Jump to content

Multiple failures - make sure laptop is not infected


Recommended Posts

Re:  https://forums.malwarebytes.org/index.php?showtopic=145344

AdvancedSetup has recommended: 

Not sure what's going on there for sure at this time but something is certainly causing multiple failures and could certainly be why the Context Menu is not functioning but also would be much more important to get these issues resolved.

Not sure if it's an infection issue, a hardware issue, or simply some type of software conflict at this time.  I would recommend creating a NEW topic in the malware removal forum and have one of the Experts assist you in making sure the computer is not infected and go on from there.

 

Thanks, Lloyd

Link to post
Share on other sites

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 
 
 
 
 
HijackThis is not the preferred initial scanning tool in this forum. With today's malware, a more comprehensive set of logs is required to determine the presence of malware.
 
 
 
 
Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)
 
  • Run FRST.
  • Don´t change one of the checkboxes and hit Scan.
  • Logfiles are created on your desktop.
  • Poste the FRST.txt and (after the first scan only!) the Addition.txt.


 
 
 
 
 
Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop

  • Execute TDSSKiller.exe by doubleclicking on it.
  • Press Start Scan
  • If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
  • Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt




Please attach this file to your next reply.

Link to post
Share on other sites

Since this is my second run, an Addition.txt was not produced.   Here is the FRST.txt:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Lloyd (administrator) on LLOYD on 01-04-2014 12:05:32
Running from E:\Lloyd's Stuff\Downloads 0002 Software\Farbar 64x vx 2014-03-31
Windows 8.1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\WINDOWS\system32\Hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Reflect\ReflectService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Google Inc.) C:\Users\Lloyd\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Southwest Airlines) C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
(FastStone Soft) C:\Program Files (x86)\FastStone Capture\FSCapture.exe
(Mister Group) C:\Program Files (x86)\System Explorer\SystemExplorer.exe
(Mister Group) C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AdTrustMedia) C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\LiveComm.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [sysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-20] (IDT, Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3030256 2013-07-11] (Synaptics Incorporated)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [systemExplorerAutoStart] - C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2860576 2014-02-28] (Mister Group)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-01] (AVAST Software)
HKLM-x32\...\Run: [PrivDogService] - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe [525480 2013-12-13] (AdTrustMedia)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\Run: [GarminExpressTrayApp] - C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [115544 2014-03-04] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-3437637007-1443180179-3256198470-1001\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-06-26] (Google Inc.)
HKU\S-1-5-21-3437637007-1443180179-3256198470-1001\...\Run: [GarminExpressTrayApp] - C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [115544 2014-03-04] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-3437637007-1443180179-3256198470-1001\...\Run: [Google+ Auto Backup] - C:\Users\Lloyd\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3619096 2014-01-06] (Google Inc.)
Startup: C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DING!.lnk
ShortcutTarget: DING!.lnk -> C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe (Southwest Airlines)
Startup: C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FastStone Capture.lnk
ShortcutTarget: FastStone Capture.lnk -> C:\Program Files (x86)\FastStone Capture\FSCapture.exe (FastStone Soft)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT13/1
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll ()
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll ()
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll ()
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - WOT - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
DPF: HKLM-x32 {08B0E5C0-4FCB-11CF-AAA5-00401C608501} http://147.203.60.11:82/myspeed/admin
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.15.0.cab
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll ()
Handler-x32: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll ()
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0519D3D7-8899-478B-90BC-4E9D5B3E0F51}: [NameServer]156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{9E617D4B-49F1-4361-92A3-1C1711F3DF75}: [NameServer]156.154.70.22,156.154.71.22

FireFox:
========
FF ProfilePath: C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default
FF Homepage: https://www.google.com/
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Lloyd\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF SearchPlugin: C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\searchplugins\safeguard-secure-search.xml
FF Extension: PrivDog - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\PrivDog@AdTrustMedia.com [2014-02-02]
FF Extension: Garmin Communicator - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2013-12-08]
FF Extension: ViewInFirefox - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975} [2013-07-10]
FF Extension: WOT - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-12-06]
FF Extension: Disconnect - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\2.0@disconnect.me.xpi [2013-08-08]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\elemhidehelper@adblockplus.org.xpi [2013-07-10]
FF Extension: IE View - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi [2013-07-10]
FF Extension: NoScript - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-07-10]
FF Extension: Adblock Plus - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-26]

