - 2013-10-02 21:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2013-11-13 06:59 - 2013-10-02 21:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2013-11-13 06:59 - 2013-09-27 20:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-11-13 06:59 - 2013-09-24 21:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-11-13 06:59 - 2013-09-24 21:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2013-11-13 06:59 - 2013-09-24 21:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2013-11-13 06:59 - 2013-09-24 21:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2013-11-13 06:59 - 2013-09-24 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2013-11-13 06:59 - 2013-09-24 21:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-11-13 06:59 - 2013-09-24 21:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-11-13 06:59 - 2013-09-24 21:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2013-11-13 06:59 - 2013-09-24 20:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-11-13 06:59 - 2013-09-24 20:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-11-13 06:59 - 2013-09-24 20:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-11-13 06:59 - 2013-09-24 20:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2013-11-13 06:59 - 2013-09-24 20:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2013-11-13 06:59 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-11-11 18:12 - 2013-11-11 18:12 - 00292880 _____ C:\Windows\Minidump\111113-30638-01.dmp 2013-11-11 10:31 - 2013-11-12 10:19 - 00000000 ____D C:\Windows\erdnt 2013-11-11 09:56 - 2013-11-11 10:06 - 00004299 _____ C:\Users\Nick\Documents\ark.txt 2013-11-11 09:40 - 2013-11-11 09:40 - 00377856 _____ C:\Users\Nick\Downloads\s73rw66m.exe 2013-11-10 00:25 - 2013-11-10 00:25 - 00292848 _____ C:\Windows\Minidump\111013-33150-01.dmp 2013-11-09 02:12 - 2013-11-20 19:10 - 591356076 _____ C:\Windows\MEMORY.DMP 2013-11-09 02:12 - 2013-11-20 19:10 - 00000000 ____D C:\Windows\Minidump 2013-11-09 02:12 - 2013-11-09 02:13 - 00292896 _____ C:\Windows\Minidump\110913-46316-01.dmp 2013-11-08 11:53 - 2013-11-13 16:15 - 00000000 ____D C:\Users\Nick\AppData\Local\Bgtion 2013-10-31 06:05 - 2013-10-31 06:05 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Guild Wars 2 ==================== One Month Modified Files and Folders ======= 2013-11-21 22:30 - 2013-11-21 22:30 - 00013071 _____ C:\Users\Nick\Desktop\FRST.txt 2013-11-21 22:28 - 2013-11-20 19:15 - 00000000 ____D C:\FRST 2013-11-21 22:22 - 2011-08-23 22:37 - 01252653 _____ C:\Windows\WindowsUpdate.log 2013-11-21 22:18 - 2009-07-13 23:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-11-21 22:18 - 2009-07-13 23:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-11-21 22:16 - 2009-07-14 00:13 - 00742524 _____ C:\Windows\system32\PerfStringBackup.INI 2013-11-21 22:13 - 2012-02-14 05:15 - 00000000 ____D C:\Users\Nick\Documents\Bluetooth Folder 2013-11-21 22:12 - 2013-09-15 16:54 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-11-21 22:12 - 2012-03-29 01:45 - 00000376 _____ C:\Users\Nick\AppData\Roaming\sp_data.sys 2013-11-21 22:10 - 2013-09-04 20:13 - 00013691 _____ C:\Windows\setupact.log 2013-11-21 22:10 - 2012-05-16 21:18 - 00000000 ____D C:\ProgramData\NVIDIA 2013-11-21 22:10 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-11-20 19:21 - 2012-02-18 01:48 - 00002113 _____ C:\Windows\epplauncher.mif 2013-11-20 19:14 - 2013-11-20 19:13 - 01957964 _____ (Farbar) C:\Users\Nick\Desktop\FRST64.exe 2013-11-20 19:10 - 2013-11-09 02:12 - 591356076 _____ C:\Windows\MEMORY.DMP 2013-11-20 19:10 - 2013-11-09 02:12 - 00000000 ____D C:\Windows\Minidump 2013-11-20 12:05 - 2013-09-15 16:54 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-11-20 12:03 - 2013-10-04 01:03 - 00000911 _____ C:\Windows\Tasks\EPSON XP-310 Series Update {000F3676-290B-4C0B-BEB2-A06E917FD94D}.job 2013-11-20 12:03 - 2013-10-04 01:03 - 00000725 _____ C:\Windows\Tasks\EPSON XP-310 Series Invitation {000F3676-290B-4C0B-BEB2-A06E917FD94D}.job 2013-11-20 09:15 - 2009-07-14 00:08 - 00032584 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-11-20 08:40 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache 2013-11-20 07:31 - 2013-11-20 07:31 - 00000000 ____D C:\TDSSKiller_Quarantine 2013-11-20 07:28 - 2013-11-20 07:28 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller (1).zip 2013-11-19 12:01 - 2013-11-19 12:01 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller.zip 2013-11-19 12:00 - 2013-11-19 12:00 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Nick\Desktop\tdsskiller.exe 2013-11-19 11:54 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF 2013-11-19 05:21 - 2012-02-18 01:51 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-11-18 23:45 - 2013-11-18 23:45 - 00292936 _____ C:\Windows\Minidump\111813-20342-01.dmp 2013-11-18 20:02 - 2013-11-18 20:01 - 00292888 _____ C:\Windows\Minidump\111813-20638-01.dmp 2013-11-18 18:29 - 2013-11-18 18:28 - 00001274 _____ C:\DelFix.txt 2013-11-18 18:28 - 2013-11-18 18:28 - 00000000 ____D C:\Windows\ERUNT 2013-11-18 18:21 - 2013-11-18 18:21 - 00292904 _____ C:\Windows\Minidump\111813-17534-01.dmp 2013-11-18 18:18 - 2013-11-18 18:18 - 00292848 _____ C:\Windows\Minidump\111813-25318-01.dmp 2013-11-18 14:49 - 2013-11-18 14:38 - 00000000 ____D C:\uninstall.exe 2013-11-18 14:45 - 2009-07-13 21:34 - 00000215 _____ C:\Windows\system.ini 2013-11-18 14:43 - 2011-04-01 23:17 - 00477680 _____ C:\Windows\PFRO.log 2013-11-18 14:10 - 2012-02-14 05:14 - 00001415 _____ C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-18 14:08 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-11-18 14:07 - 2013-11-18 14:05 - 00007808 _____ C:\Windows\IE11_main.log 2013-11-18 14:06 - 2013-11-18 14:06 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-18 14:04 - 2011-08-23 22:45 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-18 14:03 - 2011-08-23 22:44 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-11-18 14:00 - 2012-03-04 20:12 - 00000000 ____D C:\Users\Nick\AppData\Local\Adobe 2013-11-18 13:59 - 2012-03-04 20:12 - 00000000 ____D C:\ProgramData\Adobe 2013-11-18 13:59 - 2012-03-04 20:12 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-11-18 13:56 - 2013-11-18 13:56 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-11-18 13:56 - 2012-02-17 04:54 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2013-11-18 13:56 - 2012-02-17 04:54 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2013-11-18 13:56 - 2012-02-17 04:54 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2013-11-18 13:56 - 2012-02-17 04:54 - 00000000 ____D C:\Program Files (x86)\Java 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall.exe 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall (1).exe 2013-11-18 13:54 - 2013-11-18 13:53 - 44335120 _____ (Microsoft Corporation) C:\Users\Nick\Downloads\IE10-Windows6.1-x64-en-us.exe 2013-11-18 13:54 - 2013-05-24 17:58 - 00008515 _____ C:\Windows\IE10_main.log 2013-11-17 20:17 - 2011-08-23 22:54 - 00045056 _____ C:\Windows\SysWOW64\acovcnt.exe 2013-11-17 03:08 - 2013-11-17 02:22 - 00017006 _____ C:\Users\Nick\Documents\Rap.odt 2013-11-17 01:34 - 2012-02-16 21:29 - 00000000 ____D C:\Users\Nick\AppData\Roaming\SoftGrid Client 2013-11-17 01:13 - 2013-08-28 13:03 - 00000000 ____D C:\Users\Nick\AppData\Roaming\vlc 2013-11-17 00:29 - 2013-11-17 00:28 - 00292872 _____ C:\Windows\Minidump\111713-16161-01.dmp 2013-11-17 00:26 - 2012-04-27 20:35 - 00000000 ____D C:\Users\Nick\AppData\Roaming\uTorrent 2013-11-15 18:49 - 2013-11-15 18:49 - 00048651 _____ C:\Users\Nick\Downloads\[kickass.to]the.purge.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:33 - 2012-10-22 17:00 - 00000000 ____D C:\Program Files (x86)\Guild Wars 2 2013-11-15 16:18 - 2013-11-15 16:18 - 00066883 _____ C:\Users\Nick\Downloads\[kickass.to]white.house.down.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051170 _____ C:\Users\Nick\Downloads\[kickass.to]man.of.steel.2013.1080p.bluray.x264.sector7.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051089 _____ C:\Users\Nick\Downloads\[kickass.to]the.internship.2013.unrated.1080p.bluray.dts.x264.publichd.torrent 2013-11-14 10:51 - 2013-11-14 10:51 - 00292792 _____ C:\Windows\Minidump\111413-22323-01.dmp 2013-11-14 07:27 - 2013-11-14 07:27 - 00000000 ____D C:\Program Files (x86)\ESET 2013-11-14 07:23 - 2009-07-14 00:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2013-11-14 07:22 - 2013-11-13 20:11 - 00000000 ____D C:\Windows\system32\MpEngineStore 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default\AppData\Roaming\Adobe 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Adobe 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default\AppData\Roaming\ASUS WebStorage 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ASUS WebStorage 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Malwarebytes 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Malwarebytes 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default User\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default\AppData\Local\Google 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default User\AppData\Local\Google 2013-11-13 20:51 - 2013-11-13 20:51 - 00292848 _____ C:\Windows\Minidump\111313-34788-01.dmp 2013-11-13 20:00 - 2013-08-12 21:32 - 00000000 ____D C:\Windows\system32\MRT 2013-11-13 20:00 - 2012-02-18 01:47 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-11-13 16:15 - 2013-11-08 11:53 - 00000000 ____D C:\Users\Nick\AppData\Local\Bgtion 2013-11-13 15:01 - 2013-11-13 15:01 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Malwarebytes 2013-11-13 15:01 - 2012-03-14 13:48 - 00000000 ____D C:\Users\Nick\AppData\Local\CrashDumps 2013-11-13 15:00 - 2013-11-13 15:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Nick\Downloads\mbam-setup-1.75.0.1300.exe 2013-11-13 15:00 - 2013-11-13 15:00 - 00001111 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-11-12 10:20 - 2009-07-13 21:34 - 67895296 _____ C:\Windows\system32\config\software.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 24117248 _____ C:\Windows\system32\config\system.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 01572864 _____ C:\Windows\system32\config\default.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 00262144 _____ C:\Windows\system32\config\security.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 00262144 _____ C:\Windows\system32\config\sam.bak 2013-11-12 10:19 - 2013-11-11 10:31 - 00000000 ____D C:\Windows\erdnt 2013-11-11 18:32 - 2012-02-14 05:16 - 00000000 ____D C:\Users\Nick\AppData\Local\Google 2013-11-11 18:32 - 2011-04-01 23:36 - 00000000 ____D C:\Program Files (x86)\Google 2013-11-11 18:12 - 2013-11-11 18:12 - 00292880 _____ C:\Windows\Minidump\111113-30638-01.dmp 2013-11-11 10:51 - 2009-07-13 22:20 - 00000000 __RHD C:\Users\Default 2013-11-11 10:06 - 2013-11-11 09:56 - 00004299 _____ C:\Users\Nick\Documents\ark.txt 2013-11-11 09:40 - 2013-11-11 09:40 - 00377856 _____ C:\Users\Nick\Downloads\s73rw66m.exe 2013-11-11 02:51 - 2011-08-23 22:57 - 00000000 ____D C:\ExpressGateUtil 2013-11-11 02:51 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\security 2013-11-11 02:51 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Help 2013-11-11 02:50 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\registration 2013-11-10 23:53 - 2012-02-14 05:13 - 00000000 ____D C:\Users\Nick 2013-11-10 00:25 - 2013-11-10 00:25 - 00292848 _____ C:\Windows\Minidump\111013-33150-01.dmp 2013-11-09 02:13 - 2013-11-09 02:12 - 00292896 _____ C:\Windows\Minidump\110913-46316-01.dmp 2013-11-08 22:43 - 2009-07-14 02:44 - 00000000 ___RD C:\Users\Public\Recorded TV 2013-11-08 11:53 - 2012-02-14 05:13 - 00000000 ____D C:\Users\Nick\AppData\Local\VirtualStore 2013-11-04 15:45 - 2013-08-28 10:47 - 00000794 _____ C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2013-10-31 06:05 - 2013-10-31 06:05 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Guild Wars 2 2013-10-31 06:05 - 2012-10-22 16:58 - 00000000 ____D C:\Users\Nick\Documents\Guild Wars 2 ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-11-20 08:32 ==================== End Of Log ============================
  12. Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-11-2013 Ran by Nick at 2013-11-21 22:29:40 Run:1 Running from C:\Users\Nick\Desktop Boot Mode: Normal ============================================== Content of fixlist: ***************** C:\Users\Nick\AppData\Local\Google\Desktop\Install C:\Program Files (x86)\Google\Desktop\Install TDL4: custom:26000022 <===== ATTENTION! CMD: bootrec /fixmbr CMD: bootrec /fixboot ***************** C:\Users\Nick\AppData\Local\Google\Desktop\Install => Moved successfully. C:\Program Files (x86)\Google\Desktop\Install => Moved successfully. The operation completed successfully. The operation completed successfully. ========= bootrec /fixmbr ========= 'bootrec' is not recognized as an internal or external command, operable program or batch file. ========= End of CMD: ========= ========= bootrec /fixboot ========= 'bootrec' is not recognized as an internal or external command, operable program or batch file. ========= End of CMD: ========= ==== End of Fixlog ====
  13. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2013 Ran by Nick at 2013-11-20 19:16:30 Running from C:\Users\Nick\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Microsoft Security Essentials (Disabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Microsoft Security Essentials (Disabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} ==================== Installed Programs ====================== µTorrent (HKCU Version: 3.3.2.30180) Adobe AIR (x32 Version: 2.7.0.19480) Adobe Download Assistant (x32 Version: 1.2.3) Adobe Flash Player 10 Plugin (x32 Version: 10.0.32.18) Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117) Adobe Reader XI (11.0.04) (x32 Version: 11.0.04) Amazon Cloud Drive (x32 Version: 0.3.28.0) Amazon MP3 Downloader 1.0.17 (x32 Version: 1.0.17) ASUS AI Recovery (x32 Version: 1.0.23) ASUS Live Update (x32 Version: 3.1.2) ASUS Power4Gear Hybrid (Version: 1.2.0) ASUS Splendid Video Enhancement Technology (x32 Version: 1.02.0040) ASUS USB Charger Plus (x32 Version: 2.0.8) ASUS Virtual Camera (x32 Version: 1.0.25) ASUS WebStorage (x32 Version: 3.0.84.161) AsusScr_G74 Series_ENG (x32 Version: 1.0.0001) AsusVibe2.0 (x32 Version: 2.0.4.617) Atheros Client Installation Program (x32 Version: 7.0) ATK Package (x32 Version: 1.0.0015) Batman: Arkham Asylum Game of the Year Edition (x32 Version: 1.0.0.0) Bluetooth Win7 Suite (64) (Version: 7.2.0.65) Control ActiveX de Windows Live Mesh para conexiones remotas (x32 Version: 15.4.5722.2) Contrôle ActiveX Windows Live Mesh pour connexions à distance (x32 Version: 15.4.5722.2) Controlo ActiveX do Windows Live Mesh para Ligações Remotas (x32 Version: 15.4.5722.2) Crysis 2 (x32 Version: 1.0.0.0) D3DX10 (x32 Version: 15.4.2368.0902) DirectX 9 Runtime (x32 Version: 1.00.0000) EA Installer (x32 Version: 2.2.0.62) EA Shared Game Component: Activation (x32 Version: 2.2.0) EA Shared Game Component: Activation (x32 Version: 2.2.0.62) EPSON Connect version 1.0 (x32 Version: 1.0) Epson Customer Participation (Version: 1.6.3.0) Epson Event Manager (x32 Version: 3.10.0017) Epson E-Web Print (x32 Version: 1.17.0000) EPSON Scan (x32) EPSON XP-310 Series Printer Uninstall EpsonNet Print (x32 Version: 2.6.0) ESET Online Scanner v3 (x32) ExpressGateCloud (x32 Version: 2.6.27.160) Finger Sensing Pad Driver (Version: 9.1.3.5) Fresco Logic USB3.0 Host Controller (Version: 3.5.73.0) Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922) Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922) Galerie de photos Windows Live (x32 Version: 15.4.3502.0922) GameFast.exe (Version: 1.0.0.1) Google Chrome (x32 Version: 31.0.1650.57) Google Update Helper (x32 Version: 1.3.21.165) Guild Wars 2 (x32) Hawkes Update Service Manager (x32 Version: 1.0.7) Impulse® (x32 Version: 3.30) Intel® Control Center (x32 Version: 1.2.1.1007) Intel® Management Engine Components (x32 Version: 7.0.0.1118) Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0) Java 7 Update 17 (64-bit) (Version: 7.0.170) Java 7 Update 45 (x32 Version: 7.0.450) Java Auto Updater (x32 Version: 2.1.9.8) Java 6 Update 31 (x32 Version: 6.0.310) Junk Mail filter update (x32 Version: 15.4.3502.0922) Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300) Mass Effect (x32 Version: 1.00) Mass Effect (x32) Mass Effect 2 (x32 Version: 1.02) Mass Effect 2 (x32) Mass Effect 3 - N7 Bonus Items (x32) Mass Effect™ 3 (x32 Version: 1.0.0.0) Mesh Runtime (x32 Version: 15.4.5722.2) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0) Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0) Microsoft Office 2010 (x32 Version: 14.0.4763.1000) Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000) Microsoft Office Click-to-Run 2010 (x32 Version: 14.0.4763.1000) Microsoft Security Client (Version: 4.3.0219.0) Microsoft Security Essentials (Version: 4.3.219.0) Microsoft Silverlight (Version: 5.1.20913.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) Nexon Game Manager (x32) Nuance PDF Reader (x32 Version: 6.00.0041) NVIDIA 3D Vision Driver 311.44 (Version: 311.44) NVIDIA Control Panel 311.44 (Version: 311.44) NVIDIA Graphics Driver 311.44 (Version: 311.44) NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0) NVIDIA Install Application (Version: 2.1002.109.706) NVIDIA PhysX (x32 Version: 9.12.1031) NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1144) NVIDIA Update 1.11.3 (Version: 1.11.3) NVIDIA Update Components (Version: 1.11.3) OpenOffice 4.0.1 (x32 Version: 4.01.9714) Origin (x32 Version: 8.5.0.4554) Pando Media Booster (x32 Version: 2.6.0.7) Picasa 3 (x32 Version: 3.9) Prealgebra (Fall 2012 Student) (x32 Version: 4.5.4) Realtek Ethernet Controller Driver (x32 Version: 7.44.421.2011) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6564) Realtek USB 2.0 Reader Driver (x32 Version: 6.1.7600.10001) Rotation Desktop for G Series.exe (Version: 1.0.0.9) SAMSUNG Mobile Modem Driver Set Samsung Mobile phone USB driver Drive Software SAMSUNG Mobile USB Modem 1.0 Software SAMSUNG Mobile USB Modem Software Skype™ 6.6 (x32 Version: 6.6.106) Software Updater (x32 Version: 4.1.5) syncables desktop SE (x32 Version: 5.5.746.11492) System Requirements Lab CYRI (x32 Version: 4.5.1.0) TeamSpeak 3 Client (x32 Version: 3.0.9.2) THX TruStudio (x32 Version: 1.03.01) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3) VLC media player 2.0.8 (x32 Version: 2.0.8) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3508.1109) Windows Live Family Safety (Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4225.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3508.1109) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2) Windows Live Messenger (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) Windows Live 影像中心 (x32 Version: 15.4.3502.0922) Windows Live 照片库 (x32 Version: 15.4.3502.0922) Windows Live 程式集 (x32 Version: 15.4.3502.0922) Windows Live 软件包 (x32 Version: 15.4.3502.0922) WinFlash (x32 Version: 2.32.0) WinX HD Video Converter Deluxe 3.12.2 (x32) Wireless Console 3 (x32 Version: 3.0.27) 用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文) (x32 Version: 15.4.5722.2) 適用遠端連線的 Windows Live Mesh ActiveX 控制項 (x32 Version: 15.4.5722.2) ==================== Restore Points ========================= ==================== Hosts content: ========================== 2009-07-13 21:34 - 2013-11-18 14:44 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {140D1DF4-5576-44D7-AC21-0CABF86ADFA8} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation) Task: {1585FC1A-BD64-4BEC-9E7C-C5CA83B828ED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-15] (Google Inc.) Task: {2772FDA6-0C09-4795-A44A-A7DC904078DC} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-01-09] (ASUSTeK Computer Inc.) Task: {48DB270B-3652-44FA-981B-751E63D42587} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {4FAB41C2-964A-4CF4-8238-E828B69DE8A7} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-01-30] (ASUSTek Computer Inc.) Task: {B6155FEB-D3EB-43AC-B55F-7E1356E49566} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-12-22] (ASUSTek Computer Inc.) Task: {C836E5E7-67CA-414B-A0C0-A0AB1BFCBE7C} - System32\Tasks\ASUS Patch 10430001 => C:\Windows\AsPatch10430001.exe Task: {CB837323-A777-4AEC-864C-F900F8817D04} - System32\Tasks\EPSON XP-310 Series Invitation {000F3676-290B-4C0B-BEB2-A06E917FD94D} => C:\Windows\System32\spool\drivers\x64\3\E_ITSLBE.EXE [2013-02-28] (SEIKO EPSON CORPORATION) Task: {D805026E-7374-41B3-8662-C6AE90FC5647} - System32\Tasks\EPSON XP-310 Series Update {000F3676-290B-4C0B-BEB2-A06E917FD94D} => C:\Windows\System32\spool\drivers\x64\3\E_ITSLBE.EXE [2013-02-28] (SEIKO EPSON CORPORATION) Task: {F42A633A-1CE7-44EB-B3BA-D3BB3EAC4AC3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-15] (Google Inc.) Task: {F552F1E4-EC4B-4468-BB35-54B8D763171B} - System32\Tasks\ASUS P4G => C:\Program Files\Asus\P4G\BatteryLife.exe [2012-01-04] (ASUS) Task: C:\Windows\Tasks\EPSON XP-310 Series Invitation {000F3676-290B-4C0B-BEB2-A06E917FD94D}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLBE.EXE Task: C:\Windows\Tasks\EPSON XP-310 Series Update {000F3676-290B-4C0B-BEB2-A06E917FD94D}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLBE.EXE Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2010-07-14 15:11 - 2010-07-14 15:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll 2011-07-19 21:13 - 2011-06-19 01:03 - 00044032 _____ () C:\Program Files\FSP\KbdHook.dll 2011-07-19 21:13 - 2011-06-19 01:03 - 00072704 _____ () C:\Program Files\FSP\FspLib.dll 2011-08-23 22:55 - 2010-06-08 15:23 - 00236544 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL 2011-03-25 19:55 - 2011-03-25 19:55 - 00157000 _____ () C:\ExpressGateUtil\libexpat.dll 2011-03-25 19:55 - 2011-03-25 19:55 - 00061768 _____ () C:\ExpressGateUtil\netProfileDatabase.DLL 2012-02-06 18:32 - 2012-02-06 18:32 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2012-01-31 08:25 - 2012-01-31 08:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll 2013-11-15 15:24 - 2013-11-14 06:28 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libglesv2.dll 2013-11-15 15:24 - 2013-11-14 06:28 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libegl.dll 2013-11-15 15:24 - 2013-11-14 06:29 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll 2013-11-15 15:24 - 2013-11-14 06:29 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll 2013-11-15 15:24 - 2013-11-14 06:28 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (11/20/2013 10:45:00 AM) (Source: Microsoft Security Client Setup) (User: NT AUTHORITY) Description: HRESULT:0x8004FF86 Description:Cannot complete the Security Essentials Upgrade. An error has prevented the Security Essentials Upgrade Wizard from continuing. The previous version of Security Essentials was restored. Error code:0x8004FF86. Error: (11/20/2013 10:44:58 AM) (Source: MsiInstaller) (User: NT AUTHORITY) Description: Product: Microsoft Security Client -- A reboot is needed to clean an active threat. Setup cannot continue until the threat has been cleaned. Error: (11/20/2013 08:58:43 AM) (Source: Microsoft Security Client Setup) (User: NT AUTHORITY) Description: HRESULT:0x8004FF86 Description:Cannot complete the Security Essentials Upgrade. An error has prevented the Security Essentials Upgrade Wizard from continuing. The previous version of Security Essentials was restored. Error code:0x8004FF86. Error: (11/20/2013 08:58:43 AM) (Source: MsiInstaller) (User: NT AUTHORITY) Description: Product: Microsoft Security Client -- A reboot is needed to clean an active threat. Setup cannot continue until the threat has been cleaned. Error: (11/20/2013 08:33:34 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (11/20/2013 08:33:16 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (11/18/2013 06:29:20 PM) (Source: VSS) (User: ) Description: Volume Shadow Copy Service error: Volume/disk not connected or not found. Error context: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy17 - 00000000000000E8,0x00560038,00000000005ACFE0,0,00000000005ABFD0,4096,[0]). Operation: Processing PostFinalCommitSnapshots Context: Execution Context: System Provider Error: (11/18/2013 03:58:54 PM) (Source: Application Hang) (User: ) Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1a44 Start Time: 01cee49b3b0c8c88 Termination Time: 2 Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe Report Id: 37b63439-5094-11e3-bb76-742f68846d15 Error: (11/18/2013 02:36:58 PM) (Source: VSS) (User: ) Description: Volume Shadow Copy Service error: Volume/disk not connected or not found. Error context: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy19 - 000000000000015C,0x00560038,000000000041CFE0,0,000000000041BFD0,4096,[0]). Operation: Processing PostFinalCommitSnapshots Context: Execution Context: System Provider Error: (11/18/2013 02:32:04 PM) (Source: VSS) (User: ) Description: Volume Shadow Copy Service error: Volume/disk not connected or not found. Error context: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy18 - 00000000000001BC,0x00560038,000000000041CFE0,0,000000000041BFD0,4096,[0]). Operation: Processing PostFinalCommitSnapshots Context: Execution Context: System Provider System errors: ============= Error: (11/20/2013 07:12:36 PM) (Source: Service Control Manager) (User: ) Description: The NVIDIA Update Service Daemon service failed to start due to the following error: %%1069 Error: (11/20/2013 07:12:36 PM) (Source: Service Control Manager) (User: ) Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: %%1330 To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). Error: (11/20/2013 07:10:19 PM) (Source: BugCheck) (User: ) Description: 0x0000001e (0xffffffffc0000005, 0xfffff800034bd666, 0x0000000000000000, 0xffffffffffffffff)C:\Windows\MEMORY.DMP Error: (11/20/2013 07:10:19 PM) (Source: BugCheck) (User: ) Description: Error: (11/20/2013 07:10:13 PM) (Source: EventLog) (User: ) Description: The previous system shutdown at 12:14:47 PM on ‎11/‎20/‎2013 was unexpected. Error: (11/20/2013 11:41:22 AM) (Source: Service Control Manager) (User: ) Description: The NVIDIA Update Service Daemon service failed to start due to the following error: %%1069 Error: (11/20/2013 11:41:22 AM) (Source: Service Control Manager) (User: ) Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: %%1330 To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). Error: (11/20/2013 10:45:47 AM) (Source: volsnap) (User: ) Description: The shadow copies of volume C: were aborted because of an IO failure on volume C:. Error: (11/20/2013 10:45:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Security Essentials - 4.4.304.0 (KB2902885). Error: (11/20/2013 09:42:49 AM) (Source: Service Control Manager) (User: ) Description: The NVIDIA Update Service Daemon service failed to start due to the following error: %%1069 Microsoft Office Sessions: ========================= Error: (11/20/2013 10:45:00 AM) (Source: Microsoft Security Client Setup)(User: NT AUTHORITY) Description: HRESULT:0x8004FF86 Description:Cannot complete the Security Essentials Upgrade. An error has prevented the Security Essentials Upgrade Wizard from continuing. The previous version of Security Essentials was restored. Error code:0x8004FF86. Error: (11/20/2013 10:44:58 AM) (Source: MsiInstaller)(User: NT AUTHORITY) Description: Product: Microsoft Security Client -- A reboot is needed to clean an active threat. Setup cannot continue until the threat has been cleaned.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (11/20/2013 08:58:43 AM) (Source: Microsoft Security Client Setup)(User: NT AUTHORITY) Description: HRESULT:0x8004FF86 Description:Cannot complete the Security Essentials Upgrade. An error has prevented the Security Essentials Upgrade Wizard from continuing. The previous version of Security Essentials was restored. Error code:0x8004FF86. Error: (11/20/2013 08:58:43 AM) (Source: MsiInstaller)(User: NT AUTHORITY) Description: Product: Microsoft Security Client -- A reboot is needed to clean an active threat. Setup cannot continue until the threat has been cleaned.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (11/20/2013 08:33:34 AM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (11/20/2013 08:33:16 AM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNAVI.EXE Error: (11/18/2013 06:29:20 PM) (Source: VSS)(User: ) Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy17 - 00000000000000E8,0x00560038,00000000005ACFE0,0,00000000005ABFD0,4096,[0]) Operation: Processing PostFinalCommitSnapshots Context: Execution Context: System Provider Error: (11/18/2013 03:58:54 PM) (Source: Application Hang)(User: ) Description: mbam.exe1.75.0.11a4401cee49b3b0c8c882C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe37b63439-5094-11e3-bb76-742f68846d15 Error: (11/18/2013 02:36:58 PM) (Source: VSS)(User: ) Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy19 - 000000000000015C,0x00560038,000000000041CFE0,0,000000000041BFD0,4096,[0]) Operation: Processing PostFinalCommitSnapshots Context: Execution Context: System Provider Error: (11/18/2013 02:32:04 PM) (Source: VSS)(User: ) Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy18 - 00000000000001BC,0x00560038,000000000041CFE0,0,000000000041BFD0,4096,[0]) Operation: Processing PostFinalCommitSnapshots Context: Execution Context: System Provider CodeIntegrity Errors: =================================== Date: 2013-11-13 07:10:34.692 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-13 07:10:34.646 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-13 07:10:34.599 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-13 07:10:34.552 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-12 10:18:35.939 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-12 10:18:35.892 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-12 10:18:35.830 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-12 10:18:35.783 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-11 10:41:48.742 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-11 10:41:48.682 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 26% Total physical RAM: 12265.16 MB Available physical RAM: 9068.29 MB Total Pagefile: 24528.5 MB Available Pagefile: 20962.62 MB Total Virtual: 8192 MB Available Virtual: 8191.8 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:279.45 GB) (Free:100.35 GB) NTFS ==>[system with boot components (obtained from reading drive)] ATTENTION: Malware custom entry on BCD on drive c: detected. Drive d: (DATA) (Fixed) (Total:394.18 GB) (Free:63.51 GB) NTFS Drive e: (SDATA1) (Fixed) (Total:349.3 GB) (Free:349.21 GB) NTFS Drive f: (SDATA2) (Fixed) (Total:349.33 GB) (Free:44.14 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: AA9693FE) Partition 1: (Not Active) - (Size=25 GB) - (Type=1C) Partition 2: (Active) - (Size=279 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=394 GB) - (Type=OF Extended) ======================================================== Disk: 1 (Size: 699 GB) (Disk ID: BBC58B91) Partition 1: (Not Active) - (Size=349 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=349 GB) - (Type=07 NTFS) ==================== End Of Log ============================
  14. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-11-2013 Ran by Nick (administrator) on NICK-PC on 20-11-2013 19:15:29 Running from C:\Users\Nick\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe () C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe (Seiko Epson Corporation) C:\Windows\system32\EscSvc64.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe () C:\ExpressGateUtil\VAWinService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (Microsoft Corporation) C:\Windows\syswow64\dllhost.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Sentelic Corporation) C:\Program Files\FSP\FspUip.exe (Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (ASUS) C:\Windows\AsScrPro.exe () C:\ExpressGateUtil\VAWinAgent.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (Windows ® Win 7 DDK provider) C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe (Intel® Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2012-01-31] (Realtek Semiconductor) HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [617120 2011-03-13] (Atheros Commnucations) HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-03-13] (Atheros Commnucations) HKLM\...\Run: [fspuip] - C:\Program Files\FSP\FspUip.exe [4285952 2011-06-19] (Sentelic Corporation) HKLM\...\Run: [intelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] () HKLM\...\Run: [THXCfg64] - C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64 HKLM\...\Run: [setwallpaper] - c:\programdata\SetWallpaper.cmd HKLM\...\Run: [MSC] - "C:\Program Files\Microsoft Security Client\mssecex.exe" -hide -runkey <===== ATTENTION (File name is altered) HKLM-x32\...\Run: [Nuance PDF Reader-reminder] - C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini [371 2013-11-20] () HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [731472 2011-02-23] (ecareme) HKLM-x32\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3058304 2011-08-23] (ASUS) HKLM-x32\...\Run: [THX TruStudio NB Settings] - C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909312 2011-03-16] (Creative Technology Ltd) HKLM-x32\...\Run: [updReg] - C:\Windows\Updreg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM-x32\...\Run: [VAWinAgent] - C:\ExpressGateUtil\VAWinAgent.exe [45448 2011-04-07] () HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUS) HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [ACMON] - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-06] (ASUS) HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-02] (ASUSTeK Computer Inc.) HKLM-x32\...\Run: [FLxHCIm64] - C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe [48128 2012-07-19] (Windows ® Win 7 DDK provider) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe [1058880 2013-03-28] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated) Startup: C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk ShortcutTarget: Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/?rlz=1W4CHBA_enUS551 StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - {7E560C20-D716-46B4-91AF-BF3C53806D98} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=714647&p={searchTerms} BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\EPSON Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION) BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\EPSON Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION) DPF: HKLM-x32 {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.5.1.0.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll" Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [327168] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll" Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Chrome: ======= CHR DefaultSearchURL: (Yahoo!) - http://search.yahoo.com/search?ei=utf-8&fr=chr-greentree_gc&type=714647&ilc=12&p={searchTerms} CHR DefaultSuggestURL: (Yahoo!) - http://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms} CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll () CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll No File CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101772.dll (Amazon.com, Inc.) CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Java Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation) CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon) CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File CHR Extension: (Google Docs) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Reddit Enhancement Suite) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.1.1_0 CHR Extension: (Google Wallet) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0 CHR Extension: (Gmail) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ==================== Services (Whitelisted) ================= R2 AsusUacSvc; C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe [113840 2010-07-27] () R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-03-13] (Atheros) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation) S3 HawkesUpdater; C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe [8192 2003-04-18] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-08-12] (Microsoft Corporation) S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-08-12] (Microsoft Corporation) S4 RemoteAccess; C:\Windows\System32\svchost.exe [27136 2009-07-13] (Microsoft Corporation) R2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [91464 2011-03-25] () ==================== Drivers (Whitelisted) ==================== R3 AiCharger; C:\Windows\SysWow64\DRIVERS\AiCharger.sys [17152 2012-01-30] (ASUSTek Computer Inc.) R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS) R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [77040 2012-11-08] (Fresco Logic) R3 fspad_win764; C:\Windows\System32\DRIVERS\fspad_win764.sys [53760 2011-06-19] (Windows ® Win 7 DDK provider) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation) R1 MpKsl7c95ebaf; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40340AB0-88E9-46E0-A1AE-D831F36FE462}\MpKsl7c95ebaf.sys [46768 2013-11-20] (Microsoft Corporation) R1 MpKsl868a7c09; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40340AB0-88E9-46E0-A1AE-D831F36FE462}\MpKsl868a7c09.sys [46768 2013-11-20] (Microsoft Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation) S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation) S3 catchme; \??\C:\ComboFix\catchme.sys [x] S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-11-20 19:15 - 2013-11-20 19:16 - 00016197 _____ C:\Users\Nick\Desktop\FRST.txt 2013-11-20 19:15 - 2013-11-20 19:15 - 00000000 ____D C:\FRST 2013-11-20 19:13 - 2013-11-20 19:14 - 01957964 _____ (Farbar) C:\Users\Nick\Desktop\FRST64.exe 2013-11-20 19:11 - 2013-11-20 19:11 - 00000000 ___RD C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-11-20 07:31 - 2013-11-20 07:31 - 00000000 ____D C:\TDSSKiller_Quarantine 2013-11-20 07:28 - 2013-11-20 07:28 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller (1).zip 2013-11-19 12:01 - 2013-11-19 12:01 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller.zip 2013-11-19 12:00 - 2013-11-19 12:00 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Nick\Desktop\tdsskiller.exe 2013-11-18 23:45 - 2013-11-18 23:45 - 00292936 _____ C:\Windows\Minidump\111813-20342-01.dmp 2013-11-18 20:01 - 2013-11-18 20:02 - 00292888 _____ C:\Windows\Minidump\111813-20638-01.dmp 2013-11-18 18:28 - 2013-11-18 18:29 - 00001274 _____ C:\DelFix.txt 2013-11-18 18:28 - 2013-11-18 18:28 - 00000000 ____D C:\Windows\ERUNT 2013-11-18 18:21 - 2013-11-18 18:21 - 00292904 _____ C:\Windows\Minidump\111813-17534-01.dmp 2013-11-18 18:18 - 2013-11-18 18:18 - 00292848 _____ C:\Windows\Minidump\111813-25318-01.dmp 2013-11-18 14:38 - 2013-11-18 14:49 - 00000000 ____D C:\uninstall.exe 2013-11-18 14:07 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2013-11-18 14:06 - 2013-11-18 14:06 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-18 14:05 - 2013-11-18 14:07 - 00007808 _____ C:\Windows\IE11_main.log 2013-11-18 13:56 - 2013-11-18 13:56 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall.exe 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall (1).exe 2013-11-18 13:53 - 2013-11-18 13:54 - 44335120 _____ (Microsoft Corporation) C:\Users\Nick\Downloads\IE10-Windows6.1-x64-en-us.exe 2013-11-17 02:22 - 2013-11-17 03:08 - 00017006 _____ C:\Users\Nick\Documents\Rap.odt 2013-11-17 00:28 - 2013-11-17 00:29 - 00292872 _____ C:\Windows\Minidump\111713-16161-01.dmp 2013-11-15 18:49 - 2013-11-15 18:49 - 00048651 _____ C:\Users\Nick\Downloads\[kickass.to]the.purge.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:18 - 2013-11-15 16:18 - 00066883 _____ C:\Users\Nick\Downloads\[kickass.to]white.house.down.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051170 _____ C:\Users\Nick\Downloads\[kickass.to]man.of.steel.2013.1080p.bluray.x264.sector7.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051089 _____ C:\Users\Nick\Downloads\[kickass.to]the.internship.2013.unrated.1080p.bluray.dts.x264.publichd.torrent 2013-11-14 10:51 - 2013-11-14 10:51 - 00292792 _____ C:\Windows\Minidump\111413-22323-01.dmp 2013-11-14 07:27 - 2013-11-14 07:27 - 00000000 ____D C:\Program Files (x86)\ESET 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default\AppData\Roaming\Adobe 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Adobe 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default\AppData\Roaming\ASUS WebStorage 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ASUS WebStorage 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Malwarebytes 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Malwarebytes 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default User\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default\AppData\Local\Google 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default User\AppData\Local\Google 2013-11-13 20:51 - 2013-11-13 20:51 - 00292848 _____ C:\Windows\Minidump\111313-34788-01.dmp 2013-11-13 20:11 - 2013-11-14 07:22 - 00000000 ____D C:\Windows\system32\MpEngineStore 2013-11-13 15:01 - 2013-11-13 15:01 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Malwarebytes 2013-11-13 15:00 - 2013-11-13 15:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Nick\Downloads\mbam-setup-1.75.0.1300.exe 2013-11-13 15:00 - 2013-11-13 15:00 - 00001111 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-11-13 15:00 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-11-13 06:59 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2013-11-13 06:59 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2013-11-13 06:59 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2013-11-13 06:59 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2013-11-13 06:59 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2013-11-13 06:59 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-11-13 06:59 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-11-13 06:59 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll 2013-11-13 06:59 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll 2013-11-13 06:59 - 2013-10-03 21:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2013-11-13 06:59 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2013-11-13 06:59 - 2013-10-03 20:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2013-11-13 06:59 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll 2013-11-13 06:59 - 2013-10-02 21:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2013-11-13 06:59 - 2013-10-02 21:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2013-11-13 06:59 - 2013-09-27 20:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-11-13 06:59 - 2013-09-24 21:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-11-13 06:59 - 2013-09-24 21:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2013-11-13 06:59 - 2013-09-24 21:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2013-11-13 06:59 - 2013-09-24 21:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2013-11-13 06:59 - 2013-09-24 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2013-11-13 06:59 - 2013-09-24 21:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-11-13 06:59 - 2013-09-24 21:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-11-13 06:59 - 2013-09-24 21:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2013-11-13 06:59 - 2013-09-24 20:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-11-13 06:59 - 2013-09-24 20:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-11-13 06:59 - 2013-09-24 20:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-11-13 06:59 - 2013-09-24 20:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2013-11-13 06:59 - 2013-09-24 20:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2013-11-13 06:59 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-11-11 18:12 - 2013-11-11 18:12 - 00292880 _____ C:\Windows\Minidump\111113-30638-01.dmp 2013-11-11 10:31 - 2013-11-12 10:19 - 00000000 ____D C:\Windows\erdnt 2013-11-11 09:56 - 2013-11-11 10:06 - 00004299 _____ C:\Users\Nick\Documents\ark.txt 2013-11-11 09:40 - 2013-11-11 09:40 - 00377856 _____ C:\Users\Nick\Downloads\s73rw66m.exe 2013-11-10 00:25 - 2013-11-10 00:25 - 00292848 _____ C:\Windows\Minidump\111013-33150-01.dmp 2013-11-09 02:12 - 2013-11-20 19:10 - 591356076 _____ C:\Windows\MEMORY.DMP 2013-11-09 02:12 - 2013-11-20 19:10 - 00000000 ____D C:\Windows\Minidump 2013-11-09 02:12 - 2013-11-09 02:13 - 00292896 _____ C:\Windows\Minidump\110913-46316-01.dmp 2013-11-08 11:53 - 2013-11-13 16:15 - 00000000 ____D C:\Users\Nick\AppData\Local\Bgtion 2013-10-31 06:05 - 2013-10-31 06:05 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Guild Wars 2 ==================== One Month Modified Files and Folders ======= 2013-11-20 19:16 - 2013-11-20 19:15 - 00016197 _____ C:\Users\Nick\Desktop\FRST.txt 2013-11-20 19:16 - 2009-07-14 00:13 - 00742524 _____ C:\Windows\system32\PerfStringBackup.INI 2013-11-20 19:15 - 2013-11-20 19:15 - 00000000 ____D C:\FRST 2013-11-20 19:14 - 2013-11-20 19:13 - 01957964 _____ (Farbar) C:\Users\Nick\Desktop\FRST64.exe 2013-11-20 19:13 - 2011-08-23 22:37 - 01205257 _____ C:\Windows\WindowsUpdate.log 2013-11-20 19:11 - 2013-11-20 19:11 - 00000000 ___RD C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-11-20 19:11 - 2013-09-15 16:54 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-11-20 19:11 - 2012-03-29 01:45 - 00000376 _____ C:\Users\Nick\AppData\Roaming\sp_data.sys 2013-11-20 19:10 - 2013-11-09 02:12 - 591356076 _____ C:\Windows\MEMORY.DMP 2013-11-20 19:10 - 2013-11-09 02:12 - 00000000 ____D C:\Windows\Minidump 2013-11-20 19:10 - 2013-09-04 20:13 - 00013635 _____ C:\Windows\setupact.log 2013-11-20 19:10 - 2012-05-16 21:18 - 00000000 ____D C:\ProgramData\NVIDIA 2013-11-20 19:10 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-11-20 12:05 - 2013-09-15 16:54 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-11-20 12:03 - 2013-10-04 01:03 - 00000911 _____ C:\Windows\Tasks\EPSON XP-310 Series Update {000F3676-290B-4C0B-BEB2-A06E917FD94D}.job 2013-11-20 12:03 - 2013-10-04 01:03 - 00000725 _____ C:\Windows\Tasks\EPSON XP-310 Series Invitation {000F3676-290B-4C0B-BEB2-A06E917FD94D}.job 2013-11-20 11:46 - 2009-07-13 23:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-11-20 11:46 - 2009-07-13 23:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-11-20 10:44 - 2012-02-18 01:48 - 00002113 _____ C:\Windows\epplauncher.mif 2013-11-20 09:16 - 2012-02-14 05:15 - 00000000 ____D C:\Users\Nick\Documents\Bluetooth Folder 2013-11-20 09:15 - 2009-07-14 00:08 - 00032584 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-11-20 08:40 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache 2013-11-20 07:31 - 2013-11-20 07:31 - 00000000 ____D C:\TDSSKiller_Quarantine 2013-11-20 07:28 - 2013-11-20 07:28 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller (1).zip 2013-11-19 12:01 - 2013-11-19 12:01 - 04101441 _____ C:\Users\Nick\Downloads\tdsskiller.zip 2013-11-19 12:00 - 2013-11-19 12:00 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Nick\Desktop\tdsskiller.exe 2013-11-19 11:54 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF 2013-11-19 05:21 - 2012-02-18 01:51 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-11-18 23:45 - 2013-11-18 23:45 - 00292936 _____ C:\Windows\Minidump\111813-20342-01.dmp 2013-11-18 20:02 - 2013-11-18 20:01 - 00292888 _____ C:\Windows\Minidump\111813-20638-01.dmp 2013-11-18 18:29 - 2013-11-18 18:28 - 00001274 _____ C:\DelFix.txt 2013-11-18 18:28 - 2013-11-18 18:28 - 00000000 ____D C:\Windows\ERUNT 2013-11-18 18:21 - 2013-11-18 18:21 - 00292904 _____ C:\Windows\Minidump\111813-17534-01.dmp 2013-11-18 18:18 - 2013-11-18 18:18 - 00292848 _____ C:\Windows\Minidump\111813-25318-01.dmp 2013-11-18 14:49 - 2013-11-18 14:38 - 00000000 ____D C:\uninstall.exe 2013-11-18 14:45 - 2009-07-13 21:34 - 00000215 _____ C:\Windows\system.ini 2013-11-18 14:43 - 2011-04-01 23:17 - 00477680 _____ C:\Windows\PFRO.log 2013-11-18 14:10 - 2012-02-14 05:14 - 00001415 _____ C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-18 14:08 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-11-18 14:07 - 2013-11-18 14:05 - 00007808 _____ C:\Windows\IE11_main.log 2013-11-18 14:06 - 2013-11-18 14:06 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-18 14:06 - 2013-11-18 14:06 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-18 14:06 - 2013-11-18 14:06 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-18 14:06 - 2013-11-18 14:06 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-18 14:06 - 2013-11-18 14:06 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-18 14:06 - 2013-11-18 14:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-18 14:06 - 2013-11-18 14:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-18 14:06 - 2013-11-18 14:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-18 14:04 - 2011-08-23 22:45 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-18 14:03 - 2011-08-23 22:44 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-11-18 14:00 - 2012-03-04 20:12 - 00000000 ____D C:\Users\Nick\AppData\Local\Adobe 2013-11-18 13:59 - 2012-03-04 20:12 - 00000000 ____D C:\ProgramData\Adobe 2013-11-18 13:59 - 2012-03-04 20:12 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-11-18 13:56 - 2013-11-18 13:56 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-11-18 13:56 - 2012-02-17 04:54 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2013-11-18 13:56 - 2012-02-17 04:54 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2013-11-18 13:56 - 2012-02-17 04:54 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2013-11-18 13:56 - 2012-02-17 04:54 - 00000000 ____D C:\Program Files (x86)\Java 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall.exe 2013-11-18 13:54 - 2013-11-18 13:54 - 00915368 _____ (Oracle Corporation) C:\Users\Nick\Downloads\jxpiinstall (1).exe 2013-11-18 13:54 - 2013-11-18 13:53 - 44335120 _____ (Microsoft Corporation) C:\Users\Nick\Downloads\IE10-Windows6.1-x64-en-us.exe 2013-11-18 13:54 - 2013-05-24 17:58 - 00008515 _____ C:\Windows\IE10_main.log 2013-11-17 20:17 - 2011-08-23 22:54 - 00045056 _____ C:\Windows\SysWOW64\acovcnt.exe 2013-11-17 03:08 - 2013-11-17 02:22 - 00017006 _____ C:\Users\Nick\Documents\Rap.odt 2013-11-17 01:34 - 2012-02-16 21:29 - 00000000 ____D C:\Users\Nick\AppData\Roaming\SoftGrid Client 2013-11-17 01:13 - 2013-08-28 13:03 - 00000000 ____D C:\Users\Nick\AppData\Roaming\vlc 2013-11-17 00:29 - 2013-11-17 00:28 - 00292872 _____ C:\Windows\Minidump\111713-16161-01.dmp 2013-11-17 00:26 - 2012-04-27 20:35 - 00000000 ____D C:\Users\Nick\AppData\Roaming\uTorrent 2013-11-15 18:49 - 2013-11-15 18:49 - 00048651 _____ C:\Users\Nick\Downloads\[kickass.to]the.purge.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:33 - 2012-10-22 17:00 - 00000000 ____D C:\Program Files (x86)\Guild Wars 2 2013-11-15 16:18 - 2013-11-15 16:18 - 00066883 _____ C:\Users\Nick\Downloads\[kickass.to]white.house.down.2013.1080p.bluray.dts.hd.ma.5.1.x264.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051170 _____ C:\Users\Nick\Downloads\[kickass.to]man.of.steel.2013.1080p.bluray.x264.sector7.publichd.torrent 2013-11-15 16:17 - 2013-11-15 16:17 - 00051089 _____ C:\Users\Nick\Downloads\[kickass.to]the.internship.2013.unrated.1080p.bluray.dts.x264.publichd.torrent 2013-11-14 10:51 - 2013-11-14 10:51 - 00292792 _____ C:\Windows\Minidump\111413-22323-01.dmp 2013-11-14 07:27 - 2013-11-14 07:27 - 00000000 ____D C:\Program Files (x86)\ESET 2013-11-14 07:23 - 2009-07-14 00:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2013-11-14 07:22 - 2013-11-13 20:11 - 00000000 ____D C:\Windows\system32\MpEngineStore 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default\AppData\Roaming\Adobe 2013-11-14 07:21 - 2013-11-14 07:21 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Adobe 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default\AppData\Roaming\ASUS WebStorage 2013-11-14 07:20 - 2013-11-14 07:20 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ASUS WebStorage 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Malwarebytes 2013-11-14 07:15 - 2013-11-14 07:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Malwarebytes 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00002257 _____ C:\Users\Default User\Desktop\Google Chrome.lnk 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default\AppData\Local\Google 2013-11-14 07:11 - 2013-11-14 07:11 - 00000000 ____D C:\Users\Default User\AppData\Local\Google 2013-11-13 20:51 - 2013-11-13 20:51 - 00292848 _____ C:\Windows\Minidump\111313-34788-01.dmp 2013-11-13 20:00 - 2013-08-12 21:32 - 00000000 ____D C:\Windows\system32\MRT 2013-11-13 20:00 - 2012-02-18 01:47 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-11-13 16:15 - 2013-11-08 11:53 - 00000000 ____D C:\Users\Nick\AppData\Local\Bgtion 2013-11-13 15:01 - 2013-11-13 15:01 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Malwarebytes 2013-11-13 15:01 - 2012-03-14 13:48 - 00000000 ____D C:\Users\Nick\AppData\Local\CrashDumps 2013-11-13 15:00 - 2013-11-13 15:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Nick\Downloads\mbam-setup-1.75.0.1300.exe 2013-11-13 15:00 - 2013-11-13 15:00 - 00001111 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-11-13 15:00 - 2013-11-13 15:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-11-12 10:20 - 2009-07-13 21:34 - 67895296 _____ C:\Windows\system32\config\software.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 24117248 _____ C:\Windows\system32\config\system.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 01572864 _____ C:\Windows\system32\config\default.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 00262144 _____ C:\Windows\system32\config\security.bak 2013-11-12 10:20 - 2009-07-13 21:34 - 00262144 _____ C:\Windows\system32\config\sam.bak 2013-11-12 10:19 - 2013-11-11 10:31 - 00000000 ____D C:\Windows\erdnt 2013-11-11 18:32 - 2012-02-14 05:16 - 00000000 ____D C:\Users\Nick\AppData\Local\Google 2013-11-11 18:32 - 2011-04-01 23:36 - 00000000 ____D C:\Program Files (x86)\Google 2013-11-11 18:12 - 2013-11-11 18:12 - 00292880 _____ C:\Windows\Minidump\111113-30638-01.dmp 2013-11-11 10:51 - 2009-07-13 22:20 - 00000000 __RHD C:\Users\Default 2013-11-11 10:06 - 2013-11-11 09:56 - 00004299 _____ C:\Users\Nick\Documents\ark.txt 2013-11-11 09:40 - 2013-11-11 09:40 - 00377856 _____ C:\Users\Nick\Downloads\s73rw66m.exe 2013-11-11 02:51 - 2011-08-23 22:57 - 00000000 ____D C:\ExpressGateUtil 2013-11-11 02:51 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\security 2013-11-11 02:51 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Help 2013-11-11 02:50 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\registration 2013-11-10 23:53 - 2012-02-14 05:13 - 00000000 ____D C:\Users\Nick 2013-11-10 00:25 - 2013-11-10 00:25 - 00292848 _____ C:\Windows\Minidump\111013-33150-01.dmp 2013-11-09 02:13 - 2013-11-09 02:12 - 00292896 _____ C:\Windows\Minidump\110913-46316-01.dmp 2013-11-08 22:43 - 2009-07-14 02:44 - 00000000 ___RD C:\Users\Public\Recorded TV 2013-11-08 11:53 - 2012-02-14 05:13 - 00000000 ____D C:\Users\Nick\AppData\Local\VirtualStore 2013-11-04 15:45 - 2013-08-28 10:47 - 00000794 _____ C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2013-10-31 06:05 - 2013-10-31 06:05 - 00000000 ____D C:\Users\Nick\AppData\Roaming\Guild Wars 2 2013-10-31 06:05 - 2012-10-22 16:58 - 00000000 ____D C:\Users\Nick\Documents\Guild Wars 2 ZeroAccess: C:\Users\Nick\AppData\Local\Google\Desktop\Install ZeroAccess: C:\Program Files (x86)\Google\Desktop\Install ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit TDL4: custom:26000022 <===== ATTENTION! LastRegBack: 2013-11-20 08:32 ==================== End Of Log ============================
  15. 07:29:56.0882 0x0398 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 07:29:56.0892 0x0398 rdbss - ok 07:29:56.0904 0x0398 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 07:29:56.0904 0x0398 rdpbus - ok 07:29:56.0917 0x0398 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 07:29:56.0919 0x0398 RDPCDD - ok 07:29:56.0929 0x0398 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 07:29:56.0929 0x0398 RDPENCDD - ok 07:29:56.0939 0x0398 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 07:29:56.0939 0x0398 RDPREFMP - ok 07:29:56.0972 0x0398 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 07:29:56.0974 0x0398 RdpVideoMiniport - ok 07:29:56.0997 0x0398 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 07:29:57.0002 0x0398 RDPWD - ok 07:29:57.0017 0x0398 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 07:29:57.0022 0x0398 rdyboost - ok 07:29:57.0047 0x0398 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 07:29:57.0052 0x0398 RemoteRegistry - ok 07:29:57.0059 0x0398 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 07:29:57.0064 0x0398 RFCOMM - ok 07:29:57.0077 0x0398 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 07:29:57.0079 0x0398 RpcEptMapper - ok 07:29:57.0112 0x0398 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 07:29:57.0114 0x0398 RpcLocator - ok 07:29:57.0139 0x0398 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll 07:29:57.0149 0x0398 RpcSs - ok 07:29:57.0172 0x0398 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 07:29:57.0174 0x0398 rspndr - ok 07:29:57.0212 0x0398 [ E57FAC2CDB73F06586ED2ED310B80932, 9BFC866E8AF555810127D1B95D1950BAC645C2553A46620417F6BA19FF5706B7 ] RSUSBVSTOR C:\Windows\system32\Drivers\RtsUVStor.sys 07:29:57.0217 0x0398 RSUSBVSTOR - ok 07:29:57.0254 0x0398 [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 07:29:57.0262 0x0398 RTL8167 - ok 07:29:57.0279 0x0398 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe 07:29:57.0279 0x0398 SamSs - ok 07:29:57.0292 0x0398 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 07:29:57.0294 0x0398 sbp2port - ok 07:29:57.0324 0x0398 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 07:29:57.0332 0x0398 SCardSvr - ok 07:29:57.0339 0x0398 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 07:29:57.0342 0x0398 scfilter - ok 07:29:57.0374 0x0398 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll 07:29:57.0417 0x0398 Schedule - ok 07:29:57.0464 0x0398 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 07:29:57.0467 0x0398 SCPolicySvc - ok 07:29:57.0479 0x0398 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 07:29:57.0484 0x0398 SDRSVC - ok 07:29:57.0494 0x0398 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 07:29:57.0494 0x0398 secdrv - ok 07:29:57.0509 0x0398 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 07:29:57.0509 0x0398 seclogon - ok 07:29:57.0524 0x0398 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll 07:29:57.0527 0x0398 SENS - ok 07:29:57.0529 0x0398 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 07:29:57.0532 0x0398 SensrSvc - ok 07:29:57.0547 0x0398 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys 07:29:57.0547 0x0398 Serenum - ok 07:29:57.0559 0x0398 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys 07:29:57.0564 0x0398 Serial - ok 07:29:57.0572 0x0398 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 07:29:57.0574 0x0398 sermouse - ok 07:29:57.0587 0x0398 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll 07:29:57.0592 0x0398 SessionEnv - ok 07:29:57.0602 0x0398 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 07:29:57.0602 0x0398 sffdisk - ok 07:29:57.0614 0x0398 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 07:29:57.0614 0x0398 sffp_mmc - ok 07:29:57.0629 0x0398 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 07:29:57.0629 0x0398 sffp_sd - ok 07:29:57.0642 0x0398 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 07:29:57.0644 0x0398 sfloppy - ok 07:29:57.0694 0x0398 [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys 07:29:57.0714 0x0398 Sftfs - ok 07:29:57.0764 0x0398 [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe 07:29:57.0774 0x0398 sftlist - ok 07:29:57.0807 0x0398 [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys 07:29:57.0812 0x0398 Sftplay - ok 07:29:57.0822 0x0398 [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys 07:29:57.0824 0x0398 Sftredir - ok 07:29:57.0832 0x0398 [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys 07:29:57.0834 0x0398 Sftvol - ok 07:29:57.0849 0x0398 [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe 07:29:57.0854 0x0398 sftvsa - ok 07:29:57.0894 0x0398 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 07:29:57.0902 0x0398 SharedAccess - ok 07:29:57.0957 0x0398 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 07:29:57.0967 0x0398 ShellHWDetection - ok 07:29:57.0999 0x0398 [ 1BC348CF6BAA90EC8E533EF6E6A69933, 2B26F6EB701F48E092DED6A7B888F24736F2899EE81D54DD4B1E9DF7CFD36E7A ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys 07:29:58.0002 0x0398 SiSGbeLH - ok 07:29:58.0012 0x0398 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 07:29:58.0014 0x0398 SiSRaid2 - ok 07:29:58.0029 0x0398 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 07:29:58.0032 0x0398 SiSRaid4 - ok 07:29:58.0069 0x0398 [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 07:29:58.0074 0x0398 SkypeUpdate - ok 07:29:58.0092 0x0398 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 07:29:58.0094 0x0398 Smb - ok 07:29:58.0107 0x0398 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 07:29:58.0109 0x0398 SNMPTRAP - ok 07:29:58.0124 0x0398 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 07:29:58.0124 0x0398 spldr - ok 07:29:58.0149 0x0398 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe 07:29:58.0174 0x0398 Spooler - ok 07:29:58.0294 0x0398 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 07:29:58.0394 0x0398 sppsvc - ok 07:29:58.0404 0x0398 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 07:29:58.0407 0x0398 sppuinotify - ok 07:29:58.0447 0x0398 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys 07:29:58.0457 0x0398 srv - ok 07:29:58.0472 0x0398 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 07:29:58.0482 0x0398 srv2 - ok 07:29:58.0499 0x0398 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 07:29:58.0502 0x0398 srvnet - ok 07:29:58.0532 0x0398 [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys 07:29:58.0537 0x0398 ssadbus - ok 07:29:58.0552 0x0398 [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys 07:29:58.0552 0x0398 ssadmdfl - ok 07:29:58.0569 0x0398 [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys 07:29:58.0574 0x0398 ssadmdm - ok 07:29:58.0602 0x0398 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 07:29:58.0607 0x0398 SSDPSRV - ok 07:29:58.0622 0x0398 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 07:29:58.0624 0x0398 SstpSvc - ok 07:29:58.0654 0x0398 [ C692C94FE55CAD0633440236022C27B3, 9A21E9B2EB96DC8C58DE060EEAFC2FD71AB9C539039DAAD5F7380556E2D1D69B ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys 07:29:58.0659 0x0398 ssudmdm - ok 07:29:58.0724 0x0398 [ C321084609422404F8DD1513C988DBEA, 97FCF4D5AD018B50B149E0DDDEC7581E382AB5A15018373B0754ABFC7A2077A1 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 07:29:58.0732 0x0398 Stereo Service - ok 07:29:58.0754 0x0398 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 07:29:58.0754 0x0398 stexstor - ok 07:29:58.0794 0x0398 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 07:29:58.0819 0x0398 stisvc - ok 07:29:58.0829 0x0398 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 07:29:58.0829 0x0398 swenum - ok 07:29:58.0854 0x0398 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 07:29:58.0872 0x0398 swprv - ok 07:29:58.0934 0x0398 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll 07:29:58.0984 0x0398 SysMain - ok 07:29:58.0997 0x0398 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 07:29:58.0999 0x0398 TabletInputService - ok 07:29:59.0014 0x0398 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 07:29:59.0022 0x0398 TapiSrv - ok 07:29:59.0037 0x0398 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 07:29:59.0039 0x0398 TBS - ok 07:29:59.0122 0x0398 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys 07:29:59.0182 0x0398 Tcpip - ok 07:29:59.0244 0x0398 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 07:29:59.0277 0x0398 TCPIP6 - ok 07:29:59.0329 0x0398 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 07:29:59.0332 0x0398 tcpipreg - ok 07:29:59.0354 0x0398 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 07:29:59.0357 0x0398 TDPIPE - ok 07:29:59.0382 0x0398 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 07:29:59.0384 0x0398 TDTCP - ok 07:29:59.0399 0x0398 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 07:29:59.0404 0x0398 tdx - ok 07:29:59.0417 0x0398 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 07:29:59.0417 0x0398 TermDD - ok 07:29:59.0457 0x0398 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll 07:29:59.0484 0x0398 TermService - ok 07:29:59.0512 0x0398 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 07:29:59.0514 0x0398 Themes - ok 07:29:59.0529 0x0398 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 07:29:59.0532 0x0398 THREADORDER - ok 07:29:59.0544 0x0398 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 07:29:59.0547 0x0398 TrkWks - ok 07:29:59.0602 0x0398 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 07:29:59.0607 0x0398 TrustedInstaller - ok 07:29:59.0639 0x0398 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 07:29:59.0639 0x0398 tssecsrv - ok 07:29:59.0669 0x0398 [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 07:29:59.0672 0x0398 TsUsbFlt - ok 07:29:59.0692 0x0398 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 07:29:59.0694 0x0398 TsUsbGD - ok 07:29:59.0719 0x0398 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 07:29:59.0722 0x0398 tunnel - ok 07:29:59.0749 0x0398 [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys 07:29:59.0749 0x0398 TurboB - ok 07:29:59.0789 0x0398 [ 600B406A04D90F577FEA8A88D7379F08, 77CC8E8AFB6F571A42D916C0B2FEFFD3A7A32A455C78228B407C6C9B6DED8CAD ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe 07:29:59.0794 0x0398 TurboBoost - ok 07:29:59.0802 0x0398 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 07:29:59.0804 0x0398 uagp35 - ok 07:29:59.0829 0x0398 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 07:29:59.0837 0x0398 udfs - ok 07:29:59.0872 0x0398 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 07:29:59.0874 0x0398 UI0Detect - ok 07:29:59.0889 0x0398 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 07:29:59.0889 0x0398 uliagpkx - ok 07:29:59.0904 0x0398 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 07:29:59.0907 0x0398 umbus - ok 07:29:59.0919 0x0398 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys 07:29:59.0922 0x0398 UmPass - ok 07:30:00.0027 0x0398 [ EB79C6C91A99930015EF29AE7FA802D1, 96D00BA330854C7763BF385D84D47C3D1B87C4085A91D73B558C86829930DC4B ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe 07:30:00.0107 0x0398 UNS - ok 07:30:00.0139 0x0398 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 07:30:00.0149 0x0398 upnphost - ok 07:30:00.0174 0x0398 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 07:30:00.0179 0x0398 usbaudio - ok 07:30:00.0212 0x0398 [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 07:30:00.0214 0x0398 usbccgp - ok 07:30:00.0229 0x0398 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 07:30:00.0234 0x0398 usbcir - ok 07:30:00.0262 0x0398 [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci C:\Windows\system32\drivers\usbehci.sys 07:30:00.0264 0x0398 usbehci - ok 07:30:00.0322 0x0398 [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 07:30:00.0329 0x0398 usbhub - ok 07:30:00.0362 0x0398 [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci C:\Windows\system32\drivers\usbohci.sys 07:30:00.0364 0x0398 usbohci - ok 07:30:00.0389 0x0398 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys 07:30:00.0392 0x0398 usbprint - ok 07:30:00.0424 0x0398 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 07:30:00.0427 0x0398 USBSTOR - ok 07:30:00.0449 0x0398 [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 07:30:00.0452 0x0398 usbuhci - ok 07:30:00.0467 0x0398 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 07:30:00.0472 0x0398 usbvideo - ok 07:30:00.0479 0x0398 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 07:30:00.0482 0x0398 UxSms - ok 07:30:00.0494 0x0398 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe 07:30:00.0497 0x0398 VaultSvc - ok 07:30:00.0504 0x0398 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 07:30:00.0507 0x0398 vdrvroot - ok 07:30:00.0527 0x0398 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 07:30:00.0542 0x0398 vds - ok 07:30:00.0554 0x0398 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 07:30:00.0557 0x0398 vga - ok 07:30:00.0572 0x0398 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 07:30:00.0574 0x0398 VgaSave - ok 07:30:00.0592 0x0398 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 07:30:00.0597 0x0398 vhdmp - ok 07:30:00.0627 0x0398 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 07:30:00.0629 0x0398 viaide - ok 07:30:00.0662 0x0398 [ C37CE43FB54066FFB540729C6E6E194E, EF96BFF5696C1BE3078B748CD08352773430C7042BE89E439EE67046E46D293B ] VideAceWindowsService C:\ExpressGateUtil\VAWinService.exe 07:30:00.0664 0x0398 VideAceWindowsService - ok 07:30:00.0677 0x0398 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 07:30:00.0679 0x0398 volmgr - ok 07:30:00.0694 0x0398 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 07:30:00.0704 0x0398 volmgrx - ok 07:30:00.0749 0x0398 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys 07:30:00.0757 0x0398 volsnap - ok 07:30:00.0772 0x0398 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 07:30:00.0777 0x0398 vsmraid - ok 07:30:00.0827 0x0398 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 07:30:00.0877 0x0398 VSS - ok 07:30:00.0907 0x0398 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 07:30:00.0907 0x0398 vwifibus - ok 07:30:00.0917 0x0398 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 07:30:00.0919 0x0398 vwififlt - ok 07:30:00.0942 0x0398 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 07:30:00.0949 0x0398 W32Time - ok 07:30:01.0027 0x0398 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 07:30:01.0027 0x0398 WacomPen - ok 07:30:01.0037 0x0398 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 07:30:01.0039 0x0398 WANARP - ok 07:30:01.0044 0x0398 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 07:30:01.0047 0x0398 Wanarpv6 - ok 07:30:01.0117 0x0398 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 07:30:01.0167 0x0398 WatAdminSvc - ok 07:30:01.0237 0x0398 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 07:30:01.0297 0x0398 wbengine - ok 07:30:01.0337 0x0398 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 07:30:01.0344 0x0398 WbioSrvc - ok 07:30:01.0359 0x0398 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 07:30:01.0369 0x0398 wcncsvc - ok 07:30:01.0392 0x0398 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 07:30:01.0394 0x0398 WcsPlugInService - ok 07:30:01.0402 0x0398 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 07:30:01.0402 0x0398 Wd - ok 07:30:01.0444 0x0398 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 07:30:01.0469 0x0398 Wdf01000 - ok 07:30:01.0487 0x0398 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll 07:30:01.0489 0x0398 WdiServiceHost - ok 07:30:01.0494 0x0398 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll 07:30:01.0497 0x0398 WdiSystemHost - ok 07:30:01.0527 0x0398 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll 07:30:01.0534 0x0398 WebClient - ok 07:30:01.0554 0x0398 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 07:30:01.0559 0x0398 Wecsvc - ok 07:30:01.0572 0x0398 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 07:30:01.0577 0x0398 wercplsupport - ok 07:30:01.0584 0x0398 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 07:30:01.0587 0x0398 WerSvc - ok 07:30:01.0592 0x0398 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 07:30:01.0592 0x0398 WfpLwf - ok 07:30:01.0619 0x0398 [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys 07:30:01.0624 0x0398 WimFltr - ok 07:30:01.0637 0x0398 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 07:30:01.0639 0x0398 WIMMount - ok 07:30:01.0664 0x0398 WinDefend - ok 07:30:01.0667 0x0398 WinHttpAutoProxySvc - ok 07:30:01.0739 0x0398 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 07:30:01.0744 0x0398 Winmgmt - ok 07:30:01.0822 0x0398 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll 07:30:01.0899 0x0398 WinRM - ok 07:30:01.0959 0x0398 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 07:30:01.0959 0x0398 WinUsb - ok 07:30:02.0022 0x0398 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 07:30:02.0047 0x0398 Wlansvc - ok 07:30:02.0112 0x0398 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 07:30:02.0114 0x0398 wlcrasvc - ok 07:30:02.0234 0x0398 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 07:30:02.0342 0x0398 wlidsvc - ok 07:30:02.0372 0x0398 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 07:30:02.0372 0x0398 WmiAcpi - ok 07:30:02.0404 0x0398 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 07:30:02.0409 0x0398 wmiApSrv - ok 07:30:02.0432 0x0398 WMPNetworkSvc - ok 07:30:02.0439 0x0398 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 07:30:02.0442 0x0398 WPCSvc - ok 07:30:02.0452 0x0398 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 07:30:02.0457 0x0398 WPDBusEnum - ok 07:30:02.0484 0x0398 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 07:30:02.0487 0x0398 ws2ifsl - ok 07:30:02.0519 0x0398 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll 07:30:02.0524 0x0398 wscsvc - ok 07:30:02.0524 0x0398 WSearch - ok 07:30:02.0624 0x0398 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll 07:30:02.0710 0x0398 wuauserv - ok 07:30:02.0742 0x0398 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 07:30:02.0747 0x0398 WudfPf - ok 07:30:02.0762 0x0398 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 07:30:02.0767 0x0398 WUDFRd - ok 07:30:02.0792 0x0398 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 07:30:02.0797 0x0398 wudfsvc - ok 07:30:02.0827 0x0398 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll 07:30:02.0835 0x0398 WwanSvc - ok 07:30:02.0837 0x0398 ================ Scan global =============================== 07:30:02.0890 0x0398 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll 07:30:02.0920 0x0398 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 07:30:02.0937 0x0398 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 07:30:02.0972 0x0398 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 07:30:03.0012 0x0398 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe 07:30:03.0020 0x0398 [ Global ] - ok 07:30:03.0020 0x0398 ================ Scan MBR ================================== 07:30:03.0052 0x0398 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 07:30:03.0052 0x0398 Suspicious mbr (Forged): \Device\Harddisk0\DR0 07:30:03.0107 0x0398 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c ( 0 ) 07:30:03.0107 0x0398 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected 07:30:06.0222 0x0398 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk1\DR1 07:30:06.0227 0x0398 \Device\Harddisk1\DR1 - ok 07:30:06.0227 0x0398 ================ Scan VBR ================================== 07:30:06.0325 0x0398 [ 134AF79D956C7368B5C0828774A56B1C ] \Device\Harddisk0\DR0\Partition1 07:30:06.0325 0x0398 \Device\Harddisk0\DR0\Partition1 - ok 07:30:06.0347 0x0398 [ 87E889C9619303616BBA2F8E2C776068 ] \Device\Harddisk0\DR0\Partition2 07:30:06.0347 0x0398 \Device\Harddisk0\DR0\Partition2 - ok 07:30:06.0350 0x0398 [ 0F575F966C9C24D4F8A7013CBA2172BD ] \Device\Harddisk1\DR1\Partition1 07:30:06.0352 0x0398 \Device\Harddisk1\DR1\Partition1 - ok 07:30:06.0355 0x0398 [ 1C05BDFB0CE1CA53B0A82A8A70ED29F0 ] \Device\Harddisk1\DR1\Partition2 07:30:06.0355 0x0398 \Device\Harddisk1\DR1\Partition2 - ok 07:30:06.0355 0x0398 Waiting for KSN requests completion. In queue: 55 07:30:07.0355 0x0398 Waiting for KSN requests completion. In queue: 55 07:30:08.0355 0x0398 Waiting for KSN requests completion. In queue: 55 07:30:09.0365 0x0398 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.3.219.0 ), 0x60000 ( disabled : updated ) 07:30:09.0407 0x0398 Win FW state via NFP2: enabled 07:30:12.0177 0x0398 ============================================================ 07:30:12.0177 0x0398 Scan finished 07:30:12.0177 0x0398 ============================================================ 07:30:12.0185 0x12ec Detected object count: 1 07:30:12.0185 0x12ec Actual detected object count: 1 07:31:25.0345 0x12ec \Device\Harddisk0\DR0\# - copied to quarantine 07:31:25.0347 0x12ec \Device\Harddisk0\DR0 - copied to quarantine 07:31:25.0376 0x12ec \Device\Harddisk0\DR0\TDLFS\cmd32.dll - copied to quarantine 07:31:25.0379 0x12ec \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine 07:31:25.0389 0x12ec \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine 07:31:25.0397 0x12ec \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine 07:31:25.0398 0x12ec \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine 07:31:25.0399 0x12ec \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine 07:31:25.0401 0x12ec \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine 07:31:25.0403 0x12ec \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine 07:31:25.0404 0x12ec \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine 07:31:25.0405 0x12ec \Device\Harddisk0\DR0\TDLFS\ns - copied to quarantine 07:31:25.0406 0x12ec \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine 07:31:25.0419 0x12ec \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine 07:31:25.0420 0x12ec \Device\Harddisk0\DR0\TDLFS\x - copied to quarantine 07:31:25.0421 0x12ec \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine 07:31:25.0421 0x12ec \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Quarantine 07:32:04.0856 0x0e08 Deinitialize success
  16. 07:29:50.0877 0x0398 HdAudAddService - ok 07:29:50.0894 0x0398 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 07:29:50.0897 0x0398 HDAudBus - ok 07:29:50.0907 0x0398 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 07:29:50.0907 0x0398 HidBatt - ok 07:29:50.0922 0x0398 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 07:29:50.0924 0x0398 HidBth - ok 07:29:50.0939 0x0398 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 07:29:50.0942 0x0398 HidIr - ok 07:29:50.0957 0x0398 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll 07:29:50.0959 0x0398 hidserv - ok 07:29:50.0989 0x0398 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys 07:29:50.0989 0x0398 HidUsb - ok 07:29:51.0022 0x0398 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 07:29:51.0024 0x0398 hkmsvc - ok 07:29:51.0037 0x0398 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 07:29:51.0044 0x0398 HomeGroupListener - ok 07:29:51.0077 0x0398 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 07:29:51.0082 0x0398 HomeGroupProvider - ok 07:29:51.0097 0x0398 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 07:29:51.0097 0x0398 HpSAMD - ok 07:29:51.0137 0x0398 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys 07:29:51.0167 0x0398 HTTP - ok 07:29:51.0189 0x0398 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 07:29:51.0192 0x0398 hwpolicy - ok 07:29:51.0204 0x0398 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 07:29:51.0209 0x0398 i8042prt - ok 07:29:51.0244 0x0398 [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 07:29:51.0252 0x0398 iaStor - ok 07:29:51.0282 0x0398 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 07:29:51.0292 0x0398 iaStorV - ok 07:29:51.0367 0x0398 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 07:29:51.0392 0x0398 idsvc - ok 07:29:51.0434 0x0398 IEEtwCollectorService - ok 07:29:51.0447 0x0398 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 07:29:51.0447 0x0398 iirsp - ok 07:29:51.0489 0x0398 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll 07:29:51.0514 0x0398 IKEEXT - ok 07:29:51.0667 0x0398 [ 602788BF364D43E5878AA1B4F85C232B, 589B983C708B6B8A32760D00F21CB2C3331C3E439ECF8D2464FF77C1D9760D72 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 07:29:51.0744 0x0398 IntcAzAudAddService - ok 07:29:51.0777 0x0398 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 07:29:51.0777 0x0398 intelide - ok 07:29:51.0789 0x0398 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 07:29:51.0789 0x0398 intelppm - ok 07:29:51.0819 0x0398 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 07:29:51.0822 0x0398 IPBusEnum - ok 07:29:51.0837 0x0398 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 07:29:51.0839 0x0398 IpFilterDriver - ok 07:29:51.0877 0x0398 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] IpHlpSvc C:\Windows\System32\iphlpsvc.dll 07:29:51.0894 0x0398 IpHlpSvc - ok 07:29:51.0917 0x0398 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 07:29:51.0919 0x0398 IPMIDRV - ok 07:29:51.0939 0x0398 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 07:29:51.0942 0x0398 IPNAT - ok 07:29:51.0984 0x0398 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 07:29:51.0987 0x0398 IRENUM - ok 07:29:51.0994 0x0398 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 07:29:51.0997 0x0398 isapnp - ok 07:29:52.0034 0x0398 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 07:29:52.0042 0x0398 iScsiPrt - ok 07:29:52.0059 0x0398 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 07:29:52.0059 0x0398 kbdclass - ok 07:29:52.0089 0x0398 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 07:29:52.0092 0x0398 kbdhid - ok 07:29:52.0112 0x0398 [ E63EF8C3271D014F14E2469CE75FECB4, 3A8DFA4B446AFDC35F01FD5218D0BEBC510A1E3DE9976210F00D19767D0F9069 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys 07:29:52.0114 0x0398 kbfiltr - ok 07:29:52.0119 0x0398 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe 07:29:52.0122 0x0398 KeyIso - ok 07:29:52.0152 0x0398 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 07:29:52.0154 0x0398 KSecDD - ok 07:29:52.0167 0x0398 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 07:29:52.0169 0x0398 KSecPkg - ok 07:29:52.0177 0x0398 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 07:29:52.0179 0x0398 ksthunk - ok 07:29:52.0222 0x0398 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 07:29:52.0232 0x0398 KtmRm - ok 07:29:52.0247 0x0398 [ 033B4AED2C5519072C0D81E00804D003, 6C450A604C382416C482FED43098B4E95BD61B480B0CEFD728A269446AF18708 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys 07:29:52.0249 0x0398 L1C - ok 07:29:52.0282 0x0398 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll 07:29:52.0289 0x0398 LanmanServer - ok 07:29:52.0317 0x0398 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 07:29:52.0322 0x0398 LanmanWorkstation - ok 07:29:52.0357 0x0398 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 07:29:52.0359 0x0398 lltdio - ok 07:29:52.0389 0x0398 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 07:29:52.0397 0x0398 lltdsvc - ok 07:29:52.0407 0x0398 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 07:29:52.0407 0x0398 lmhosts - ok 07:29:52.0457 0x0398 [ 0803906D607A9B83184447B75B60ECC2, A7A599C4CEDD4AC4196A558442E80B4F852AF6C6104A53C8819A79AA5D388DE8 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe 07:29:52.0462 0x0398 LMS - ok 07:29:52.0482 0x0398 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 07:29:52.0484 0x0398 LSI_FC - ok 07:29:52.0497 0x0398 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 07:29:52.0499 0x0398 LSI_SAS - ok 07:29:52.0512 0x0398 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 07:29:52.0514 0x0398 LSI_SAS2 - ok 07:29:52.0529 0x0398 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 07:29:52.0534 0x0398 LSI_SCSI - ok 07:29:52.0547 0x0398 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 07:29:52.0552 0x0398 luafv - ok 07:29:52.0584 0x0398 [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt C:\Windows\system32\drivers\MBfilt64.sys 07:29:52.0584 0x0398 MBfilt - ok 07:29:52.0597 0x0398 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 07:29:52.0599 0x0398 Mcx2Svc - ok 07:29:52.0609 0x0398 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 07:29:52.0612 0x0398 megasas - ok 07:29:52.0632 0x0398 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 07:29:52.0639 0x0398 MegaSR - ok 07:29:52.0674 0x0398 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 07:29:52.0674 0x0398 MEIx64 - ok 07:29:52.0687 0x0398 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 07:29:52.0689 0x0398 MMCSS - ok 07:29:52.0702 0x0398 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys 07:29:52.0702 0x0398 Modem - ok 07:29:52.0714 0x0398 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 07:29:52.0714 0x0398 monitor - ok 07:29:52.0727 0x0398 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 07:29:52.0727 0x0398 mouclass - ok 07:29:52.0742 0x0398 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 07:29:52.0742 0x0398 mouhid - ok 07:29:52.0752 0x0398 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 07:29:52.0754 0x0398 mountmgr - ok 07:29:52.0782 0x0398 [ FC1D590039EF06A381768710E6C07E75, 2F8B4D5232C4848A423A4E647102F3EDFD9B3D55D0D14AC04FD6D60D9212106F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 07:29:52.0789 0x0398 MpFilter - ok 07:29:52.0804 0x0398 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 07:29:52.0807 0x0398 mpio - ok 07:29:52.0822 0x0398 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 07:29:52.0824 0x0398 mpsdrv - ok 07:29:52.0874 0x0398 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 07:29:52.0902 0x0398 MpsSvc - ok 07:29:52.0929 0x0398 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 07:29:52.0932 0x0398 MRxDAV - ok 07:29:52.0959 0x0398 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 07:29:52.0962 0x0398 mrxsmb - ok 07:29:52.0977 0x0398 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 07:29:52.0982 0x0398 mrxsmb10 - ok 07:29:52.0999 0x0398 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 07:29:53.0002 0x0398 mrxsmb20 - ok 07:29:53.0014 0x0398 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 07:29:53.0014 0x0398 msahci - ok 07:29:53.0034 0x0398 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 07:29:53.0039 0x0398 msdsm - ok 07:29:53.0049 0x0398 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 07:29:53.0054 0x0398 MSDTC - ok 07:29:53.0074 0x0398 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 07:29:53.0077 0x0398 Msfs - ok 07:29:53.0087 0x0398 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 07:29:53.0087 0x0398 mshidkmdf - ok 07:29:53.0094 0x0398 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 07:29:53.0094 0x0398 msisadrv - ok 07:29:53.0137 0x0398 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 07:29:53.0142 0x0398 MSiSCSI - ok 07:29:53.0144 0x0398 msiserver - ok 07:29:53.0157 0x0398 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 07:29:53.0159 0x0398 MSKSSRV - ok 07:29:53.0227 0x0398 [ 52D60E642263719B37F1E4A785E676EB, 1ECCB557FC26F120852E02142EDE60A91F1E53EBD6BF3A15676AF2A286B986E6 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe 07:29:53.0227 0x0398 MsMpSvc - ok 07:29:53.0254 0x0398 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 07:29:53.0254 0x0398 MSPCLOCK - ok 07:29:53.0262 0x0398 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 07:29:53.0262 0x0398 MSPQM - ok 07:29:53.0279 0x0398 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 07:29:53.0287 0x0398 MsRPC - ok 07:29:53.0324 0x0398 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 07:29:53.0324 0x0398 mssmbios - ok 07:29:53.0339 0x0398 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 07:29:53.0339 0x0398 MSTEE - ok 07:29:53.0354 0x0398 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 07:29:53.0354 0x0398 MTConfig - ok 07:29:53.0367 0x0398 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 07:29:53.0369 0x0398 Mup - ok 07:29:53.0404 0x0398 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 07:29:53.0432 0x0398 napagent - ok 07:29:53.0484 0x0398 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 07:29:53.0492 0x0398 NativeWifiP - ok 07:29:53.0567 0x0398 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys 07:29:53.0592 0x0398 NDIS - ok 07:29:53.0629 0x0398 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 07:29:53.0632 0x0398 NdisCap - ok 07:29:53.0649 0x0398 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 07:29:53.0652 0x0398 NdisTapi - ok 07:29:53.0662 0x0398 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 07:29:53.0664 0x0398 Ndisuio - ok 07:29:53.0672 0x0398 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 07:29:53.0677 0x0398 NdisWan - ok 07:29:53.0682 0x0398 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 07:29:53.0684 0x0398 NDProxy - ok 07:29:53.0697 0x0398 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 07:29:53.0699 0x0398 NetBIOS - ok 07:29:53.0717 0x0398 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 07:29:53.0722 0x0398 NetBT - ok 07:29:53.0729 0x0398 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe 07:29:53.0729 0x0398 Netlogon - ok 07:29:53.0777 0x0398 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 07:29:53.0784 0x0398 Netman - ok 07:29:53.0834 0x0398 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 07:29:53.0849 0x0398 netprofm - ok 07:29:53.0902 0x0398 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 07:29:53.0904 0x0398 NetTcpPortSharing - ok 07:29:53.0919 0x0398 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 07:29:53.0922 0x0398 nfrd960 - ok 07:29:53.0944 0x0398 [ 8FB3C853E886E1E4D57271672486111C, 2D2954740BF2046FC4C0F1C00FBA9627C356792C0636A51078116876E4886FC6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 07:29:53.0947 0x0398 NisDrv - ok 07:29:53.0987 0x0398 [ 506BAA292F60C2AB637B9AEA3325D7D0, 5535FA9DD208CDBE70999866FAD422F2D9B6F59C33617675867F2B8C923F108E ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe 07:29:53.0997 0x0398 NisSrv - ok 07:29:54.0044 0x0398 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll 07:29:54.0052 0x0398 NlaSvc - ok 07:29:54.0084 0x0398 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 07:29:54.0084 0x0398 Npfs - ok 07:29:54.0114 0x0398 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 07:29:54.0117 0x0398 nsi - ok 07:29:54.0129 0x0398 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 07:29:54.0129 0x0398 nsiproxy - ok 07:29:54.0202 0x0398 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 07:29:54.0252 0x0398 Ntfs - ok 07:29:54.0269 0x0398 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 07:29:54.0269 0x0398 Null - ok 07:29:54.0302 0x0398 [ 1F07B814C0BB5AABA703ABFF1F31F2E8, 07F578686CAE0FAB5462B472A03DD1BC5DFE0D5DA6307895534CECC330C3D220 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 07:29:54.0307 0x0398 NVHDA - ok 07:29:54.0642 0x0398 [ 48D26FF990099C1AD51F81BAEDDB3B98, 15C75B85EC7C1E4B1C2CEF74E400B2BA75FF7952EBBD2A6AD0CD9D0A5D1C5263 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 07:29:54.0854 0x0398 nvlddmkm - ok 07:29:54.0937 0x0398 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 07:29:54.0939 0x0398 nvraid - ok 07:29:54.0957 0x0398 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 07:29:54.0959 0x0398 nvstor - ok 07:29:55.0007 0x0398 [ 708547B06809A454B953803CBC449BC0, DA296BD93460114D90CCA491BBA1002D88AEA6508AAA91493F7B443A0D452EAF ] nvsvc C:\Windows\system32\nvvsvc.exe 07:29:55.0052 0x0398 nvsvc - ok 07:29:55.0149 0x0398 [ 551CE34DAD2DFF0A480781E68B286E4D, 01F1D83350715BF23C246E3CBBBB4556FAC72DEF66F5173586A1FC0D3058FEF0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 07:29:55.0212 0x0398 nvUpdatusService - ok 07:29:55.0237 0x0398 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 07:29:55.0242 0x0398 nv_agp - ok 07:29:55.0252 0x0398 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 07:29:55.0254 0x0398 ohci1394 - ok 07:29:55.0277 0x0398 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 07:29:55.0282 0x0398 ose - ok 07:29:55.0472 0x0398 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 07:29:55.0639 0x0398 osppsvc - ok 07:29:55.0712 0x0398 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 07:29:55.0727 0x0398 p2pimsvc - ok 07:29:55.0779 0x0398 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 07:29:55.0789 0x0398 p2psvc - ok 07:29:55.0852 0x0398 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 07:29:55.0857 0x0398 Parport - ok 07:29:55.0889 0x0398 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 07:29:55.0889 0x0398 partmgr - ok 07:29:55.0914 0x0398 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll 07:29:55.0922 0x0398 PcaSvc - ok 07:29:55.0972 0x0398 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 07:29:55.0974 0x0398 pci - ok 07:29:56.0002 0x0398 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 07:29:56.0002 0x0398 pciide - ok 07:29:56.0022 0x0398 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 07:29:56.0027 0x0398 pcmcia - ok 07:29:56.0037 0x0398 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 07:29:56.0039 0x0398 pcw - ok 07:29:56.0067 0x0398 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 07:29:56.0094 0x0398 PEAUTH - ok 07:29:56.0169 0x0398 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 07:29:56.0169 0x0398 PerfHost - ok 07:29:56.0219 0x0398 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 07:29:56.0262 0x0398 pla - ok 07:29:56.0307 0x0398 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 07:29:56.0319 0x0398 PlugPlay - ok 07:29:56.0329 0x0398 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 07:29:56.0332 0x0398 PNRPAutoReg - ok 07:29:56.0354 0x0398 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 07:29:56.0362 0x0398 PNRPsvc - ok 07:29:56.0404 0x0398 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 07:29:56.0419 0x0398 PolicyAgent - ok 07:29:56.0452 0x0398 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll 07:29:56.0457 0x0398 Power - ok 07:29:56.0469 0x0398 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 07:29:56.0472 0x0398 PptpMiniport - ok 07:29:56.0482 0x0398 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 07:29:56.0484 0x0398 Processor - ok 07:29:56.0514 0x0398 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll 07:29:56.0522 0x0398 ProfSvc - ok 07:29:56.0529 0x0398 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe 07:29:56.0529 0x0398 ProtectedStorage - ok 07:29:56.0544 0x0398 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 07:29:56.0547 0x0398 Psched - ok 07:29:56.0612 0x0398 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 07:29:56.0654 0x0398 ql2300 - ok 07:29:56.0672 0x0398 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 07:29:56.0674 0x0398 ql40xx - ok 07:29:56.0709 0x0398 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 07:29:56.0717 0x0398 QWAVE - ok 07:29:56.0729 0x0398 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 07:29:56.0729 0x0398 QWAVEdrv - ok 07:29:56.0744 0x0398 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 07:29:56.0747 0x0398 RasAcd - ok 07:29:56.0774 0x0398 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 07:29:56.0777 0x0398 RasAgileVpn - ok 07:29:56.0784 0x0398 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 07:29:56.0789 0x0398 RasAuto - ok 07:29:56.0797 0x0398 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 07:29:56.0802 0x0398 Rasl2tp - ok 07:29:56.0824 0x0398 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 07:29:56.0834 0x0398 RasMan - ok 07:29:56.0844 0x0398 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 07:29:56.0847 0x0398 RasPppoe - ok 07:29:56.0854 0x0398 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 07:29:56.0857 0x0398 RasSstp - ok
  17. 07:28:34.0451 0x10dc TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50 07:28:36.0314 0x10dc ============================================================ 07:28:36.0315 0x10dc Current date / time: 2013/11/20 07:28:36.0314 07:28:36.0315 0x10dc SystemInfo: 07:28:36.0315 0x10dc 07:28:36.0315 0x10dc OS Version: 6.1.7601 ServicePack: 1.0 07:28:36.0315 0x10dc Product type: Workstation 07:28:36.0315 0x10dc ComputerName: NICK-PC 07:28:36.0315 0x10dc UserName: Nick 07:28:36.0315 0x10dc Windows directory: C:\Windows 07:28:36.0315 0x10dc System windows directory: C:\Windows 07:28:36.0315 0x10dc Running under WOW64 07:28:36.0315 0x10dc Processor architecture: Intel x64 07:28:36.0315 0x10dc Number of processors: 8 07:28:36.0315 0x10dc Page size: 0x1000 07:28:36.0315 0x10dc Boot type: Normal boot 07:28:36.0315 0x10dc ============================================================ 07:28:36.0397 0x10dc KLMD registered as C:\Windows\system32\drivers\03755916.sys 07:28:36.0522 0x10dc System UUID: {54D5D0CB-B177-8CC8-BCDB-35B04B631FEF} 07:28:36.0815 0x10dc Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 07:28:37.0168 0x10dc Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 07:28:37.0171 0x10dc ============================================================ 07:28:37.0171 0x10dc \Device\Harddisk0\DR0: 07:28:37.0171 0x10dc MBR partitions: 07:28:37.0171 0x10dc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x22EE8800 07:28:37.0208 0x10dc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x260E9800, BlocksNum 0x3145C000 07:28:37.0208 0x10dc \Device\Harddisk1\DR1: 07:28:37.0208 0x10dc MBR partitions: 07:28:37.0208 0x10dc \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2BA9C000 07:28:37.0208 0x10dc \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x2BA9C800, BlocksNum 0x2BAA9EF0 07:28:37.0208 0x10dc ============================================================ 07:28:37.0240 0x10dc C: <-> \Device\Harddisk0\DR0\Partition1 07:28:37.0272 0x10dc D: <-> \Device\Harddisk0\DR0\Partition2 07:28:37.0288 0x10dc E: <-> \Device\Harddisk1\DR1\Partition1 07:28:37.0314 0x10dc F: <-> \Device\Harddisk1\DR1\Partition2 07:28:37.0315 0x10dc ============================================================ 07:28:37.0315 0x10dc Initialize success 07:28:37.0315 0x10dc ============================================================ 07:29:39.0354 0x0398 ============================================================ 07:29:39.0354 0x0398 Scan started 07:29:39.0354 0x0398 Mode: Manual; 07:29:39.0354 0x0398 ============================================================ 07:29:39.0354 0x0398 KSN ping started 07:29:42.0164 0x0398 KSN ping finished: true 07:29:45.0557 0x0398 ================ Scan system memory ======================== 07:29:45.0557 0x0398 System memory - ok 07:29:45.0557 0x0398 ================ Scan services ============================= 07:29:45.0684 0x0398 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 07:29:45.0692 0x0398 1394ohci - ok 07:29:45.0754 0x0398 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 07:29:45.0764 0x0398 ACPI - ok 07:29:45.0782 0x0398 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 07:29:45.0784 0x0398 AcpiPmi - ok 07:29:45.0864 0x0398 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 07:29:45.0867 0x0398 AdobeARMservice - ok 07:29:45.0894 0x0398 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 07:29:45.0907 0x0398 adp94xx - ok 07:29:45.0954 0x0398 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 07:29:45.0964 0x0398 adpahci - ok 07:29:45.0989 0x0398 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 07:29:45.0994 0x0398 adpu320 - ok 07:29:46.0034 0x0398 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 07:29:46.0037 0x0398 AeLookupSvc - ok 07:29:46.0082 0x0398 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys 07:29:46.0097 0x0398 AFD - ok 07:29:46.0114 0x0398 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 07:29:46.0117 0x0398 agp440 - ok 07:29:46.0139 0x0398 [ 16F6F6B7903B913AB41AB848C8BB5658, 7304257048CB42E5274B3F6400F4A053A38E3B70A157662FE9D2B7C5979DE851 ] AiCharger C:\Windows\system32\DRIVERS\AiCharger.sys 07:29:46.0142 0x0398 AiCharger - ok 07:29:46.0152 0x0398 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 07:29:46.0154 0x0398 ALG - ok 07:29:46.0184 0x0398 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 07:29:46.0184 0x0398 aliide - ok 07:29:46.0197 0x0398 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 07:29:46.0197 0x0398 amdide - ok 07:29:46.0214 0x0398 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 07:29:46.0214 0x0398 AmdK8 - ok 07:29:46.0232 0x0398 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 07:29:46.0232 0x0398 AmdPPM - ok 07:29:46.0262 0x0398 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 07:29:46.0264 0x0398 amdsata - ok 07:29:46.0282 0x0398 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 07:29:46.0287 0x0398 amdsbs - ok 07:29:46.0297 0x0398 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 07:29:46.0297 0x0398 amdxata - ok 07:29:46.0322 0x0398 [ 4DE0D5D747A73797C95A97DCCE5018B5, 17EC669675C2E43515EFE2D8BCC9DDFFBE64F99EBFB9A6DAB429F65A2B504560 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys 07:29:46.0322 0x0398 androidusb - ok 07:29:46.0342 0x0398 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys 07:29:46.0344 0x0398 AppID - ok 07:29:46.0372 0x0398 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll 07:29:46.0374 0x0398 AppIDSvc - ok 07:29:46.0404 0x0398 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll 07:29:46.0407 0x0398 Appinfo - ok 07:29:46.0427 0x0398 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 07:29:46.0429 0x0398 arc - ok 07:29:46.0439 0x0398 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 07:29:46.0442 0x0398 arcsas - ok 07:29:46.0492 0x0398 [ A3626C6D3F2DC95497F3F61842D7FD89, BB95BAFD3BE22136595D889DADAD67C68ACE6A6EAB02B026C254D97C9E9F2E62 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe 07:29:46.0494 0x0398 ASLDRService - ok 07:29:46.0502 0x0398 [ 4C016FD76ED5C05E84CA8CAB77993961, 025E7BE9FCEFD6A83F4471BBA0C11F1C11BD5047047D26626DA24EE9A419CDC4 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys 07:29:46.0504 0x0398 ASMMAP64 - ok 07:29:46.0554 0x0398 [ B6EF28ECEE73B624D56DF30AD562AE8D, 8C5F523EAB6B34ACCA882CFA2292312A53C7017BF46BAB797169B565C35C1E9A ] AsusUacSvc C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe 07:29:46.0557 0x0398 AsusUacSvc - ok 07:29:46.0567 0x0398 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 07:29:46.0569 0x0398 AsyncMac - ok 07:29:46.0597 0x0398 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 07:29:46.0597 0x0398 atapi - ok 07:29:46.0629 0x0398 [ CBE61B4494165F458BD87E37181EE934, E95654DCC0F977A3604B6BE435BEE109AC8F9F7494FD3A132F5FB477BBF7B105 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys 07:29:46.0629 0x0398 AthBTPort - ok 07:29:46.0662 0x0398 [ 4C4A576818EA028257C624AE36FF7A03, 951521E0531D943EF55737EE99BBCBD6CC6ABC50530985D774EEBE8564166EDB ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe 07:29:46.0664 0x0398 Atheros Bt&Wlan Coex Agent - ok 07:29:46.0677 0x0398 [ 21753130331188C4B474E1D3B396E629, F0FBE5F3281121DEF634F8273A2F43C5ADE538D9F280D6C9560D212B8B027A38 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe 07:29:46.0679 0x0398 AtherosSvc - ok 07:29:46.0779 0x0398 [ B4174564AD5834A1680610572477878C, EA8687C90FE871AA427B4139BEE425E6DC4CFBC4CF3DCE29695EB9B967D9872F ] athr C:\Windows\system32\DRIVERS\athrx.sys 07:29:46.0859 0x0398 athr - ok 07:29:46.0887 0x0398 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe 07:29:46.0889 0x0398 ATKGFNEXSrv - ok 07:29:46.0929 0x0398 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO_ C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys 07:29:46.0929 0x0398 ATKWMIACPIIO_ - ok 07:29:46.0982 0x0398 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 07:29:47.0004 0x0398 AudioEndpointBuilder - ok 07:29:47.0027 0x0398 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll 07:29:47.0039 0x0398 AudioSrv - ok 07:29:47.0102 0x0398 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 07:29:47.0104 0x0398 AxInstSV - ok 07:29:47.0144 0x0398 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 07:29:47.0162 0x0398 b06bdrv - ok 07:29:47.0199 0x0398 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 07:29:47.0207 0x0398 b57nd60a - ok 07:29:47.0232 0x0398 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 07:29:47.0234 0x0398 BDESVC - ok 07:29:47.0242 0x0398 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 07:29:47.0244 0x0398 Beep - ok 07:29:47.0272 0x0398 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll 07:29:47.0297 0x0398 BFE - ok 07:29:47.0349 0x0398 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll 07:29:47.0404 0x0398 BITS - ok 07:29:47.0447 0x0398 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 07:29:47.0449 0x0398 blbdrive - ok 07:29:47.0482 0x0398 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 07:29:47.0484 0x0398 bowser - ok 07:29:47.0497 0x0398 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 07:29:47.0499 0x0398 BrFiltLo - ok 07:29:47.0507 0x0398 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 07:29:47.0507 0x0398 BrFiltUp - ok 07:29:47.0519 0x0398 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 07:29:47.0522 0x0398 BridgeMP - ok 07:29:47.0557 0x0398 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 07:29:47.0559 0x0398 Browser - ok 07:29:47.0577 0x0398 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 07:29:47.0584 0x0398 Brserid - ok 07:29:47.0647 0x0398 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 07:29:47.0649 0x0398 BrSerWdm - ok 07:29:47.0664 0x0398 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 07:29:47.0667 0x0398 BrUsbMdm - ok 07:29:47.0674 0x0398 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 07:29:47.0677 0x0398 BrUsbSer - ok 07:29:47.0707 0x0398 [ FE70889A85C57A9268101B2DB0474509, 9E957390A52BE4E5642724FEC06A201682F93DD1C6F2C00A5F57351460CF5AE0 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys 07:29:47.0714 0x0398 BTATH_A2DP - ok 07:29:47.0739 0x0398 [ A83A91D07D1FE6BBE7A9DB46CA00434B, 9EF851047189E13954C0F6A325E4843914C423C0D1EDAE21A34AB3A962BBD5AC ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys 07:29:47.0739 0x0398 BTATH_BUS - ok 07:29:47.0782 0x0398 [ C864FF85EE16D61C2BDD5EF76824625F, 6D2FE57688D9E8B4277BF6DA9C219DEB367274364FBE17EFC353CEDB2D7EA35D ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys 07:29:47.0784 0x0398 BTATH_HCRP - ok 07:29:47.0792 0x0398 [ 0DEA505EFB5D771826D177EF8B8A208F, FD8027DA791F04077490749AC5A08F73CCBA1731462579AA9008CD8DD82FBBBC ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys 07:29:47.0794 0x0398 BTATH_LWFLT - ok 07:29:47.0809 0x0398 [ 724C8088C96EFE7A3E63FEC21D4681C0, 4F9B258BE0FEA634A0D93B3892F2F039A7CAD184C9A81DFC2B67B0D4B39C5035 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys 07:29:47.0812 0x0398 BTATH_RCP - ok 07:29:47.0832 0x0398 [ AA0F5AFCF077C5246589B32ECEEAE566, 158C44C53B054890574B32F7D10E507902CCFB006323A850A2E6F78B2565E518 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys 07:29:47.0837 0x0398 BtFilter - ok 07:29:47.0869 0x0398 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 07:29:47.0872 0x0398 BthEnum - ok 07:29:47.0884 0x0398 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 07:29:47.0887 0x0398 BTHMODEM - ok 07:29:47.0899 0x0398 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 07:29:47.0904 0x0398 BthPan - ok 07:29:47.0954 0x0398 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 07:29:47.0969 0x0398 BTHPORT - ok 07:29:48.0022 0x0398 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 07:29:48.0024 0x0398 bthserv - ok 07:29:48.0057 0x0398 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 07:29:48.0059 0x0398 BTHUSB - ok 07:29:48.0077 0x0398 [ 9887CA12F407D7FBC7F48F3678F5F0B6, 1EA21563AE990CE4EF407AB349DE5A66CB93CD7602FE6E450E119ADF0343914E ] BVRPMPR5a64 C:\Windows\system32\drivers\BVRPMPR5a64.SYS 07:29:48.0079 0x0398 BVRPMPR5a64 - ok 07:29:48.0082 0x0398 catchme - ok 07:29:48.0097 0x0398 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 07:29:48.0099 0x0398 cdfs - ok 07:29:48.0139 0x0398 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 07:29:48.0144 0x0398 cdrom - ok 07:29:48.0157 0x0398 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 07:29:48.0159 0x0398 CertPropSvc - ok 07:29:48.0174 0x0398 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 07:29:48.0177 0x0398 circlass - ok 07:29:48.0194 0x0398 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys 07:29:48.0202 0x0398 CLFS - ok 07:29:48.0294 0x0398 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 07:29:48.0297 0x0398 clr_optimization_v2.0.50727_32 - ok 07:29:48.0367 0x0398 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 07:29:48.0372 0x0398 clr_optimization_v2.0.50727_64 - ok 07:29:48.0412 0x0398 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 07:29:48.0417 0x0398 clr_optimization_v4.0.30319_32 - ok 07:29:48.0439 0x0398 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 07:29:48.0442 0x0398 clr_optimization_v4.0.30319_64 - ok 07:29:48.0449 0x0398 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 07:29:48.0452 0x0398 CmBatt - ok 07:29:48.0487 0x0398 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 07:29:48.0487 0x0398 cmdide - ok 07:29:48.0522 0x0398 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys 07:29:48.0539 0x0398 CNG - ok 07:29:48.0609 0x0398 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 07:29:48.0612 0x0398 Compbatt - ok 07:29:48.0619 0x0398 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 07:29:48.0619 0x0398 CompositeBus - ok 07:29:48.0622 0x0398 COMSysApp - ok 07:29:48.0639 0x0398 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 07:29:48.0639 0x0398 crcdisk - ok 07:29:48.0669 0x0398 [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe 07:29:48.0672 0x0398 Creative ALchemy AL6 Licensing Service - ok 07:29:48.0679 0x0398 [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe 07:29:48.0682 0x0398 Creative Audio Engine Licensing Service - ok 07:29:48.0732 0x0398 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll 07:29:48.0737 0x0398 CryptSvc - ok 07:29:48.0822 0x0398 [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE 07:29:48.0839 0x0398 cvhsvc - ok 07:29:48.0882 0x0398 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll 07:29:48.0897 0x0398 DcomLaunch - ok 07:29:48.0934 0x0398 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 07:29:48.0939 0x0398 defragsvc - ok 07:29:48.0952 0x0398 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys 07:29:48.0954 0x0398 DfsC - ok 07:29:48.0992 0x0398 [ B9430166FEB246F6070A62B3554932C9, 677DE435AA5C1FBFC0171384D4B7CED2EA6B0F8567540DB9DE454AC6D4A7C1D7 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys 07:29:48.0994 0x0398 dg_ssudbus - ok 07:29:49.0017 0x0398 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll 07:29:49.0024 0x0398 Dhcp - ok 07:29:49.0034 0x0398 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 07:29:49.0034 0x0398 discache - ok 07:29:49.0042 0x0398 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys 07:29:49.0047 0x0398 Disk - ok 07:29:49.0082 0x0398 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 07:29:49.0087 0x0398 Dnscache - ok 07:29:49.0117 0x0398 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll 07:29:49.0124 0x0398 dot3svc - ok 07:29:49.0162 0x0398 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 07:29:49.0167 0x0398 DPS - ok 07:29:49.0197 0x0398 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 07:29:49.0199 0x0398 drmkaud - ok 07:29:49.0252 0x0398 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 07:29:49.0267 0x0398 DXGKrnl - ok 07:29:49.0272 0x0398 EagleX64 - ok 07:29:49.0287 0x0398 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 07:29:49.0289 0x0398 EapHost - ok 07:29:49.0404 0x0398 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 07:29:49.0487 0x0398 ebdrv - ok 07:29:49.0512 0x0398 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe 07:29:49.0514 0x0398 EFS - ok 07:29:49.0574 0x0398 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 07:29:49.0599 0x0398 ehRecvr - ok 07:29:49.0609 0x0398 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 07:29:49.0614 0x0398 ehSched - ok 07:29:49.0644 0x0398 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 07:29:49.0659 0x0398 elxstor - ok 07:29:49.0734 0x0398 [ 5FBE8C1279B71FD904F8C4491171FAA0, 84C50EDB9022948C8530734C403EEB203F31A12B59481BAE2285135B6F8CE987 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe 07:29:49.0762 0x0398 EpsonCustomerParticipation - ok 07:29:49.0794 0x0398 [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc C:\Windows\system32\EscSvc64.exe 07:29:49.0799 0x0398 EpsonScanSvc - ok 07:29:49.0814 0x0398 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 07:29:49.0817 0x0398 ErrDev - ok 07:29:49.0859 0x0398 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 07:29:49.0869 0x0398 EventSystem - ok 07:29:49.0884 0x0398 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 07:29:49.0889 0x0398 exfat - ok 07:29:49.0907 0x0398 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 07:29:49.0909 0x0398 fastfat - ok 07:29:49.0922 0x0398 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 07:29:49.0922 0x0398 fdc - ok 07:29:49.0937 0x0398 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 07:29:49.0937 0x0398 fdPHost - ok 07:29:49.0944 0x0398 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 07:29:49.0947 0x0398 FDResPub - ok 07:29:49.0957 0x0398 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 07:29:49.0959 0x0398 FileInfo - ok 07:29:49.0962 0x0398 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 07:29:49.0962 0x0398 Filetrace - ok 07:29:49.0974 0x0398 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 07:29:49.0977 0x0398 flpydisk - ok 07:29:49.0997 0x0398 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 07:29:50.0004 0x0398 FltMgr - ok 07:29:50.0037 0x0398 [ 5F3982B51A5DF6F7FF5FD3A4CE0BFF5D, 99F99A96A310B701981B55F287C3685CBBBA3D7B810675C90DD78E4CE4E12180 ] FLxHCIc C:\Windows\system32\DRIVERS\FLxHCIc.sys 07:29:50.0042 0x0398 FLxHCIc - ok 07:29:50.0077 0x0398 [ 1ACB3F124140A2EAB5A1E36286E37C0D, C0D00E1BF4D501A1D6DC97B9DE378867C9FDEFF6B4E17054DC1F1EC8F958D4C8 ] FLxHCIh C:\Windows\system32\DRIVERS\FLxHCIh.sys 07:29:50.0079 0x0398 FLxHCIh - ok 07:29:50.0137 0x0398 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll 07:29:50.0172 0x0398 FontCache - ok 07:29:50.0224 0x0398 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 07:29:50.0224 0x0398 FontCache3.0.0.0 - ok 07:29:50.0247 0x0398 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 07:29:50.0249 0x0398 FsDepends - ok 07:29:50.0277 0x0398 [ 3DFA8D4E50D608F8F732014614C84DD2, 4927B200F1A4FF04C14347A744C878EB11A78AB356B814C196EB6DDF30DDD934 ] fspad_win764 C:\Windows\system32\DRIVERS\fspad_win764.sys 07:29:50.0279 0x0398 fspad_win764 - ok 07:29:50.0307 0x0398 [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 07:29:50.0307 0x0398 fssfltr - ok 07:29:50.0397 0x0398 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe 07:29:50.0442 0x0398 fsssvc - ok 07:29:50.0469 0x0398 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 07:29:50.0469 0x0398 Fs_Rec - ok 07:29:50.0507 0x0398 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 07:29:50.0512 0x0398 fvevol - ok 07:29:50.0527 0x0398 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 07:29:50.0539 0x0398 gagp30kx - ok 07:29:50.0614 0x0398 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll 07:29:50.0639 0x0398 gpsvc - ok 07:29:50.0737 0x0398 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 07:29:50.0739 0x0398 gupdate - ok 07:29:50.0744 0x0398 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 07:29:50.0747 0x0398 gupdatem - ok 07:29:50.0769 0x0398 [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 07:29:50.0774 0x0398 gusvc - ok 07:29:50.0837 0x0398 [ 4635935FC972C582632BF45C26BFCB0E, ABD4AFD71B3C2BD3F741BBE3CEC52C4FA63AC78D353101D2E7DC4DE2725D1CA1 ] HawkesUpdater C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe 07:29:50.0837 0x0398 HawkesUpdater - ok 07:29:50.0849 0x0398 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 07:29:50.0849 0x0398 hcw85cir - ok 07:29:50.0869 0x0398 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
  18. 12:02:17.0227 0x1bc0 MpKsle2b4d148 - ok 12:02:17.0237 0x1bc0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 12:02:17.0237 0x1bc0 mpsdrv - ok 12:02:17.0277 0x1bc0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 12:02:17.0297 0x1bc0 MpsSvc - ok 12:02:17.0317 0x1bc0 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 12:02:17.0327 0x1bc0 MRxDAV - ok 12:02:17.0347 0x1bc0 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 12:02:17.0357 0x1bc0 mrxsmb - ok 12:02:17.0367 0x1bc0 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 12:02:17.0377 0x1bc0 mrxsmb10 - ok 12:02:17.0387 0x1bc0 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 12:02:17.0397 0x1bc0 mrxsmb20 - ok 12:02:17.0407 0x1bc0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 12:02:17.0407 0x1bc0 msahci - ok 12:02:17.0427 0x1bc0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 12:02:17.0427 0x1bc0 msdsm - ok 12:02:17.0437 0x1bc0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 12:02:17.0447 0x1bc0 MSDTC - ok 12:02:17.0457 0x1bc0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 12:02:17.0457 0x1bc0 Msfs - ok 12:02:17.0467 0x1bc0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 12:02:17.0467 0x1bc0 mshidkmdf - ok 12:02:17.0477 0x1bc0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 12:02:17.0477 0x1bc0 msisadrv - ok 12:02:17.0507 0x1bc0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 12:02:17.0507 0x1bc0 MSiSCSI - ok 12:02:17.0507 0x1bc0 msiserver - ok 12:02:17.0527 0x1bc0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 12:02:17.0527 0x1bc0 MSKSSRV - ok 12:02:17.0587 0x1bc0 [ 52D60E642263719B37F1E4A785E676EB, 1ECCB557FC26F120852E02142EDE60A91F1E53EBD6BF3A15676AF2A286B986E6 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe 12:02:17.0587 0x1bc0 MsMpSvc - ok 12:02:17.0597 0x1bc0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 12:02:17.0597 0x1bc0 MSPCLOCK - ok 12:02:17.0607 0x1bc0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 12:02:17.0607 0x1bc0 MSPQM - ok 12:02:17.0617 0x1bc0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 12:02:17.0627 0x1bc0 MsRPC - ok 12:02:17.0637 0x1bc0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 12:02:17.0637 0x1bc0 mssmbios - ok 12:02:17.0657 0x1bc0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 12:02:17.0657 0x1bc0 MSTEE - ok 12:02:17.0667 0x1bc0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 12:02:17.0667 0x1bc0 MTConfig - ok 12:02:17.0687 0x1bc0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 12:02:17.0687 0x1bc0 Mup - ok 12:02:17.0737 0x1bc0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 12:02:17.0747 0x1bc0 napagent - ok 12:02:17.0767 0x1bc0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 12:02:17.0777 0x1bc0 NativeWifiP - ok 12:02:17.0827 0x1bc0 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys 12:02:17.0857 0x1bc0 NDIS - ok 12:02:17.0877 0x1bc0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 12:02:17.0877 0x1bc0 NdisCap - ok 12:02:17.0897 0x1bc0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 12:02:17.0897 0x1bc0 NdisTapi - ok 12:02:17.0907 0x1bc0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 12:02:17.0917 0x1bc0 Ndisuio - ok 12:02:17.0927 0x1bc0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 12:02:17.0937 0x1bc0 NdisWan - ok 12:02:17.0937 0x1bc0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 12:02:17.0937 0x1bc0 NDProxy - ok 12:02:17.0957 0x1bc0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 12:02:17.0957 0x1bc0 NetBIOS - ok 12:02:17.0977 0x1bc0 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 12:02:17.0977 0x1bc0 NetBT - ok 12:02:17.0997 0x1bc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe 12:02:17.0997 0x1bc0 Netlogon - ok 12:02:18.0027 0x1bc0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 12:02:18.0037 0x1bc0 Netman - ok 12:02:18.0057 0x1bc0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 12:02:18.0067 0x1bc0 netprofm - ok 12:02:18.0097 0x1bc0 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 12:02:18.0097 0x1bc0 NetTcpPortSharing - ok 12:02:18.0117 0x1bc0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 12:02:18.0117 0x1bc0 nfrd960 - ok 12:02:18.0147 0x1bc0 [ 8FB3C853E886E1E4D57271672486111C, 2D2954740BF2046FC4C0F1C00FBA9627C356792C0636A51078116876E4886FC6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 12:02:18.0147 0x1bc0 NisDrv - ok 12:02:18.0177 0x1bc0 [ 506BAA292F60C2AB637B9AEA3325D7D0, 5535FA9DD208CDBE70999866FAD422F2D9B6F59C33617675867F2B8C923F108E ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe 12:02:18.0187 0x1bc0 NisSrv - ok 12:02:18.0217 0x1bc0 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll 12:02:18.0227 0x1bc0 NlaSvc - ok 12:02:18.0237 0x1bc0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 12:02:18.0237 0x1bc0 Npfs - ok 12:02:18.0257 0x1bc0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 12:02:18.0257 0x1bc0 nsi - ok 12:02:18.0267 0x1bc0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 12:02:18.0267 0x1bc0 nsiproxy - ok 12:02:18.0337 0x1bc0 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 12:02:18.0377 0x1bc0 Ntfs - ok 12:02:18.0397 0x1bc0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 12:02:18.0397 0x1bc0 Null - ok 12:02:18.0417 0x1bc0 [ 1F07B814C0BB5AABA703ABFF1F31F2E8, 07F578686CAE0FAB5462B472A03DD1BC5DFE0D5DA6307895534CECC330C3D220 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 12:02:18.0427 0x1bc0 NVHDA - ok 12:02:18.0737 0x1bc0 [ 48D26FF990099C1AD51F81BAEDDB3B98, 15C75B85EC7C1E4B1C2CEF74E400B2BA75FF7952EBBD2A6AD0CD9D0A5D1C5263 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 12:02:18.0917 0x1bc0 nvlddmkm - ok 12:02:18.0997 0x1bc0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 12:02:18.0997 0x1bc0 nvraid - ok 12:02:19.0017 0x1bc0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 12:02:19.0017 0x1bc0 nvstor - ok 12:02:19.0067 0x1bc0 [ 708547B06809A454B953803CBC449BC0, DA296BD93460114D90CCA491BBA1002D88AEA6508AAA91493F7B443A0D452EAF ] nvsvc C:\Windows\system32\nvvsvc.exe 12:02:19.0087 0x1bc0 nvsvc - ok 12:02:19.0157 0x1bc0 [ 551CE34DAD2DFF0A480781E68B286E4D, 01F1D83350715BF23C246E3CBBBB4556FAC72DEF66F5173586A1FC0D3058FEF0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 12:02:19.0187 0x1bc0 nvUpdatusService - ok 12:02:19.0207 0x1bc0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 12:02:19.0207 0x1bc0 nv_agp - ok 12:02:19.0217 0x1bc0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 12:02:19.0217 0x1bc0 ohci1394 - ok 12:02:19.0247 0x1bc0 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 12:02:19.0247 0x1bc0 ose - ok 12:02:19.0427 0x1bc0 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 12:02:19.0557 0x1bc0 osppsvc - ok 12:02:19.0607 0x1bc0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 12:02:19.0607 0x1bc0 p2pimsvc - ok 12:02:19.0647 0x1bc0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 12:02:19.0657 0x1bc0 p2psvc - ok 12:02:19.0697 0x1bc0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 12:02:19.0697 0x1bc0 Parport - ok 12:02:19.0717 0x1bc0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 12:02:19.0717 0x1bc0 partmgr - ok 12:02:19.0737 0x1bc0 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll 12:02:19.0747 0x1bc0 PcaSvc - ok 12:02:19.0757 0x1bc0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 12:02:19.0757 0x1bc0 pci - ok 12:02:19.0787 0x1bc0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 12:02:19.0787 0x1bc0 pciide - ok 12:02:19.0807 0x1bc0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 12:02:19.0807 0x1bc0 pcmcia - ok 12:02:19.0817 0x1bc0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 12:02:19.0817 0x1bc0 pcw - ok 12:02:19.0847 0x1bc0 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 12:02:19.0877 0x1bc0 PEAUTH - ok 12:02:19.0947 0x1bc0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 12:02:19.0947 0x1bc0 PerfHost - ok 12:02:19.0997 0x1bc0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 12:02:20.0037 0x1bc0 pla - ok 12:02:20.0077 0x1bc0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 12:02:20.0087 0x1bc0 PlugPlay - ok 12:02:20.0107 0x1bc0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 12:02:20.0107 0x1bc0 PNRPAutoReg - ok 12:02:20.0137 0x1bc0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 12:02:20.0137 0x1bc0 PNRPsvc - ok 12:02:20.0177 0x1bc0 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 12:02:20.0197 0x1bc0 PolicyAgent - ok 12:02:20.0217 0x1bc0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll 12:02:20.0227 0x1bc0 Power - ok 12:02:20.0237 0x1bc0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 12:02:20.0237 0x1bc0 PptpMiniport - ok 12:02:20.0247 0x1bc0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 12:02:20.0247 0x1bc0 Processor - ok 12:02:20.0277 0x1bc0 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll 12:02:20.0287 0x1bc0 ProfSvc - ok 12:02:20.0297 0x1bc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe 12:02:20.0297 0x1bc0 ProtectedStorage - ok 12:02:20.0317 0x1bc0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 12:02:20.0327 0x1bc0 Psched - ok 12:02:20.0377 0x1bc0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 12:02:20.0417 0x1bc0 ql2300 - ok 12:02:20.0437 0x1bc0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 12:02:20.0437 0x1bc0 ql40xx - ok 12:02:20.0467 0x1bc0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 12:02:20.0477 0x1bc0 QWAVE - ok 12:02:20.0487 0x1bc0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 12:02:20.0487 0x1bc0 QWAVEdrv - ok 12:02:20.0497 0x1bc0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 12:02:20.0497 0x1bc0 RasAcd - ok 12:02:20.0527 0x1bc0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 12:02:20.0527 0x1bc0 RasAgileVpn - ok 12:02:20.0537 0x1bc0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 12:02:20.0537 0x1bc0 RasAuto - ok 12:02:20.0547 0x1bc0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 12:02:20.0547 0x1bc0 Rasl2tp - ok 12:02:20.0577 0x1bc0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 12:02:20.0587 0x1bc0 RasMan - ok 12:02:20.0607 0x1bc0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 12:02:20.0617 0x1bc0 RasPppoe - ok 12:02:20.0617 0x1bc0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 12:02:20.0627 0x1bc0 RasSstp - ok 12:02:20.0657 0x1bc0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 12:02:20.0657 0x1bc0 rdbss - ok 12:02:20.0667 0x1bc0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 12:02:20.0667 0x1bc0 rdpbus - ok 12:02:20.0687 0x1bc0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 12:02:20.0687 0x1bc0 RDPCDD - ok 12:02:20.0697 0x1bc0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 12:02:20.0697 0x1bc0 RDPENCDD - ok 12:02:20.0707 0x1bc0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 12:02:20.0707 0x1bc0 RDPREFMP - ok 12:02:20.0737 0x1bc0 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 12:02:20.0737 0x1bc0 RdpVideoMiniport - ok 12:02:20.0767 0x1bc0 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 12:02:20.0767 0x1bc0 RDPWD - ok 12:02:20.0787 0x1bc0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 12:02:20.0787 0x1bc0 rdyboost - ok 12:02:20.0807 0x1bc0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 12:02:20.0807 0x1bc0 RemoteRegistry - ok 12:02:20.0817 0x1bc0 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 12:02:20.0827 0x1bc0 RFCOMM - ok 12:02:20.0857 0x1bc0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 12:02:20.0857 0x1bc0 RpcEptMapper - ok 12:02:20.0887 0x1bc0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 12:02:20.0887 0x1bc0 RpcLocator - ok 12:02:20.0917 0x1bc0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll 12:02:20.0927 0x1bc0 RpcSs - ok 12:02:20.0937 0x1bc0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 12:02:20.0937 0x1bc0 rspndr - ok 12:02:20.0967 0x1bc0 [ E57FAC2CDB73F06586ED2ED310B80932, 9BFC866E8AF555810127D1B95D1950BAC645C2553A46620417F6BA19FF5706B7 ] RSUSBVSTOR C:\Windows\system32\Drivers\RtsUVStor.sys 12:02:20.0977 0x1bc0 RSUSBVSTOR - ok 12:02:21.0017 0x1bc0 [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 12:02:21.0017 0x1bc0 RTL8167 - ok 12:02:21.0027 0x1bc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe 12:02:21.0027 0x1bc0 SamSs - ok 12:02:21.0037 0x1bc0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 12:02:21.0047 0x1bc0 sbp2port - ok 12:02:21.0087 0x1bc0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 12:02:21.0087 0x1bc0 SCardSvr - ok 12:02:21.0097 0x1bc0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 12:02:21.0097 0x1bc0 scfilter - ok 12:02:21.0157 0x1bc0 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll 12:02:21.0187 0x1bc0 Schedule - ok 12:02:21.0217 0x1bc0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 12:02:21.0217 0x1bc0 SCPolicySvc - ok 12:02:21.0227 0x1bc0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 12:02:21.0237 0x1bc0 SDRSVC - ok 12:02:21.0247 0x1bc0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 12:02:21.0247 0x1bc0 secdrv - ok 12:02:21.0257 0x1bc0 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 12:02:21.0257 0x1bc0 seclogon - ok 12:02:21.0277 0x1bc0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll 12:02:21.0277 0x1bc0 SENS - ok 12:02:21.0277 0x1bc0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 12:02:21.0277 0x1bc0 SensrSvc - ok 12:02:21.0297 0x1bc0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys 12:02:21.0297 0x1bc0 Serenum - ok 12:02:21.0307 0x1bc0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys 12:02:21.0317 0x1bc0 Serial - ok 12:02:21.0317 0x1bc0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 12:02:21.0327 0x1bc0 sermouse - ok 12:02:21.0337 0x1bc0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll 12:02:21.0337 0x1bc0 SessionEnv - ok 12:02:21.0347 0x1bc0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 12:02:21.0347 0x1bc0 sffdisk - ok 12:02:21.0367 0x1bc0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 12:02:21.0367 0x1bc0 sffp_mmc - ok 12:02:21.0377 0x1bc0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 12:02:21.0377 0x1bc0 sffp_sd - ok 12:02:21.0387 0x1bc0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 12:02:21.0397 0x1bc0 sfloppy - ok 12:02:21.0427 0x1bc0 [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys 12:02:21.0447 0x1bc0 Sftfs - ok 12:02:21.0487 0x1bc0 [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe 12:02:21.0497 0x1bc0 sftlist - ok 12:02:21.0517 0x1bc0 [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys 12:02:21.0517 0x1bc0 Sftplay - ok 12:02:21.0527 0x1bc0 [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys 12:02:21.0527 0x1bc0 Sftredir - ok 12:02:21.0537 0x1bc0 [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys 12:02:21.0537 0x1bc0 Sftvol - ok 12:02:21.0557 0x1bc0 [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe 12:02:21.0557 0x1bc0 sftvsa - ok 12:02:21.0597 0x1bc0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 12:02:21.0597 0x1bc0 SharedAccess - ok 12:02:21.0627 0x1bc0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 12:02:21.0627 0x1bc0 ShellHWDetection - ok 12:02:21.0637 0x1bc0 [ 1BC348CF6BAA90EC8E533EF6E6A69933, 2B26F6EB701F48E092DED6A7B888F24736F2899EE81D54DD4B1E9DF7CFD36E7A ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys 12:02:21.0647 0x1bc0 SiSGbeLH - ok 12:02:21.0657 0x1bc0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 12:02:21.0657 0x1bc0 SiSRaid2 - ok 12:02:21.0667 0x1bc0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 12:02:21.0677 0x1bc0 SiSRaid4 - ok 12:02:21.0707 0x1bc0 [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 12:02:21.0717 0x1bc0 SkypeUpdate - ok 12:02:21.0727 0x1bc0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 12:02:21.0737 0x1bc0 Smb - ok 12:02:21.0747 0x1bc0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 12:02:21.0747 0x1bc0 SNMPTRAP - ok 12:02:21.0757 0x1bc0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 12:02:21.0757 0x1bc0 spldr - ok 12:02:21.0787 0x1bc0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe 12:02:21.0807 0x1bc0 Spooler - ok 12:02:21.0897 0x1bc0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 12:02:21.0987 0x1bc0 sppsvc - ok 12:02:22.0007 0x1bc0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 12:02:22.0007 0x1bc0 sppuinotify - ok 12:02:22.0037 0x1bc0 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys 12:02:22.0047 0x1bc0 srv - ok 12:02:22.0067 0x1bc0 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 12:02:22.0077 0x1bc0 srv2 - ok 12:02:22.0087 0x1bc0 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 12:02:22.0097 0x1bc0 srvnet - ok 12:02:22.0127 0x1bc0 [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys 12:02:22.0127 0x1bc0 ssadbus - ok 12:02:22.0137 0x1bc0 [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys 12:02:22.0147 0x1bc0 ssadmdfl - ok 12:02:22.0157 0x1bc0 [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys 12:02:22.0167 0x1bc0 ssadmdm - ok 12:02:22.0187 0x1bc0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 12:02:22.0187 0x1bc0 SSDPSRV - ok 12:02:22.0207 0x1bc0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 12:02:22.0207 0x1bc0 SstpSvc - ok 12:02:22.0237 0x1bc0 [ C692C94FE55CAD0633440236022C27B3, 9A21E9B2EB96DC8C58DE060EEAFC2FD71AB9C539039DAAD5F7380556E2D1D69B ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys 12:02:22.0247 0x1bc0 ssudmdm - ok 12:02:22.0307 0x1bc0 [ C321084609422404F8DD1513C988DBEA, 97FCF4D5AD018B50B149E0DDDEC7581E382AB5A15018373B0754ABFC7A2077A1 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 12:02:22.0317 0x1bc0 Stereo Service - ok 12:02:22.0337 0x1bc0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 12:02:22.0337 0x1bc0 stexstor - ok 12:02:22.0377 0x1bc0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 12:02:22.0407 0x1bc0 stisvc - ok 12:02:22.0417 0x1bc0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 12:02:22.0417 0x1bc0 swenum - ok 12:02:22.0437 0x1bc0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 12:02:22.0467 0x1bc0 swprv - ok 12:02:22.0527 0x1bc0 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll 12:02:22.0577 0x1bc0 SysMain - ok 12:02:22.0597 0x1bc0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 12:02:22.0597 0x1bc0 TabletInputService - ok 12:02:22.0617 0x1bc0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 12:02:22.0627 0x1bc0 TapiSrv - ok 12:02:22.0637 0x1bc0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 12:02:22.0637 0x1bc0 TBS - ok 12:02:22.0707 0x1bc0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys 12:02:22.0757 0x1bc0 Tcpip - ok 12:02:22.0817 0x1bc0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 12:02:22.0847 0x1bc0 TCPIP6 - ok 12:02:22.0877 0x1bc0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 12:02:22.0877 0x1bc0 tcpipreg - ok 12:02:22.0897 0x1bc0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 