Chrome:
=======

CHR Extension: (Google Docs) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-24]
CHR Extension: (Google Drive) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-24]
CHR Extension: (WOT) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-01-24]
CHR Extension: (YouTube) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-24]
CHR Extension: (Adblock Plus) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-24]
CHR Extension: (PrivDog) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja [2014-02-01]
CHR Extension: (Google Search) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-24]
CHR Extension: (avast! Online Security) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-18]
CHR Extension: (Tabs to the front!) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjaooagfdhdhmbfchnkhggjmacjlacla [2014-01-24]
CHR Extension: (Disconnect) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2014-01-24]
CHR Extension: (Google Wallet) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-24]
CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-02-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-10-21]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-01] (AVAST Software)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6802624 2014-03-05] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-05] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-01-28] ()
R2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [424280 2014-03-04] (Garmin Ltd or its subsidiaries)
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [1142768 2014-02-19] (Paramount Software UK Ltd)
R3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [821720 2012-11-25] (Mister Group)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-03-02] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-30] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-01] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-17] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-22] (Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-03-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [748272 2014-03-05] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [37560 2014-03-05] (COMODO)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-02-19] (REALiX)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
R0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127664 2014-03-05] (COMODO)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-02] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-02] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-24] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-07-11] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-30] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-31 15:15 - 2014-03-31 15:17 - 00000000 ____D () C:\FRST
2014-03-30 11:32 - 2014-04-01 10:43 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-30 11:26 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-03-30 11:26 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-03-30 11:26 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-03-29 13:48 - 2014-03-29 13:48 - 00003028 _____ () C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-03-29 13:47 - 2014-03-29 13:48 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\Program Files\COMODO
2014-03-29 01:06 - 2014-03-01 01:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-29 01:06 - 2014-02-28 23:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-29 01:06 - 2014-02-28 23:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-29 01:06 - 2014-02-28 23:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-29 01:06 - 2014-02-28 22:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-29 01:06 - 2014-02-28 22:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-29 01:06 - 2014-02-28 22:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-29 01:06 - 2014-02-28 22:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-29 01:06 - 2014-02-28 22:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-29 01:06 - 2014-02-28 22:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-29 01:06 - 2014-02-28 22:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-29 01:06 - 2014-02-28 21:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-29 01:06 - 2014-02-28 21:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-29 01:06 - 2014-02-28 21:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-29 01:06 - 2014-02-28 21:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-29 01:06 - 2014-02-28 21:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-29 01:06 - 2014-02-28 21:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-03-29 01:06 - 2014-02-22 07:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-03-29 01:06 - 2014-02-22 06:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-03-29 01:06 - 2014-02-10 22:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-29 01:06 - 2014-02-10 21:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-03-29 01:06 - 2014-02-10 21:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-29 01:06 - 2014-01-31 11:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-03-29 01:06 - 2014-01-31 11:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-03-29 01:06 - 2014-01-31 11:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-03-29 01:06 - 2014-01-31 08:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-03-29 01:06 - 2014-01-31 04:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-03-29 01:06 - 2014-01-29 04:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-03-29 01:06 - 2014-01-29 03:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-03-29 01:06 - 2014-01-29 03:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-03-29 01:06 - 2014-01-29 03:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-03-29 01:06 - 2014-01-29 03:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-03-29 01:06 - 2014-01-29 02:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-03-29 01:06 - 2014-01-29 02:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-03-29 01:06 - 2014-01-29 02:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-03-29 01:06 - 2014-01-29 01:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-03-29 01:06 - 2014-01-28 19:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-03-29 01:06 - 2014-01-27 14:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-03-29 01:06 - 2014-01-27 14:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-03-29 01:06 - 2014-01-27 14:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-03-29 01:06 - 2014-01-27 13:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-03-29 01:06 - 2014-01-27 13:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-03-29 01:06 - 2014-01-27 13:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-03-29 01:06 - 2014-01-27 13:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-03-29 01:06 - 2014-01-27 13:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-03-29 01:06 - 2014-01-27 12:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-03-29 01:06 - 2014-01-27 12:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-03-29 01:06 - 2014-01-27 12:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-03-29 01:06 - 2014-01-27 10:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-03-29 01:06 - 2014-01-27 10:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-03-29 01:06 - 2014-01-27 06:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-03-29 01:06 - 2014-01-17 18:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-03-29 01:06 - 2014-01-17 16:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-03-29 01:06 - 2013-12-21 09:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-29 01:06 - 2013-12-21 03:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-03-29 01:06 - 2013-12-20 05:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-03-29 01:06 - 2013-12-20 05:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-03-29 01:06 - 2013-10-30 19:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-03-29 01:06 - 2013-10-30 19:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-03-29 01:06 - 2013-10-30 19:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-03-24 17:55 - 2014-03-24 17:55 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Apps\2.0
2014-03-20 09:23 - 2014-03-20 09:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-06 17:59 - 2014-03-06 17:59 - 00000046 _____ () C:\WINDOWS\wininit.ini
2014-03-06 15:11 - 2014-03-06 15:11 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-03-06 15:04 - 2014-03-06 15:04 - 00003310 _____ () C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
2014-03-05 12:54 - 2014-03-05 12:54 - 00748272 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdguard.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00127664 _____ (COMODO) C:\WINDOWS\system32\Drivers\inspect.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00037560 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdhlp.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00023168 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmderd.sys
2014-03-05 12:53 - 2014-03-05 12:53 - 00453680 _____ (COMODO) C:\WINDOWS\system32\guard64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00363504 _____ (COMODO) C:\WINDOWS\SysWOW64\guard32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00352984 _____ (COMODO) C:\WINDOWS\system32\cmdvrt64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00284888 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdvrt32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00045784 _____ (COMODO) C:\WINDOWS\system32\cmdkbd64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00043216 _____ (COMODO) C:\WINDOWS\system32\cmdcsr.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00040664 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbd32.dll
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\spool
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-02 23:56 - 2014-03-03 00:04 - 00233480 _____ () C:\WINDOWS\hpoins21.dat
2014-03-02 23:56 - 2012-10-14 08:17 - 00006174 ____N () C:\WINDOWS\hpomdl21.dat
2014-03-02 23:20 - 2014-03-02 23:20 - 00000000 __SHD () C:\Recovery
2014-03-02 23:20 - 2014-03-02 21:51 - 00000000 ___DC () C:\WINDOWS\Panther
2014-03-02 23:19 - 2014-03-02 23:19 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-03-02 23:16 - 2014-03-02 23:16 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-02 23:16 - 2014-03-02 23:16 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-03-02 23:14 - 2014-03-02 23:14 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-03-02 23:13 - 2014-03-02 23:13 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-02 23:11 - 2014-03-02 23:11 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\inetpub
2014-03-02 23:10 - 2014-01-07 20:46 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-03-02 23:10 - 2014-01-07 20:41 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-03-02 23:10 - 2014-01-07 20:41 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-03-02 23:10 - 2014-01-04 10:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-03-02 23:10 - 2014-01-04 10:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-03-02 23:10 - 2014-01-04 09:08 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-03-02 23:10 - 2014-01-04 08:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-03-02 23:10 - 2014-01-02 18:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-03-02 23:10 - 2014-01-02 18:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-03-02 23:10 - 2013-12-31 20:55 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-03-02 23:10 - 2013-12-31 20:52 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-03-02 23:10 - 2013-12-31 19:56 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-03-02 23:10 - 2013-12-31 19:55 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-03-02 23:10 - 2013-12-31 18:59 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-03-02 23:10 - 2013-12-31 18:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-03-02 23:10 - 2013-12-31 18:56 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-03-02 23:10 - 2013-12-30 18:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-03-02 23:10 - 2013-12-30 18:33 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-03-02 23:10 - 2013-12-30 18:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-03-02 23:10 - 2013-12-30 18:31 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-03-02 23:10 - 2013-12-30 18:31 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-03-02 23:10 - 2013-12-27 10:09 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-03-02 23:10 - 2013-12-27 03:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-03-02 23:10 - 2013-12-27 03:57 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-03-02 23:10 - 2013-12-27 03:23 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-03-02 23:10 - 2013-12-27 02:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-03-02 23:10 - 2013-12-27 02:03 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-03-02 23:10 - 2013-12-27 01:37 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-03-02 23:10 - 2013-12-21 02:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-03-02 23:10 - 2013-12-17 02:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-03-02 23:10 - 2013-12-14 01:31 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-03-02 23:10 - 2013-12-14 01:19 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-03-02 23:10 - 2013-12-13 05:54 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-03-02 23:10 - 2013-12-13 01:36 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-03-02 23:10 - 2013-12-13 00:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-03-02 23:10 - 2013-12-09 03:05 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-03-02 23:10 - 2013-12-08 23:51 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-03-02 23:10 - 2013-08-02 23:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-03-02 23:10 - 2013-08-02 23:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-03-02 22:01 - 2014-04-01 09:38 - 00000000 __RDO () C:\Users\Lloyd\SkyDrive
2014-03-02 21:52 - 2014-03-02 21:52 - 00001446 _____ () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-02 21:51 - 2014-03-02 21:51 - 00000020 ___SH () C:\Users\Lloyd\ntuser.ini
2014-03-02 21:43 - 2014-04-01 11:47 - 01392134 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-02 21:43 - 2014-03-02 21:43 - 00022744 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default\Documents\hp.system.package.metadata
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default User\Documents\hp.system.package.metadata
2014-03-02 21:29 - 2014-03-02 21:29 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-03-02 21:28 - 2014-03-02 22:01 - 00000000 ____D () C:\Users\Lloyd
2014-03-02 21:28 - 2014-03-02 21:43 - 00022863 _____ () C:\WINDOWS\diagwrn.xml
2014-03-02 21:28 - 2014-03-02 21:43 - 00022863 _____ () C:\WINDOWS\diagerr.xml
2014-03-02 21:28 - 2014-03-02 21:29 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-02 21:28 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-02 21:28 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-03-02 21:28 - 2013-08-22 10:36 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-03-02 21:25 - 2014-03-02 21:39 - 00973290 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-03-02 21:25 - 2014-03-02 21:29 - 00012096 _____ () C:\WINDOWS\iis.log
2014-03-02 21:23 - 2014-03-02 21:30 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-03-02 21:23 - 2014-03-02 21:23 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____D () C:\Program Files\Synaptics
2014-03-02 21:23 - 2014-01-25 03:23 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-03-02 21:23 - 2014-01-25 03:23 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-03-02 21:22 - 2014-03-02 21:34 - 00000000 ____D () C:\Program Files\IDT
2014-03-02 21:22 - 2014-03-02 21:22 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-03-02 21:22 - 2012-08-20 00:45 - 06085632 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2014-03-02 21:22 - 2012-08-20 00:45 - 01821184 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2014-03-02 21:22 - 2012-08-20 00:45 - 01664000 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2014-03-02 21:22 - 2011-05-02 17:27 - 03308376 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEP64A.dll
2014-03-02 21:22 - 2011-05-02 17:27 - 00426328 _____ (Dolby Laboratories) C:\WINDOWS\system32\EED64A.dll
2014-03-02 21:22 - 2011-05-02 17:27 - 00136024 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEL64A.dll
2014-03-02 21:22 - 2011-05-02 17:27 - 00118104 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEA64A.dll
2014-03-02 20:56 - 2014-03-02 21:43 - 00006569 _____ () C:\WINDOWS\comsetup.log
2014-03-02 18:39 - 2014-03-02 21:03 - 00223670 _____ () C:\WINDOWS\WindowsUpdate (1).log