12:02:22.0897 0x1bc0 TDPIPE - ok 12:02:22.0927 0x1bc0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 12:02:22.0927 0x1bc0 TDTCP - ok 12:02:22.0937 0x1bc0 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 12:02:22.0947 0x1bc0 tdx - ok 12:02:22.0957 0x1bc0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 12:02:22.0957 0x1bc0 TermDD - ok 12:02:22.0977 0x1bc0 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll 12:02:23.0007 0x1bc0 TermService - ok 12:02:23.0017 0x1bc0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 12:02:23.0027 0x1bc0 Themes - ok 12:02:23.0037 0x1bc0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 12:02:23.0037 0x1bc0 THREADORDER - ok 12:02:23.0047 0x1bc0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 12:02:23.0057 0x1bc0 TrkWks - ok 12:02:23.0107 0x1bc0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 12:02:23.0117 0x1bc0 TrustedInstaller - ok 12:02:23.0137 0x1bc0 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 12:02:23.0137 0x1bc0 tssecsrv - ok 12:02:23.0167 0x1bc0 [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 12:02:23.0167 0x1bc0 TsUsbFlt - ok 12:02:23.0197 0x1bc0 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 12:02:23.0197 0x1bc0 TsUsbGD - ok 12:02:23.0207 0x1bc0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 12:02:23.0217 0x1bc0 tunnel - ok 12:02:23.0237 0x1bc0 [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys 12:02:23.0237 0x1bc0 TurboB - ok 12:02:23.0277 0x1bc0 [ 600B406A04D90F577FEA8A88D7379F08, 77CC8E8AFB6F571A42D916C0B2FEFFD3A7A32A455C78228B407C6C9B6DED8CAD ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe 12:02:23.0277 0x1bc0 TurboBoost - ok 12:02:23.0287 0x1bc0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 12:02:23.0287 0x1bc0 uagp35 - ok 12:02:23.0307 0x1bc0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 12:02:23.0317 0x1bc0 udfs - ok 12:02:23.0357 0x1bc0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 12:02:23.0357 0x1bc0 UI0Detect - ok 12:02:23.0367 0x1bc0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 12:02:23.0377 0x1bc0 uliagpkx - ok 12:02:23.0387 0x1bc0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 12:02:23.0387 0x1bc0 umbus - ok 12:02:23.0407 0x1bc0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys 12:02:23.0407 0x1bc0 UmPass - ok 12:02:23.0507 0x1bc0 [ EB79C6C91A99930015EF29AE7FA802D1, 96D00BA330854C7763BF385D84D47C3D1B87C4085A91D73B558C86829930DC4B ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe 12:02:23.0597 0x1bc0 UNS - ok 12:02:23.0677 0x1bc0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 12:02:23.0687 0x1bc0 upnphost - ok 12:02:23.0717 0x1bc0 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 12:02:23.0717 0x1bc0 usbaudio - ok 12:02:23.0757 0x1bc0 [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 12:02:23.0757 0x1bc0 usbccgp - ok 12:02:23.0767 0x1bc0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 12:02:23.0777 0x1bc0 usbcir - ok 12:02:23.0807 0x1bc0 [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci C:\Windows\system32\drivers\usbehci.sys 12:02:23.0807 0x1bc0 usbehci - ok 12:02:23.0837 0x1bc0 [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 12:02:23.0847 0x1bc0 usbhub - ok 12:02:23.0867 0x1bc0 [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci C:\Windows\system32\drivers\usbohci.sys 12:02:23.0867 0x1bc0 usbohci - ok 12:02:23.0877 0x1bc0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys 12:02:23.0887 0x1bc0 usbprint - ok 12:02:23.0917 0x1bc0 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 12:02:23.0917 0x1bc0 USBSTOR - ok 12:02:23.0937 0x1bc0 [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 12:02:23.0947 0x1bc0 usbuhci - ok 12:02:23.0957 0x1bc0 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 12:02:23.0957 0x1bc0 usbvideo - ok 12:02:23.0967 0x1bc0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 12:02:23.0977 0x1bc0 UxSms - ok 12:02:23.0987 0x1bc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe 12:02:23.0987 0x1bc0 VaultSvc - ok 12:02:23.0997 0x1bc0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 12:02:23.0997 0x1bc0 vdrvroot - ok 12:02:24.0017 0x1bc0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 12:02:24.0027 0x1bc0 vds - ok 12:02:24.0047 0x1bc0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 12:02:24.0047 0x1bc0 vga - ok 12:02:24.0067 0x1bc0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 12:02:24.0067 0x1bc0 VgaSave - ok 12:02:24.0097 0x1bc0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 12:02:24.0107 0x1bc0 vhdmp - ok 12:02:24.0127 0x1bc0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 12:02:24.0127 0x1bc0 viaide - ok 12:02:24.0157 0x1bc0 [ C37CE43FB54066FFB540729C6E6E194E, EF96BFF5696C1BE3078B748CD08352773430C7042BE89E439EE67046E46D293B ] VideAceWindowsService C:\ExpressGateUtil\VAWinService.exe 12:02:24.0167 0x1bc0 VideAceWindowsService - ok 12:02:24.0177 0x1bc0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 12:02:24.0177 0x1bc0 volmgr - ok 12:02:24.0197 0x1bc0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 12:02:24.0207 0x1bc0 volmgrx - ok 12:02:24.0227 0x1bc0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys 12:02:24.0227 0x1bc0 volsnap - ok 12:02:24.0247 0x1bc0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 12:02:24.0247 0x1bc0 vsmraid - ok 12:02:24.0297 0x1bc0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 12:02:24.0347 0x1bc0 VSS - ok 12:02:24.0347 0x1bc0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 12:02:24.0347 0x1bc0 vwifibus - ok 12:02:24.0357 0x1bc0 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 12:02:24.0357 0x1bc0 vwififlt - ok 12:02:24.0377 0x1bc0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 12:02:24.0387 0x1bc0 W32Time - ok 12:02:24.0397 0x1bc0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 12:02:24.0397 0x1bc0 WacomPen - ok 12:02:24.0417 0x1bc0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 12:02:24.0417 0x1bc0 WANARP - ok 12:02:24.0417 0x1bc0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 12:02:24.0417 0x1bc0 Wanarpv6 - ok 12:02:24.0487 0x1bc0 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 12:02:24.0517 0x1bc0 WatAdminSvc - ok 12:02:24.0577 0x1bc0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 12:02:24.0617 0x1bc0 wbengine - ok 12:02:24.0637 0x1bc0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 12:02:24.0647 0x1bc0 WbioSrvc - ok 12:02:24.0657 0x1bc0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 12:02:24.0667 0x1bc0 wcncsvc - ok 12:02:24.0687 0x1bc0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 12:02:24.0687 0x1bc0 WcsPlugInService - ok 12:02:24.0697 0x1bc0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 12:02:24.0697 0x1bc0 Wd - ok 12:02:24.0747 0x1bc0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 12:02:24.0767 0x1bc0 Wdf01000 - ok 12:02:24.0777 0x1bc0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll 12:02:24.0777 0x1bc0 WdiServiceHost - ok 12:02:24.0787 0x1bc0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll 12:02:24.0787 0x1bc0 WdiSystemHost - ok 12:02:24.0817 0x1bc0 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll 12:02:24.0827 0x1bc0 WebClient - ok 12:02:24.0857 0x1bc0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 12:02:24.0867 0x1bc0 Wecsvc - ok 12:02:24.0887 0x1bc0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 12:02:24.0887 0x1bc0 wercplsupport - ok 12:02:24.0897 0x1bc0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 12:02:24.0907 0x1bc0 WerSvc - ok 12:02:24.0937 0x1bc0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 12:02:24.0937 0x1bc0 WfpLwf - ok 12:02:24.0957 0x1bc0 [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys 12:02:24.0967 0x1bc0 WimFltr - ok 12:02:24.0977 0x1bc0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 12:02:24.0977 0x1bc0 WIMMount - ok 12:02:24.0997 0x1bc0 WinDefend - ok 12:02:24.0997 0x1bc0 WinHttpAutoProxySvc - ok 12:02:25.0057 0x1bc0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 12:02:25.0057 0x1bc0 Winmgmt - ok 12:02:25.0157 0x1bc0 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll 12:02:25.0217 0x1bc0 WinRM - ok 12:02:25.0267 0x1bc0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 12:02:25.0267 0x1bc0 WinUsb - ok 12:02:25.0307 0x1bc0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 12:02:25.0337 0x1bc0 Wlansvc - ok 12:02:25.0397 0x1bc0 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 12:02:25.0397 0x1bc0 wlcrasvc - ok 12:02:25.0507 0x1bc0 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 12:02:25.0617 0x1bc0 wlidsvc - ok 12:02:25.0657 0x1bc0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 12:02:25.0657 0x1bc0 WmiAcpi - ok 12:02:25.0677 0x1bc0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 12:02:25.0687 0x1bc0 wmiApSrv - ok 12:02:25.0697 0x1bc0 WMPNetworkSvc - ok 12:02:25.0727 0x1bc0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 12:02:25.0727 0x1bc0 WPCSvc - ok 12:02:25.0737 0x1bc0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 12:02:25.0737 0x1bc0 WPDBusEnum - ok 12:02:25.0767 0x1bc0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 12:02:25.0767 0x1bc0 ws2ifsl - ok 12:02:25.0797 0x1bc0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll 12:02:25.0797 0x1bc0 wscsvc - ok 12:02:25.0797 0x1bc0 WSearch - ok 12:02:25.0877 0x1bc0 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll 12:02:25.0977 0x1bc0 wuauserv - ok 12:02:26.0007 0x1bc0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 12:02:26.0007 0x1bc0 WudfPf - ok 12:02:26.0027 0x1bc0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 12:02:26.0027 0x1bc0 WUDFRd - ok 12:02:26.0047 0x1bc0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 12:02:26.0057 0x1bc0 wudfsvc - ok 12:02:26.0087 0x1bc0 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll 12:02:26.0087 0x1bc0 WwanSvc - ok 12:02:26.0097 0x1bc0 ================ Scan global =============================== 12:02:26.0157 0x1bc0 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll 12:02:26.0177 0x1bc0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 12:02:26.0197 0x1bc0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 12:02:26.0217 0x1bc0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 12:02:26.0247 0x1bc0 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe 12:02:26.0257 0x1bc0 [ Global ] - ok 12:02:26.0257 0x1bc0 ================ Scan MBR ================================== 12:02:26.0257 0x1bc0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 12:02:26.0257 0x1bc0 Suspicious mbr (Forged): \Device\Harddisk0\DR0 12:02:26.0317 0x1bc0 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c ( 0 ) 12:02:26.0317 0x1bc0 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected 12:02:29.0097 0x1bc0 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk1\DR1 12:02:29.0097 0x1bc0 \Device\Harddisk1\DR1 - ok 12:02:29.0097 0x1bc0 ================ Scan VBR ================================== 12:02:29.0107 0x1bc0 [ 134AF79D956C7368B5C0828774A56B1C ] \Device\Harddisk0\DR0\Partition1 12:02:29.0107 0x1bc0 \Device\Harddisk0\DR0\Partition1 - ok 12:02:29.0117 0x1bc0 [ 87E889C9619303616BBA2F8E2C776068 ] \Device\Harddisk0\DR0\Partition2 12:02:29.0127 0x1bc0 \Device\Harddisk0\DR0\Partition2 - ok 12:02:29.0127 0x1bc0 [ 0F575F966C9C24D4F8A7013CBA2172BD ] \Device\Harddisk1\DR1\Partition1 12:02:29.0127 0x1bc0 \Device\Harddisk1\DR1\Partition1 - ok 12:02:29.0127 0x1bc0 [ 1C05BDFB0CE1CA53B0A82A8A70ED29F0 ] \Device\Harddisk1\DR1\Partition2 12:02:29.0127 0x1bc0 \Device\Harddisk1\DR1\Partition2 - ok 12:02:29.0127 0x1bc0 Waiting for KSN requests completion. In queue: 28 12:02:30.0127 0x1bc0 Waiting for KSN requests completion. In queue: 28 12:02:31.0127 0x1bc0 Waiting for KSN requests completion. In queue: 28 12:02:32.0137 0x1bc0 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.3.219.0 ), 0x60000 ( disabled : updated ) 12:02:32.0157 0x1bc0 Win FW state via NFP2: enabled 12:02:34.0947 0x1bc0 ============================================================ 12:02:34.0947 0x1bc0 Scan finished 12:02:34.0947 0x1bc0 ============================================================ 12:02:34.0947 0x030c Detected object count: 1 12:02:34.0947 0x030c Actual detected object count: 1 12:04:32.0204 0x030c \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user 12:04:32.0204 0x030c \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip
  19. 12:01:32.0113 0x095c TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50 12:01:35.0026 0x095c ============================================================ 12:01:35.0026 0x095c Current date / time: 2013/11/19 12:01:35.0026 12:01:35.0026 0x095c SystemInfo: 12:01:35.0026 0x095c 12:01:35.0026 0x095c OS Version: 6.1.7601 ServicePack: 1.0 12:01:35.0026 0x095c Product type: Workstation 12:01:35.0026 0x095c ComputerName: NICK-PC 12:01:35.0026 0x095c UserName: Nick 12:01:35.0026 0x095c Windows directory: C:\Windows 12:01:35.0026 0x095c System windows directory: C:\Windows 12:01:35.0026 0x095c Running under WOW64 12:01:35.0026 0x095c Processor architecture: Intel x64 12:01:35.0026 0x095c Number of processors: 8 12:01:35.0026 0x095c Page size: 0x1000 12:01:35.0026 0x095c Boot type: Normal boot 12:01:35.0026 0x095c ============================================================ 12:01:35.0917 0x095c KLMD registered as C:\Windows\system32\drivers\38290064.sys 12:01:36.0064 0x095c System UUID: {54D5D0CB-B177-8CC8-BCDB-35B04B631FEF} 12:01:36.0347 0x095c Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 12:01:36.0690 0x095c Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 12:01:36.0694 0x095c ============================================================ 12:01:36.0694 0x095c \Device\Harddisk0\DR0: 12:01:36.0695 0x095c MBR partitions: 12:01:36.0695 0x095c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x22EE8800 12:01:36.0742 0x095c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x260E9800, BlocksNum 0x3145C000 12:01:36.0742 0x095c \Device\Harddisk1\DR1: 12:01:36.0742 0x095c MBR partitions: 12:01:36.0742 0x095c \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2BA9C000 12:01:36.0742 0x095c \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x2BA9C800, BlocksNum 0x2BAA9EF0 12:01:36.0742 0x095c ============================================================ 12:01:36.0766 0x095c C: <-> \Device\Harddisk0\DR0\Partition1 12:01:36.0798 0x095c D: <-> \Device\Harddisk0\DR0\Partition2 12:01:36.0824 0x095c E: <-> \Device\Harddisk1\DR1\Partition1 12:01:36.0851 0x095c F: <-> \Device\Harddisk1\DR1\Partition2 12:01:36.0851 0x095c ============================================================ 12:01:36.0851 0x095c Initialize success 12:01:36.0851 0x095c ============================================================ 12:02:06.0287 0x1bc0 ============================================================ 12:02:06.0287 0x1bc0 Scan started 12:02:06.0287 0x1bc0 Mode: Manual; 12:02:06.0287 0x1bc0 ============================================================ 12:02:06.0287 0x1bc0 KSN ping started 12:02:09.0017 0x1bc0 KSN ping finished: true 12:02:10.0327 0x1bc0 ================ Scan system memory ======================== 12:02:10.0327 0x1bc0 System memory - ok 12:02:10.0327 0x1bc0 ================ Scan services ============================= 12:02:10.0447 0x1bc0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 12:02:10.0457 0x1bc0 1394ohci - ok 12:02:10.0497 0x1bc0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 12:02:10.0507 0x1bc0 ACPI - ok 12:02:10.0537 0x1bc0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 12:02:10.0537 0x1bc0 AcpiPmi - ok 12:02:10.0617 0x1bc0 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 12:02:10.0627 0x1bc0 AdobeARMservice - ok 12:02:10.0667 0x1bc0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 12:02:10.0687 0x1bc0 adp94xx - ok 12:02:10.0737 0x1bc0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 12:02:10.0747 0x1bc0 adpahci - ok 12:02:10.0777 0x1bc0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 12:02:10.0787 0x1bc0 adpu320 - ok 12:02:10.0827 0x1bc0 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 12:02:10.0827 0x1bc0 AeLookupSvc - ok 12:02:10.0867 0x1bc0 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys 12:02:10.0877 0x1bc0 AFD - ok 12:02:10.0907 0x1bc0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 12:02:10.0907 0x1bc0 agp440 - ok 12:02:10.0927 0x1bc0 [ 16F6F6B7903B913AB41AB848C8BB5658, 7304257048CB42E5274B3F6400F4A053A38E3B70A157662FE9D2B7C5979DE851 ] AiCharger C:\Windows\system32\DRIVERS\AiCharger.sys 12:02:10.0927 0x1bc0 AiCharger - ok 12:02:10.0947 0x1bc0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 12:02:10.0947 0x1bc0 ALG - ok 12:02:10.0977 0x1bc0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 12:02:10.0977 0x1bc0 aliide - ok 12:02:10.0987 0x1bc0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 12:02:10.0987 0x1bc0 amdide - ok 12:02:11.0007 0x1bc0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 12:02:11.0007 0x1bc0 AmdK8 - ok 12:02:11.0017 0x1bc0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 12:02:11.0027 0x1bc0 AmdPPM - ok 12:02:11.0047 0x1bc0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 12:02:11.0047 0x1bc0 amdsata - ok 12:02:11.0067 0x1bc0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 12:02:11.0067 0x1bc0 amdsbs - ok 12:02:11.0077 0x1bc0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 12:02:11.0077 0x1bc0 amdxata - ok 12:02:11.0107 0x1bc0 [ 4DE0D5D747A73797C95A97DCCE5018B5, 17EC669675C2E43515EFE2D8BCC9DDFFBE64F99EBFB9A6DAB429F65A2B504560 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys 12:02:11.0107 0x1bc0 androidusb - ok 12:02:11.0117 0x1bc0 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys 12:02:11.0117 0x1bc0 AppID - ok 12:02:11.0167 0x1bc0 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll 12:02:11.0167 0x1bc0 AppIDSvc - ok 12:02:11.0187 0x1bc0 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll 12:02:11.0187 0x1bc0 Appinfo - ok 12:02:11.0197 0x1bc0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 12:02:11.0207 0x1bc0 arc - ok 12:02:11.0217 0x1bc0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 12:02:11.0217 0x1bc0 arcsas - ok 12:02:11.0257 0x1bc0 [ A3626C6D3F2DC95497F3F61842D7FD89, BB95BAFD3BE22136595D889DADAD67C68ACE6A6EAB02B026C254D97C9E9F2E62 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe 12:02:11.0257 0x1bc0 ASLDRService - ok 12:02:11.0267 0x1bc0 [ 4C016FD76ED5C05E84CA8CAB77993961, 025E7BE9FCEFD6A83F4471BBA0C11F1C11BD5047047D26626DA24EE9A419CDC4 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys 12:02:11.0267 0x1bc0 ASMMAP64 - ok 12:02:11.0317 0x1bc0 [ B6EF28ECEE73B624D56DF30AD562AE8D, 8C5F523EAB6B34ACCA882CFA2292312A53C7017BF46BAB797169B565C35C1E9A ] AsusUacSvc C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe 12:02:11.0317 0x1bc0 AsusUacSvc - ok 12:02:11.0347 0x1bc0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 12:02:11.0347 0x1bc0 AsyncMac - ok 12:02:11.0357 0x1bc0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 12:02:11.0367 0x1bc0 atapi - ok 12:02:11.0387 0x1bc0 [ CBE61B4494165F458BD87E37181EE934, E95654DCC0F977A3604B6BE435BEE109AC8F9F7494FD3A132F5FB477BBF7B105 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys 12:02:11.0387 0x1bc0 AthBTPort - ok 12:02:11.0417 0x1bc0 [ 4C4A576818EA028257C624AE36FF7A03, 951521E0531D943EF55737EE99BBCBD6CC6ABC50530985D774EEBE8564166EDB ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe 12:02:11.0417 0x1bc0 Atheros Bt&Wlan Coex Agent - ok 12:02:11.0427 0x1bc0 [ 21753130331188C4B474E1D3B396E629, F0FBE5F3281121DEF634F8273A2F43C5ADE538D9F280D6C9560D212B8B027A38 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe 12:02:11.0427 0x1bc0 AtherosSvc - ok 12:02:11.0517 0x1bc0 [ B4174564AD5834A1680610572477878C, EA8687C90FE871AA427B4139BEE425E6DC4CFBC4CF3DCE29695EB9B967D9872F ] athr C:\Windows\system32\DRIVERS\athrx.sys 12:02:11.0617 0x1bc0 athr - ok 12:02:11.0627 0x1bc0 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe 12:02:11.0627 0x1bc0 ATKGFNEXSrv - ok 12:02:11.0667 0x1bc0 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO_ C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys 12:02:11.0667 0x1bc0 ATKWMIACPIIO_ - ok 12:02:11.0707 0x1bc0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 12:02:11.0737 0x1bc0 AudioEndpointBuilder - ok 12:02:11.0757 0x1bc0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll 12:02:11.0767 0x1bc0 AudioSrv - ok 12:02:11.0787 0x1bc0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 12:02:11.0787 0x1bc0 AxInstSV - ok 12:02:11.0817 0x1bc0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 12:02:11.0837 0x1bc0 b06bdrv - ok 12:02:11.0867 0x1bc0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 12:02:11.0877 0x1bc0 b57nd60a - ok 12:02:11.0897 0x1bc0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 12:02:11.0897 0x1bc0 BDESVC - ok 12:02:11.0907 0x1bc0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 12:02:11.0907 0x1bc0 Beep - ok 12:02:11.0937 0x1bc0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll 12:02:11.0967 0x1bc0 BFE - ok 12:02:12.0027 0x1bc0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll 12:02:12.0057 0x1bc0 BITS - ok 12:02:12.0097 0x1bc0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 12:02:12.0097 0x1bc0 blbdrive - ok 12:02:12.0127 0x1bc0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 12:02:12.0137 0x1bc0 bowser - ok 12:02:12.0147 0x1bc0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 12:02:12.0147 0x1bc0 BrFiltLo - ok 12:02:12.0157 0x1bc0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 12:02:12.0157 0x1bc0 BrFiltUp - ok 12:02:12.0167 0x1bc0 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 12:02:12.0167 0x1bc0 BridgeMP - ok 12:02:12.0197 0x1bc0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 12:02:12.0197 0x1bc0 Browser - ok 12:02:12.0217 0x1bc0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 12:02:12.0227 0x1bc0 Brserid - ok 12:02:12.0257 0x1bc0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 12:02:12.0257 0x1bc0 BrSerWdm - ok 12:02:12.0267 0x1bc0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 12:02:12.0267 0x1bc0 BrUsbMdm - ok 12:02:12.0277 0x1bc0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 12:02:12.0277 0x1bc0 BrUsbSer - ok 12:02:12.0307 0x1bc0 [ FE70889A85C57A9268101B2DB0474509, 9E957390A52BE4E5642724FEC06A201682F93DD1C6F2C00A5F57351460CF5AE0 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys 12:02:12.0317 0x1bc0 BTATH_A2DP - ok 12:02:12.0337 0x1bc0 [ A83A91D07D1FE6BBE7A9DB46CA00434B, 9EF851047189E13954C0F6A325E4843914C423C0D1EDAE21A34AB3A962BBD5AC ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys 12:02:12.0337 0x1bc0 BTATH_BUS - ok 12:02:12.0357 0x1bc0 [ C864FF85EE16D61C2BDD5EF76824625F, 6D2FE57688D9E8B4277BF6DA9C219DEB367274364FBE17EFC353CEDB2D7EA35D ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys 12:02:12.0357 0x1bc0 BTATH_HCRP - ok 12:02:12.0367 0x1bc0 [ 0DEA505EFB5D771826D177EF8B8A208F, FD8027DA791F04077490749AC5A08F73CCBA1731462579AA9008CD8DD82FBBBC ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys 12:02:12.0367 0x1bc0 BTATH_LWFLT - ok 12:02:12.0387 0x1bc0 [ 724C8088C96EFE7A3E63FEC21D4681C0, 4F9B258BE0FEA634A0D93B3892F2F039A7CAD184C9A81DFC2B67B0D4B39C5035 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys 12:02:12.0387 0x1bc0 BTATH_RCP - ok 12:02:12.0407 0x1bc0 [ AA0F5AFCF077C5246589B32ECEEAE566, 158C44C53B054890574B32F7D10E507902CCFB006323A850A2E6F78B2565E518 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys 12:02:12.0407 0x1bc0 BtFilter - ok 12:02:12.0427 0x1bc0 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 12:02:12.0427 0x1bc0 BthEnum - ok 12:02:12.0447 0x1bc0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 12:02:12.0447 0x1bc0 BTHMODEM - ok 12:02:12.0457 0x1bc0 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 12:02:12.0457 0x1bc0 BthPan - ok 12:02:12.0507 0x1bc0 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 12:02:12.0517 0x1bc0 BTHPORT - ok 12:02:12.0577 0x1bc0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 12:02:12.0577 0x1bc0 bthserv - ok 12:02:12.0597 0x1bc0 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 12:02:12.0597 0x1bc0 BTHUSB - ok 12:02:12.0617 0x1bc0 [ 9887CA12F407D7FBC7F48F3678F5F0B6, 1EA21563AE990CE4EF407AB349DE5A66CB93CD7602FE6E450E119ADF0343914E ] BVRPMPR5a64 C:\Windows\system32\drivers\BVRPMPR5a64.SYS 12:02:12.0617 0x1bc0 BVRPMPR5a64 - ok 12:02:12.0617 0x1bc0 catchme - ok 12:02:12.0637 0x1bc0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 12:02:12.0637 0x1bc0 cdfs - ok 12:02:12.0667 0x1bc0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 12:02:12.0667 0x1bc0 cdrom - ok 12:02:12.0677 0x1bc0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 12:02:12.0687 0x1bc0 CertPropSvc - ok 12:02:12.0697 0x1bc0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 12:02:12.0697 0x1bc0 circlass - ok 12:02:12.0717 0x1bc0 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys 12:02:12.0727 0x1bc0 CLFS - ok 12:02:12.0797 0x1bc0 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 12:02:12.0807 0x1bc0 clr_optimization_v2.0.50727_32 - ok 12:02:12.0847 0x1bc0 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 12:02:12.0857 0x1bc0 clr_optimization_v2.0.50727_64 - ok 12:02:12.0907 0x1bc0 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 12:02:12.0907 0x1bc0 clr_optimization_v4.0.30319_32 - ok 12:02:12.0937 0x1bc0 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 12:02:12.0937 0x1bc0 clr_optimization_v4.0.30319_64 - ok 12:02:12.0947 0x1bc0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 12:02:12.0947 0x1bc0 CmBatt - ok 12:02:12.0967 0x1bc0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 12:02:12.0967 0x1bc0 cmdide - ok 12:02:13.0007 0x1bc0 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys 12:02:13.0017 0x1bc0 CNG - ok 12:02:13.0027 0x1bc0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 12:02:13.0027 0x1bc0 Compbatt - ok 12:02:13.0037 0x1bc0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 12:02:13.0037 0x1bc0 CompositeBus - ok 12:02:13.0037 0x1bc0 COMSysApp - ok 12:02:13.0057 0x1bc0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 12:02:13.0057 0x1bc0 crcdisk - ok 12:02:13.0077 0x1bc0 [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe 12:02:13.0077 0x1bc0 Creative ALchemy AL6 Licensing Service - ok 12:02:13.0087 0x1bc0 [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe 12:02:13.0087 0x1bc0 Creative Audio Engine Licensing Service - ok 12:02:13.0127 0x1bc0 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll 12:02:13.0137 0x1bc0 CryptSvc - ok 12:02:13.0207 0x1bc0 [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE 12:02:13.0217 0x1bc0 cvhsvc - ok 12:02:13.0267 0x1bc0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll 12:02:13.0297 0x1bc0 DcomLaunch - ok 12:02:13.0337 0x1bc0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 12:02:13.0347 0x1bc0 defragsvc - ok 12:02:13.0377 0x1bc0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys 12:02:13.0377 0x1bc0 DfsC - ok 12:02:13.0407 0x1bc0 [ B9430166FEB246F6070A62B3554932C9, 677DE435AA5C1FBFC0171384D4B7CED2EA6B0F8567540DB9DE454AC6D4A7C1D7 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys 12:02:13.0407 0x1bc0 dg_ssudbus - ok 12:02:13.0427 0x1bc0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll 12:02:13.0437 0x1bc0 Dhcp - ok 12:02:13.0467 0x1bc0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 12:02:13.0467 0x1bc0 discache - ok 12:02:13.0477 0x1bc0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys 12:02:13.0477 0x1bc0 Disk - ok 12:02:13.0517 0x1bc0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 12:02:13.0517 0x1bc0 Dnscache - ok 12:02:13.0537 0x1bc0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll 12:02:13.0537 0x1bc0 dot3svc - ok 12:02:13.0557 0x1bc0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 12:02:13.0557 0x1bc0 DPS - ok 12:02:13.0577 0x1bc0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 12:02:13.0577 0x1bc0 drmkaud - ok 12:02:13.0617 0x1bc0 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 12:02:13.0637 0x1bc0 DXGKrnl - ok 12:02:13.0637 0x1bc0 EagleX64 - ok 12:02:13.0677 0x1bc0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 12:02:13.0677 0x1bc0 EapHost - ok 12:02:13.0787 0x1bc0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 12:02:13.0887 0x1bc0 ebdrv - ok 12:02:13.0927 0x1bc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe 12:02:13.0927 0x1bc0 EFS - ok 12:02:13.0987 0x1bc0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 12:02:14.0017 0x1bc0 ehRecvr - ok 12:02:14.0027 0x1bc0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 12:02:14.0027 0x1bc0 ehSched - ok 12:02:14.0047 0x1bc0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 12:02:14.0067 0x1bc0 elxstor - ok 12:02:14.0127 0x1bc0 [ 5FBE8C1279B71FD904F8C4491171FAA0, 84C50EDB9022948C8530734C403EEB203F31A12B59481BAE2285135B6F8CE987 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe 12:02:14.0157 0x1bc0 EpsonCustomerParticipation - ok 12:02:14.0197 0x1bc0 [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc C:\Windows\system32\EscSvc64.exe 12:02:14.0197 0x1bc0 EpsonScanSvc - ok 12:02:14.0207 0x1bc0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 12:02:14.0207 0x1bc0 ErrDev - ok 12:02:14.0237 0x1bc0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 12:02:14.0247 0x1bc0 EventSystem - ok 12:02:14.0297 0x1bc0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 12:02:14.0307 0x1bc0 exfat - ok 12:02:14.0317 0x1bc0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 12:02:14.0327 0x1bc0 fastfat - ok 12:02:14.0337 0x1bc0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 12:02:14.0337 0x1bc0 fdc - ok 12:02:14.0347 0x1bc0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 12:02:14.0357 0x1bc0 fdPHost - ok 12:02:14.0357 0x1bc0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 12:02:14.0357 0x1bc0 FDResPub - ok 12:02:14.0377 0x1bc0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 12:02:14.0377 0x1bc0 FileInfo - ok 12:02:14.0377 0x1bc0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 12:02:14.0377 0x1bc0 Filetrace - ok 12:02:14.0387 0x1bc0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 12:02:14.0397 0x1bc0 flpydisk - ok 12:02:14.0417 0x1bc0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 12:02:14.0417 0x1bc0 FltMgr - ok 12:02:14.0457 0x1bc0 [ 5F3982B51A5DF6F7FF5FD3A4CE0BFF5D, 99F99A96A310B701981B55F287C3685CBBBA3D7B810675C90DD78E4CE4E12180 ] FLxHCIc C:\Windows\system32\DRIVERS\FLxHCIc.sys 12:02:14.0457 0x1bc0 FLxHCIc - ok 12:02:14.0487 0x1bc0 [ 1ACB3F124140A2EAB5A1E36286E37C0D, C0D00E1BF4D501A1D6DC97B9DE378867C9FDEFF6B4E17054DC1F1EC8F958D4C8 ] FLxHCIh C:\Windows\system32\DRIVERS\FLxHCIh.sys 12:02:14.0487 0x1bc0 FLxHCIh - ok 12:02:14.0547 0x1bc0 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll 12:02:14.0607 0x1bc0 FontCache - ok 12:02:14.0647 0x1bc0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 12:02:14.0647 0x1bc0 FontCache3.0.0.0 - ok 12:02:14.0667 0x1bc0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 12:02:14.0667 0x1bc0 FsDepends - ok 12:02:14.0697 0x1bc0 [ 3DFA8D4E50D608F8F732014614C84DD2, 4927B200F1A4FF04C14347A744C878EB11A78AB356B814C196EB6DDF30DDD934 ] fspad_win764 C:\Windows\system32\DRIVERS\fspad_win764.sys 12:02:14.0697 0x1bc0 fspad_win764 - ok 12:02:14.0717 0x1bc0 [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 12:02:14.0717 0x1bc0 fssfltr - ok 12:02:14.0797 0x1bc0 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe 12:02:14.0857 0x1bc0 fsssvc - ok 12:02:14.0887 0x1bc0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 12:02:14.0887 0x1bc0 Fs_Rec - ok 12:02:14.0917 0x1bc0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 12:02:14.0917 0x1bc0 fvevol - ok 12:02:14.0927 0x1bc0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 12:02:14.0927 0x1bc0 gagp30kx - ok 12:02:14.0967 0x1bc0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll 12:02:14.0987 0x1bc0 gpsvc - ok 12:02:15.0087 0x1bc0 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 12:02:15.0087 0x1bc0 gupdate - ok 12:02:15.0097 0x1bc0 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 12:02:15.0097 0x1bc0 gupdatem - ok 12:02:15.0117 0x1bc0 [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 12:02:15.0127 0x1bc0 gusvc - ok 12:02:15.0177 0x1bc0 [ 4635935FC972C582632BF45C26BFCB0E, ABD4AFD71B3C2BD3F741BBE3CEC52C4FA63AC78D353101D2E7DC4DE2725D1CA1 ] HawkesUpdater C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe 12:02:15.0177 0x1bc0 HawkesUpdater - ok 12:02:15.0187 0x1bc0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 12:02:15.0187 0x1bc0 hcw85cir - ok 12:02:15.0207 0x1bc0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 12:02:15.0217 0x1bc0 HdAudAddService - ok 12:02:15.0257 0x1bc0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 12:02:15.0257 0x1bc0 HDAudBus - ok 12:02:15.0267 0x1bc0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 12:02:15.0267 0x1bc0 HidBatt - ok 12:02:15.0277 0x1bc0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 12:02:15.0287 0x1bc0 HidBth - ok 12:02:15.0297 0x1bc0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 12:02:15.0297 0x1bc0 HidIr - ok 12:02:15.0327 0x1bc0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll 12:02:15.0327 0x1bc0 hidserv - ok 12:02:15.0347 0x1bc0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys 12:02:15.0347 0x1bc0 HidUsb - ok 12:02:15.0377 0x1bc0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 12:02:15.0387 0x1bc0 hkmsvc - ok 12:02:15.0397 0x1bc0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 12:02:15.0397 0x1bc0 HomeGroupListener - ok 12:02:15.0427 0x1bc0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 12:02:15.0427 0x1bc0 HomeGroupProvider - ok 12:02:15.0447 0x1bc0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 12:02:15.0447 0x1bc0 HpSAMD - ok 12:02:15.0477 0x1bc0 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys 12:02:15.0507 0x1bc0 HTTP - ok 12:02:15.0527 0x1bc0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 12:02:15.0527 0x1bc0 hwpolicy - ok 12:02:15.0547 0x1bc0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 12:02:15.0547 0x1bc0 i8042prt - ok 12:02:15.0577 0x1bc0 [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 12:02:15.0587 0x1bc0 iaStor - ok 12:02:15.0627 0x1bc0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 12:02:15.0637 0x1bc0 iaStorV - ok 12:02:15.0727 0x1bc0 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 12:02:15.0747 0x1bc0 idsvc - ok 12:02:15.0787 0x1bc0 IEEtwCollectorService - ok 12:02:15.0797 0x1bc0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 12:02:15.0797 0x1bc0 iirsp - ok 12:02:15.0837 0x1bc0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll 12:02:15.0867 0x1bc0 IKEEXT - ok 12:02:16.0017 0x1bc0 [ 602788BF364D43E5878AA1B4F85C232B, 589B983C708B6B8A32760D00F21CB2C3331C3E439ECF8D2464FF77C1D9760D72 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 12:02:16.0097 0x1bc0 IntcAzAudAddService - ok 12:02:16.0137 0x1bc0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 12:02:16.0137 0x1bc0 intelide - ok 12:02:16.0147 0x1bc0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 12:02:16.0147 0x1bc0 intelppm - ok 12:02:16.0177 0x1bc0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 12:02:16.0177 0x1bc0 IPBusEnum - ok 12:02:16.0197 0x1bc0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 12:02:16.0197 0x1bc0 IpFilterDriver - ok 12:02:16.0237 0x1bc0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] IpHlpSvc C:\Windows\System32\iphlpsvc.dll 12:02:16.0247 0x1bc0 IpHlpSvc - ok 12:02:16.0287 0x1bc0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 12:02:16.0287 0x1bc0 IPMIDRV - ok 12:02:16.0307 0x1bc0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 12:02:16.0307 0x1bc0 IPNAT - ok 12:02:16.0317 0x1bc0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 12:02:16.0317 0x1bc0 IRENUM - ok 12:02:16.0327 0x1bc0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 12:02:16.0327 0x1bc0 isapnp - ok 12:02:16.0357 0x1bc0 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 12:02:16.0367 0x1bc0 iScsiPrt - ok 12:02:16.0397 0x1bc0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 12:02:16.0397 0x1bc0 kbdclass - ok 12:02:16.0417 0x1bc0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 12:02:16.0417 0x1bc0 kbdhid - ok 12:02:16.0437 0x1bc0 [ E63EF8C3271D014F14E2469CE75FECB4, 3A8DFA4B446AFDC35F01FD5218D0BEBC510A1E3DE9976210F00D19767D0F9069 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys 12:02:16.0437 0x1bc0 kbfiltr - ok 12:02:16.0447 0x1bc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe 12:02:16.0447 0x1bc0 KeyIso - ok 12:02:16.0477 0x1bc0 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 12:02:16.0477 0x1bc0 KSecDD - ok 12:02:16.0487 0x1bc0 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 12:02:16.0497 0x1bc0 KSecPkg - ok 12:02:16.0497 0x1bc0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 12:02:16.0507 0x1bc0 ksthunk - ok 12:02:16.0537 0x1bc0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 12:02:16.0547 0x1bc0 KtmRm - ok 12:02:16.0567 0x1bc0 [ 033B4AED2C5519072C0D81E00804D003, 6C450A604C382416C482FED43098B4E95BD61B480B0CEFD728A269446AF18708 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys 12:02:16.0567 0x1bc0 L1C - ok 12:02:16.0597 0x1bc0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll 12:02:16.0607 0x1bc0 LanmanServer - ok 12:02:16.0637 0x1bc0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 12:02:16.0637 0x1bc0 LanmanWorkstation - ok 12:02:16.0647 0x1bc0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 12:02:16.0647 0x1bc0 lltdio - ok 12:02:16.0677 0x1bc0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 12:02:16.0687 0x1bc0 lltdsvc - ok 12:02:16.0717 0x1bc0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 12:02:16.0717 0x1bc0 lmhosts - ok 12:02:16.0757 0x1bc0 [ 0803906D607A9B83184447B75B60ECC2, A7A599C4CEDD4AC4196A558442E80B4F852AF6C6104A53C8819A79AA5D388DE8 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe 12:02:16.0767 0x1bc0 LMS - ok 12:02:16.0777 0x1bc0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 12:02:16.0787 0x1bc0 LSI_FC - ok 12:02:16.0797 0x1bc0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 12:02:16.0797 0x1bc0 LSI_SAS - ok 12:02:16.0807 0x1bc0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 12:02:16.0817 0x1bc0 LSI_SAS2 - ok 12:02:16.0817 0x1bc0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 12:02:16.0827 0x1bc0 LSI_SCSI - ok 12:02:16.0847 0x1bc0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 12:02:16.0847 0x1bc0 luafv - ok 12:02:16.0877 0x1bc0 [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt C:\Windows\system32\drivers\MBfilt64.sys 12:02:16.0877 0x1bc0 MBfilt - ok 12:02:16.0887 0x1bc0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 12:02:16.0887 0x1bc0 Mcx2Svc - ok 12:02:16.0907 0x1bc0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 12:02:16.0907 0x1bc0 megasas - ok 12:02:16.0927 0x1bc0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 12:02:16.0937 0x1bc0 MegaSR - ok 12:02:16.0957 0x1bc0 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 12:02:16.0957 0x1bc0 MEIx64 - ok 12:02:16.0987 0x1bc0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 12:02:16.0987 0x1bc0 MMCSS - ok 12:02:16.0997 0x1bc0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys 12:02:16.0997 0x1bc0 Modem - ok 12:02:17.0017 0x1bc0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 12:02:17.0017 0x1bc0 monitor - ok 12:02:17.0027 0x1bc0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 12:02:17.0027 0x1bc0 mouclass - ok 12:02:17.0037 0x1bc0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 12:02:17.0047 0x1bc0 mouhid - ok 12:02:17.0057 0x1bc0 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 12:02:17.0057 0x1bc0 mountmgr - ok 12:02:17.0087 0x1bc0 [ FC1D590039EF06A381768710E6C07E75, 2F8B4D5232C4848A423A4E647102F3EDFD9B3D55D0D14AC04FD6D60D9212106F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 12:02:17.0097 0x1bc0 MpFilter - ok 12:02:17.0107 0x1bc0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 12:02:17.0117 0x1bc0 mpio - ok 12:02:17.0227 0x1bc0 [ BC3C790A27FFF88DACC787B860E6741F, AD8A6A44E808EB7E25FA1091313BF3B66A4DEEA03466EF67AF74678F20B4D393 ] MpKsle2b4d148 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0FB920BC-8DF3-4F69-9733-F5356C4662AC}\MpKsle2b4d148.sys
  20. Everything seemed fine at first but I seem to still have some sort of issue. I had two BSOD, or Blue Screens, appear with ten minutes of each other. I also still seem to have some problem with internet explorer (have downloaded all possible updates for software and drivers for hardware) and redirects when using goggle chrome, not sure if I should just re-install windows from scratch for any windows software issues. I also still have MSE, Microsoft Security Essentials, telling me I have a problem with Windows64/Alureon. If you can stick with me for a little bit more and help me to diagnose my issues or fix them I will be more than happy to donate via Paypal!
  21. Results of screen317's Security Check version 0.99.77 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 10 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Microsoft Security Essentials (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.75.0.1300 Java 6 Update 31 Java version out of Date! Adobe Flash Player 10 Flash Player out of Date! Adobe Reader 10.1.8 Adobe Reader out of Date! Google Chrome 30.0.1599.101 Google Chrome 31.0.1650.57 ````````Process Check: objlist.exe by Laurent```````` Microsoft Security Essentials MSMpEng.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 2% ````````````````````End of Log``````````````````````
  22. # AdwCleaner v3.012 - Report created 18/11/2013 at 08:27:37 # Updated 11/11/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Nick - NICK-PC # Running from : C:\Users\Nick\Downloads\AdwCleaner (2).exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\Partner Folder Deleted : C:\Users\Nick\AppData\Local\PackageAware ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_1_rasmancs Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_picasa_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_picasa_RASMANCS Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Key Deleted : HKCU\Software\APN PIP Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\StartSearch Key Deleted : HKLM\Software\Iminent Key Deleted : HKLM\Software\PIP Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16736 -\\ Google Chrome v31.0.1650.57 [ File : C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2002 octets] - [18/11/2013 08:26:12] AdwCleaner[s0].txt - [1833 octets] - [18/11/2013 08:27:37] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1893 octets] ##########
  23. Log showing results of the ESET scan... ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=8218941454333042b3d183e7b1154a09 # engine=15883 # end=finished # remove_checked=false # archives_checked=false # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2013-11-14 02:17:09 # local_time=2013-11-14 09:17:09 (-0500, US Eastern Standard Time) # country="United States" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776574 100 94 9574953 135982079 0 0 # scanned=615327 # found=3 # cleaned=0 # scan_time=6300 sh=2C7C651D15D2771EE89E1FCF9148B071F5980B0E ft=1 fh=8a43b250fe7eb64f vn="a variant of Win32/Toolbar.Widgi application" ac=I fn="C:\Qoobox\Quarantine\C\Users\Nick\AppData\Roaming\Search Protection\SearchProtection.exe.vir" sh=AE7A0146F3E65DA9593892A29362812CCF8A9DF7 ft=1 fh=55fe33c9d42b16e6 vn="probably a variant of Win32/Toolbar.Widgi application" ac=I fn="C:\Qoobox\Quarantine\C\Users\Nick\AppData\Roaming\Search Protection\Uninstall.exe.vir" sh=B8834D7BE89E71B41E2265976841873C079E5DD5 ft=1 fh=64c34a558e18e82f vn="Win64/Sirefef.G trojan" ac=I fn="C:\Qoobox\Quarantine\C\Windows\assembly\GAC_64\Desktop.ini.vir" ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=8218941454333042b3d183e7b1154a09 # engine=15901 # end=stopped # remove_checked=false # archives_checked=false # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2013-11-15 08:20:24 # local_time=2013-11-15 03:20:24 (-0500, US Eastern Standard Time) # country="United States" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776574 100 94 9683148 136090274 0 0 # scanned=745571 # found=3 # cleaned=0 # scan_time=10331 sh=2C7C651D15D2771EE89E1FCF9148B071F5980B0E ft=1 fh=8a43b250fe7eb64f vn="a variant of Win32/Toolbar.Widgi application" ac=I fn="C:\Qoobox\Quarantine\C\Users\Nick\AppData\Roaming\Search Protection\SearchProtection.exe.vir" sh=AE7A0146F3E65DA9593892A29362812CCF8A9DF7 ft=1 fh=55fe33c9d42b16e6 vn="probably a variant of Win32/Toolbar.Widgi application" ac=I fn="C:\Qoobox\Quarantine\C\Users\Nick\AppData\Roaming\Search Protection\Uninstall.exe.vir" sh=B8834D7BE89E71B41E2265976841873C079E5DD5 ft=1 fh=64c34a558e18e82f vn="Win64/Sirefef.G trojan" ac=I fn="C:\Qoobox\Quarantine\C\Windows\assembly\GAC_64\Desktop.ini.vir"
  24. I believe it was at 99% so I'll try to do what it says when I get home.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.