==================== One Month Modified Files and Folders =======

2014-04-01 12:05 - 2014-03-31 15:15 - 00000000 ____D () C:\FRST
2014-04-01 12:00 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-04-01 11:59 - 2013-06-25 18:20 - 00003914 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4B31273A-F769-4BA3-8451-69AAF717F956}
2014-04-01 11:58 - 2013-06-26 11:17 - 00000908 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-01 11:47 - 2014-03-02 21:43 - 01392134 _____ () C:\WINDOWS\WindowsUpdate.log
2014-04-01 11:01 - 2013-06-25 18:28 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3437637007-1443180179-3256198470-1001
2014-04-01 10:43 - 2014-03-30 11:32 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-04-01 09:58 - 2013-06-26 11:17 - 00000904 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-01 09:38 - 2014-03-02 22:01 - 00000000 __RDO () C:\Users\Lloyd\SkyDrive
2014-03-30 11:34 - 2013-07-11 16:58 - 00000344 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForLloyd.job
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-30 11:13 - 2013-11-14 02:20 - 00025760 _____ () C:\WINDOWS\PFRO.log
2014-03-30 11:13 - 2013-08-22 09:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-03-30 11:12 - 2013-08-22 08:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-03-30 09:53 - 2013-06-26 11:17 - 00003880 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-30 09:53 - 2013-06-26 11:17 - 00003644 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-29 15:33 - 2013-11-14 02:28 - 00958356 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-29 13:48 - 2014-03-29 13:48 - 00003028 _____ () C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-03-29 13:48 - 2014-03-29 13:47 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\Program Files\COMODO
2014-03-29 13:47 - 2013-06-26 11:39 - 00000000 ____D () C:\ProgramData\COMODO
2014-03-29 13:44 - 2014-02-01 23:25 - 00000780 _____ () C:\WINDOWS\SysWOW64\{7995330B-E01F-4645-B702-53481E7CB778}.cmdfile
2014-03-29 01:43 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-03-29 01:12 - 2013-08-22 09:44 - 00379304 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-29 01:11 - 2013-11-03 13:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-29 01:11 - 2013-07-18 21:58 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-29 01:11 - 2013-07-18 21:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-29 01:09 - 2013-07-18 21:59 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-29 01:07 - 2013-08-22 08:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-29 01:07 - 2013-07-09 10:00 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-29 01:00 - 2013-06-26 11:17 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Google
2014-03-26 23:31 - 2013-08-22 09:46 - 00297243 _____ () C:\WINDOWS\setupact.log
2014-03-26 20:35 - 2013-07-04 13:00 - 00000166 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-03-24 17:55 - 2014-03-24 17:55 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Apps\2.0
2014-03-20 09:23 - 2014-03-20 09:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-16 10:00 - 2013-07-15 15:15 - 00000000 ____D () C:\Users\Lloyd\Documents\TurboTax
2014-03-07 09:10 - 2013-07-15 15:40 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-07 09:09 - 2014-02-22 12:34 - 00003556 _____ () C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2014-03-07 09:09 - 2013-07-15 15:40 - 00000000 ____D () C:\ProgramData\Garmin
2014-03-07 09:09 - 2013-07-15 15:40 - 00000000 ____D () C:\Program Files (x86)\Garmin
2014-03-06 17:59 - 2014-03-06 17:59 - 00000046 _____ () C:\WINDOWS\wininit.ini
2014-03-06 15:25 - 2012-07-26 00:37 - 00000000 ____D () C:\Users\Default.migrated
2014-03-06 15:11 - 2014-03-06 15:11 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-03-06 15:04 - 2014-03-06 15:04 - 00003310 _____ () C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
2014-03-05 23:15 - 2013-06-30 22:31 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\HpUpdate
2014-03-05 12:54 - 2014-03-05 12:54 - 00748272 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdguard.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00127664 _____ (COMODO) C:\WINDOWS\system32\Drivers\inspect.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00037560 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdhlp.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00023168 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmderd.sys
2014-03-05 12:53 - 2014-03-05 12:53 - 00453680 _____ (COMODO) C:\WINDOWS\system32\guard64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00363504 _____ (COMODO) C:\WINDOWS\SysWOW64\guard32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00352984 _____ (COMODO) C:\WINDOWS\system32\cmdvrt64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00284888 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdvrt32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00045784 _____ (COMODO) C:\WINDOWS\system32\cmdkbd64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00043216 _____ (COMODO) C:\WINDOWS\system32\cmdcsr.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00040664 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbd32.dll
2014-03-05 09:26 - 2014-03-30 11:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-03-05 09:26 - 2014-03-30 11:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-03-30 11:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-03-04 17:53 - 2013-08-22 10:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-03-04 17:53 - 2013-08-22 10:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-04 12:26 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-03-03 00:04 - 2014-03-02 23:56 - 00233480 _____ () C:\WINDOWS\hpoins21.dat
2014-03-03 00:04 - 2013-06-30 22:23 - 00013141 _____ () C:\ProgramData\hpzinstall.log
2014-03-03 00:04 - 2012-07-26 00:26 - 00000127 _____ () C:\WINDOWS\win.ini
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\spool
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-03 00:00 - 2013-06-30 22:28 - 00000000 ____D () C:\Program Files (x86)\HP
2014-03-03 00:00 - 2013-06-30 18:31 - 00000000 ____D () C:\ProgramData\HP
2014-03-02 23:20 - 2014-03-02 23:20 - 00000000 __SHD () C:\Recovery
2014-03-02 23:19 - 2014-03-02 23:19 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-03-02 23:19 - 2013-08-22 10:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-03-02 23:18 - 2014-03-02 23:18 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-03-02 23:18 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-03-02 23:17 - 2014-03-02 23:17 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-03-02 23:17 - 2013-10-21 11:57 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-03-02 23:16 - 2014-03-02 23:16 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-03-02 23:16 - 2014-03-02 23:16 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-02 23:16 - 2014-03-02 23:16 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-02 23:16 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-03-02 23:16 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-03-02 23:16 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-03-02 23:16 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-03-02 23:16 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-03-02 23:16 - 2013-06-25 18:20 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-02 23:16 - 2013-06-25 18:20 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-02 23:14 - 2014-03-02 23:14 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-03-02 23:14 - 2014-03-02 23:14 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-03-02 23:13 - 2014-03-02 23:13 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-02 23:13 - 2013-08-22 10:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-03-02 23:11 - 2014-03-02 23:11 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\inetpub
2014-03-02 23:11 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\inetsrv
2014-03-02 23:11 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-03-02 23:10 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-03-02 22:01 - 2014-03-02 21:28 - 00000000 ____D () C:\Users\Lloyd
2014-03-02 21:54 - 2013-06-25 18:17 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Packages
2014-03-02 21:52 - 2014-03-02 21:52 - 00001446 _____ () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-02 21:52 - 2013-06-25 18:20 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-03-02 21:51 - 2014-03-02 23:20 - 00000000 ___DC () C:\WINDOWS\Panther
2014-03-02 21:51 - 2014-03-02 21:51 - 00000020 ___SH () C:\Users\Lloyd\ntuser.ini
2014-03-02 21:43 - 2014-03-02 21:43 - 00022744 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-03-02 21:43 - 2014-03-02 21:28 - 00022863 _____ () C:\WINDOWS\diagwrn.xml
2014-03-02 21:43 - 2014-03-02 21:28 - 00022863 _____ () C:\WINDOWS\diagerr.xml
2014-03-02 21:43 - 2014-03-02 20:56 - 00006569 _____ () C:\WINDOWS\comsetup.log
2014-03-02 21:43 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\Registration
2014-03-02 21:39 - 2014-03-02 21:25 - 00973290 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-03-02 21:38 - 2013-08-22 10:36 - 00000000 __RSD () C:\WINDOWS\Media
2014-03-02 21:38 - 2013-08-22 10:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-03-02 21:34 - 2014-03-02 21:22 - 00000000 ____D () C:\Program Files\IDT
2014-03-02 21:34 - 2014-03-01 13:00 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-03-02 21:34 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-03-02 21:34 - 2013-07-15 20:16 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Southwest Airlines
2014-03-02 21:34 - 2013-07-01 22:28 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2014-03-02 21:34 - 2013-01-18 18:03 - 00000000 ____D () C:\WINDOWS\en
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default\Documents\hp.system.package.metadata
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default User\Documents\hp.system.package.metadata
2014-03-02 21:32 - 2013-11-14 02:14 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2014-03-02 21:32 - 2013-11-14 02:14 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2014-03-02 21:32 - 2013-11-14 02:14 - 00000000 ____D () C:\WINDOWS\system32\WCN
2014-03-02 21:32 - 2013-08-22 10:37 - 00004893 _____ () C:\WINDOWS\DtcInstall.log
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\MUI
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-03-02 21:32 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI
2014-03-02 21:32 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-03-02 21:32 - 2013-01-18 18:24 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda
2014-03-02 21:32 - 2013-01-18 18:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\Adobe
2014-03-02 21:31 - 2013-08-22 10:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker
2014-03-02 21:31 - 2013-08-22 10:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-03-02 21:31 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\Help
2014-03-02 21:31 - 2012-08-03 17:29 - 00000000 ____D () C:\ProgramData\PRICache
2014-03-02 21:30 - 2014-03-02 21:23 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-03-02 21:30 - 2013-08-22 10:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-03-02 21:30 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-02 21:29 - 2014-03-02 21:29 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-03-02 21:29 - 2014-03-02 21:28 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-02 21:29 - 2014-03-02 21:25 - 00012096 _____ () C:\WINDOWS\iis.log
2014-03-02 21:29 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-03-02 21:23 - 2014-03-02 21:23 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____D () C:\Program Files\Synaptics
2014-03-02 21:22 - 2014-03-02 21:22 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-03-02 21:21 - 2013-08-22 08:36 - 00000000 __RHD () C:\Users\Default
2014-03-02 21:03 - 2014-03-02 18:39 - 00223670 _____ () C:\WINDOWS\WindowsUpdate (1).log
2014-03-02 20:54 - 2012-07-26 03:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2014-03-02 18:23 - 2013-07-23 19:27 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\CrashDumps
2014-03-02 17:27 - 2013-07-08 16:06 - 00000000 ____D () C:\Users\Lloyd\Documents\Reflect

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2014-03-29 01:06] - [2014-01-31 11:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02



LastRegBack: 2014-03-30 11:49

==================== End Of Log ============================

Link to post
Share on other sites

Here is the Addition.txt from yesterday:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Lloyd (administrator) on LLOYD on 01-04-2014 12:05:32
Running from E:\Lloyd's Stuff\Downloads 0002 Software\Farbar 64x vx 2014-03-31
Windows 8.1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\WINDOWS\system32\Hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Reflect\ReflectService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Google Inc.) C:\Users\Lloyd\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Southwest Airlines) C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
(FastStone Soft) C:\Program Files (x86)\FastStone Capture\FSCapture.exe
(Mister Group) C:\Program Files (x86)\System Explorer\SystemExplorer.exe
(Mister Group) C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AdTrustMedia) C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\LiveComm.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [sysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-20] (IDT, Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3030256 2013-07-11] (Synaptics Incorporated)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [systemExplorerAutoStart] - C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2860576 2014-02-28] (Mister Group)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-01] (AVAST Software)
HKLM-x32\...\Run: [PrivDogService] - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe [525480 2013-12-13] (AdTrustMedia)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\Run: [GarminExpressTrayApp] - C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [115544 2014-03-04] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-3437637007-1443180179-3256198470-1001\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-06-26] (Google Inc.)
HKU\S-1-5-21-3437637007-1443180179-3256198470-1001\...\Run: [GarminExpressTrayApp] - C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [115544 2014-03-04] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-3437637007-1443180179-3256198470-1001\...\Run: [Google+ Auto Backup] - C:\Users\Lloyd\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3619096 2014-01-06] (Google Inc.)
Startup: C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DING!.lnk
ShortcutTarget: DING!.lnk -> C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe (Southwest Airlines)
Startup: C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FastStone Capture.lnk
ShortcutTarget: FastStone Capture.lnk -> C:\Program Files (x86)\FastStone Capture\FSCapture.exe (FastStone Soft)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT13/1
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll ()
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll ()
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll ()
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - WOT - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
DPF: HKLM-x32 {08B0E5C0-4FCB-11CF-AAA5-00401C608501} http://147.203.60.11:82/myspeed/admin
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.15.0.cab
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll ()
Handler-x32: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll ()
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0519D3D7-8899-478B-90BC-4E9D5B3E0F51}: [NameServer]156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{9E617D4B-49F1-4361-92A3-1C1711F3DF75}: [NameServer]156.154.70.22,156.154.71.22

FireFox:
========
FF ProfilePath: C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default
FF Homepage: https://www.google.com/
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Lloyd\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF SearchPlugin: C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\searchplugins\safeguard-secure-search.xml
FF Extension: PrivDog - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\PrivDog@AdTrustMedia.com [2014-02-02]
FF Extension: Garmin Communicator - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2013-12-08]
FF Extension: ViewInFirefox - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975} [2013-07-10]
FF Extension: WOT - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-12-06]
FF Extension: Disconnect - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\2.0@disconnect.me.xpi [2013-08-08]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\elemhidehelper@adblockplus.org.xpi [2013-07-10]
FF Extension: IE View - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi [2013-07-10]
FF Extension: NoScript - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-07-10]
FF Extension: Adblock Plus - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-26]

Chrome:
=======

CHR Extension: (Google Docs) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-24]
CHR Extension: (Google Drive) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-24]
CHR Extension: (WOT) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-01-24]
CHR Extension: (YouTube) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-24]
CHR Extension: (Adblock Plus) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-24]
CHR Extension: (PrivDog) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja [2014-02-01]
CHR Extension: (Google Search) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-24]
CHR Extension: (avast! Online Security) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-18]
CHR Extension: (Tabs to the front!) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjaooagfdhdhmbfchnkhggjmacjlacla [2014-01-24]
CHR Extension: (Disconnect) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2014-01-24]
CHR Extension: (Google Wallet) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-24]
CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-02-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-10-21]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-01] (AVAST Software)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6802624 2014-03-05] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-05] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-01-28] ()
R2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [424280 2014-03-04] (Garmin Ltd or its subsidiaries)
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [1142768 2014-02-19] (Paramount Software UK Ltd)
R3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [821720 2012-11-25] (Mister Group)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-03-02] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-30] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-01] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-17] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-22] (Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-03-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [748272 2014-03-05] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [37560 2014-03-05] (COMODO)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-02-19] (REALiX)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
R0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127664 2014-03-05] (COMODO)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-02] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-02] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-24] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-07-11] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-30] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-31 15:15 - 2014-03-31 15:17 - 00000000 ____D () C:\FRST
2014-03-30 11:32 - 2014-04-01 10:43 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-30 11:26 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-03-30 11:26 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-03-30 11:26 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-03-29 13:48 - 2014-03-29 13:48 - 00003028 _____ () C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-03-29 13:47 - 2014-03-29 13:48 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\Program Files\COMODO
2014-03-29 01:06 - 2014-03-01 01:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-29 01:06 - 2014-02-28 23:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-29 01:06 - 2014-02-28 23:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-29 01:06 - 2014-02-28 23:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-29 01:06 - 2014-02-28 22:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-29 01:06 - 2014-02-28 22:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-29 01:06 - 2014-02-28 22:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-29 01:06 - 2014-02-28 22:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-29 01:06 - 2014-02-28 22:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-29 01:06 - 2014-02-28 22:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-29 01:06 - 2014-02-28 22:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-29 01:06 - 2014-02-28 21:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-29 01:06 - 2014-02-28 21:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-29 01:06 - 2014-02-28 21:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-29 01:06 - 2014-02-28 21:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-29 01:06 - 2014-02-28 21:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-29 01:06 - 2014-02-28 21:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-03-29 01:06 - 2014-02-22 07:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-03-29 01:06 - 2014-02-22 06:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-03-29 01:06 - 2014-02-10 22:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-29 01:06 - 2014-02-10 21:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-03-29 01:06 - 2014-02-10 21:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-29 01:06 - 2014-01-31 11:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-03-29 01:06 - 2014-01-31 11:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-03-29 01:06 - 2014-01-31 11:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-03-29 01:06 - 2014-01-31 08:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-03-29 01:06 - 2014-01-31 04:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-03-29 01:06 - 2014-01-29 04:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-03-29 01:06 - 2014-01-29 03:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-03-29 01:06 - 2014-01-29 03:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-03-29 01:06 - 2014-01-29 03:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-03-29 01:06 - 2014-01-29 03:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-03-29 01:06 - 2014-01-29 02:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-03-29 01:06 - 2014-01-29 02:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-03-29 01:06 - 2014-01-29 02:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-03-29 01:06 - 2014-01-29 01:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-03-29 01:06 - 2014-01-28 19:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-03-29 01:06 - 2014-01-27 14:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-03-29 01:06 - 2014-01-27 14:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-03-29 01:06 - 2014-01-27 14:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-03-29 01:06 - 2014-01-27 13:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-03-29 01:06 - 2014-01-27 13:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-03-29 01:06 - 2014-01-27 13:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-03-29 01:06 - 2014-01-27 13:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-03-29 01:06 - 2014-01-27 13:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-03-29 01:06 - 2014-01-27 12:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-03-29 01:06 - 2014-01-27 12:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-03-29 01:06 - 2014-01-27 12:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-03-29 01:06 - 2014-01-27 10:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-03-29 01:06 - 2014-01-27 10:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-03-29 01:06 - 2014-01-27 06:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-03-29 01:06 - 2014-01-17 18:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-03-29 01:06 - 2014-01-17 16:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-03-29 01:06 - 2013-12-21 09:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-29 01:06 - 2013-12-21 03:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-03-29 01:06 - 2013-12-20 05:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-03-29 01:06 - 2013-12-20 05:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-03-29 01:06 - 2013-10-30 19:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-03-29 01:06 - 2013-10-30 19:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-03-29 01:06 - 2013-10-30 19:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-03-24 17:55 - 2014-03-24 17:55 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Apps\2.0
2014-03-20 09:23 - 2014-03-20 09:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-06 17:59 - 2014-03-06 17:59 - 00000046 _____ () C:\WINDOWS\wininit.ini
2014-03-06 15:11 - 2014-03-06 15:11 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-03-06 15:04 - 2014-03-06 15:04 - 00003310 _____ () C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
2014-03-05 12:54 - 2014-03-05 12:54 - 00748272 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdguard.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00127664 _____ (COMODO) C:\WINDOWS\system32\Drivers\inspect.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00037560 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdhlp.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00023168 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmderd.sys
2014-03-05 12:53 - 2014-03-05 12:53 - 00453680 _____ (COMODO) C:\WINDOWS\system32\guard64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00363504 _____ (COMODO) C:\WINDOWS\SysWOW64\guard32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00352984 _____ (COMODO) C:\WINDOWS\system32\cmdvrt64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00284888 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdvrt32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00045784 _____ (COMODO) C:\WINDOWS\system32\cmdkbd64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00043216 _____ (COMODO) C:\WINDOWS\system32\cmdcsr.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00040664 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbd32.dll
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\spool
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-02 23:56 - 2014-03-03 00:04 - 00233480 _____ () C:\WINDOWS\hpoins21.dat
2014-03-02 23:56 - 2012-10-14 08:17 - 00006174 ____N () C:\WINDOWS\hpomdl21.dat
2014-03-02 23:20 - 2014-03-02 23:20 - 00000000 __SHD () C:\Recovery
2014-03-02 23:20 - 2014-03-02 21:51 - 00000000 ___DC () C:\WINDOWS\Panther
2014-03-02 23:19 - 2014-03-02 23:19 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-03-02 23:16 - 2014-03-02 23:16 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-02 23:16 - 2014-03-02 23:16 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-03-02 23:14 - 2014-03-02 23:14 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-03-02 23:13 - 2014-03-02 23:13 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-02 23:11 - 2014-03-02 23:11 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\inetpub
2014-03-02 23:10 - 2014-01-07 20:46 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-03-02 23:10 - 2014-01-07 20:41 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-03-02 23:10 - 2014-01-07 20:41 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-03-02 23:10 - 2014-01-04 10:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-03-02 23:10 - 2014-01-04 10:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-03-02 23:10 - 2014-01-04 09:08 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-03-02 23:10 - 2014-01-04 08:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-03-02 23:10 - 2014-01-02 18:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-03-02 23:10 - 2014-01-02 18:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-03-02 23:10 - 2013-12-31 20:55 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-03-02 23:10 - 2013-12-31 20:52 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-03-02 23:10 - 2013-12-31 19:56 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-03-02 23:10 - 2013-12-31 19:55 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-03-02 23:10 - 2013-12-31 18:59 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-03-02 23:10 - 2013-12-31 18:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-03-02 23:10 - 2013-12-31 18:56 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-03-02 23:10 - 2013-12-30 18:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-03-02 23:10 - 2013-12-30 18:33 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-03-02 23:10 - 2013-12-30 18:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-03-02 23:10 - 2013-12-30 18:31 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-03-02 23:10 - 2013-12-30 18:31 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-03-02 23:10 - 2013-12-27 10:09 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-03-02 23:10 - 2013-12-27 03:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-03-02 23:10 - 2013-12-27 03:57 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-03-02 23:10 - 2013-12-27 03:23 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-03-02 23:10 - 2013-12-27 02:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-03-02 23:10 - 2013-12-27 02:03 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-03-02 23:10 - 2013-12-27 01:37 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-03-02 23:10 - 2013-12-21 02:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-03-02 23:10 - 2013-12-17 02:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-03-02 23:10 - 2013-12-14 01:31 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-03-02 23:10 - 2013-12-14 01:19 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-03-02 23:10 - 2013-12-13 05:54 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-03-02 23:10 - 2013-12-13 01:36 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-03-02 23:10 - 2013-12-13 00:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-03-02 23:10 - 2013-12-09 03:05 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-03-02 23:10 - 2013-12-08 23:51 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-03-02 23:10 - 2013-08-02 23:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-03-02 23:10 - 2013-08-02 23:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 23:10 - 2013-08-02 23:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-03-02 22:01 - 2014-04-01 09:38 - 00000000 __RDO () C:\Users\Lloyd\SkyDrive
2014-03-02 21:52 - 2014-03-02 21:52 - 00001446 _____ () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-02 21:51 - 2014-03-02 21:51 - 00000020 ___SH () C:\Users\Lloyd\ntuser.ini
2014-03-02 21:43 - 2014-04-01 11:47 - 01392134 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-02 21:43 - 2014-03-02 21:43 - 00022744 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default\Documents\hp.system.package.metadata
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default User\Documents\hp.system.package.metadata
2014-03-02 21:29 - 2014-03-02 21:29 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-03-02 21:28 - 2014-03-02 22:01 - 00000000 ____D () C:\Users\Lloyd
2014-03-02 21:28 - 2014-03-02 21:43 - 00022863 _____ () C:\WINDOWS\diagwrn.xml
2014-03-02 21:28 - 2014-03-02 21:43 - 00022863 _____ () C:\WINDOWS\diagerr.xml
2014-03-02 21:28 - 2014-03-02 21:29 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-02 21:28 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-02 21:28 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-03-02 21:28 - 2013-08-22 10:36 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-03-02 21:25 - 2014-03-02 21:39 - 00973290 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-03-02 21:25 - 2014-03-02 21:29 - 00012096 _____ () C:\WINDOWS\iis.log
2014-03-02 21:23 - 2014-03-02 21:30 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-03-02 21:23 - 2014-03-02 21:23 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____D () C:\Program Files\Synaptics
2014-03-02 21:23 - 2014-01-25 03:23 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-03-02 21:23 - 2014-01-25 03:23 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-03-02 21:22 - 2014-03-02 21:34 - 00000000 ____D () C:\Program Files\IDT
2014-03-02 21:22 - 2014-03-02 21:22 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-03-02 21:22 - 2012-08-20 00:45 - 06085632 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2014-03-02 21:22 - 2012-08-20 00:45 - 01821184 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2014-03-02 21:22 - 2012-08-20 00:45 - 01664000 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2014-03-02 21:22 - 2011-05-02 17:27 - 03308376 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEP64A.dll
2014-03-02 21:22 - 2011-05-02 17:27 - 00426328 _____ (Dolby Laboratories) C:\WINDOWS\system32\EED64A.dll
2014-03-02 21:22 - 2011-05-02 17:27 - 00136024 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEL64A.dll
2014-03-02 21:22 - 2011-05-02 17:27 - 00118104 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEA64A.dll
2014-03-02 20:56 - 2014-03-02 21:43 - 00006569 _____ () C:\WINDOWS\comsetup.log
2014-03-02 18:39 - 2014-03-02 21:03 - 00223670 _____ () C:\WINDOWS\WindowsUpdate (1).log

==================== One Month Modified Files and Folders =======

2014-04-01 12:05 - 2014-03-31 15:15 - 00000000 ____D () C:\FRST
2014-04-01 12:00 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-04-01 11:59 - 2013-06-25 18:20 - 00003914 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4B31273A-F769-4BA3-8451-69AAF717F956}
2014-04-01 11:58 - 2013-06-26 11:17 - 00000908 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-01 11:47 - 2014-03-02 21:43 - 01392134 _____ () C:\WINDOWS\WindowsUpdate.log
2014-04-01 11:01 - 2013-06-25 18:28 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3437637007-1443180179-3256198470-1001
2014-04-01 10:43 - 2014-03-30 11:32 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-04-01 09:58 - 2013-06-26 11:17 - 00000904 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-01 09:38 - 2014-03-02 22:01 - 00000000 __RDO () C:\Users\Lloyd\SkyDrive
2014-03-30 11:34 - 2013-07-11 16:58 - 00000344 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForLloyd.job
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-30 11:26 - 2014-03-30 11:26 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-30 11:13 - 2013-11-14 02:20 - 00025760 _____ () C:\WINDOWS\PFRO.log
2014-03-30 11:13 - 2013-08-22 09:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-03-30 11:12 - 2013-08-22 08:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-03-30 09:53 - 2013-06-26 11:17 - 00003880 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-30 09:53 - 2013-06-26 11:17 - 00003644 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-29 15:33 - 2013-11-14 02:28 - 00958356 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-29 13:48 - 2014-03-29 13:48 - 00003028 _____ () C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-03-29 13:48 - 2014-03-29 13:47 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-03-29 13:47 - 2014-03-29 13:47 - 00000000 ____D () C:\Program Files\COMODO
2014-03-29 13:47 - 2013-06-26 11:39 - 00000000 ____D () C:\ProgramData\COMODO
2014-03-29 13:44 - 2014-02-01 23:25 - 00000780 _____ () C:\WINDOWS\SysWOW64\{7995330B-E01F-4645-B702-53481E7CB778}.cmdfile
2014-03-29 01:43 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-03-29 01:12 - 2013-08-22 09:44 - 00379304 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-29 01:11 - 2013-11-03 13:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-29 01:11 - 2013-07-18 21:58 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-29 01:11 - 2013-07-18 21:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-29 01:10 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-29 01:09 - 2013-07-18 21:59 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-29 01:07 - 2013-08-22 08:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-29 01:07 - 2013-07-09 10:00 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-29 01:00 - 2013-06-26 11:17 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Google
2014-03-26 23:31 - 2013-08-22 09:46 - 00297243 _____ () C:\WINDOWS\setupact.log
2014-03-26 20:35 - 2013-07-04 13:00 - 00000166 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-03-24 17:55 - 2014-03-24 17:55 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Apps\2.0
2014-03-20 09:23 - 2014-03-20 09:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-16 10:00 - 2013-07-15 15:15 - 00000000 ____D () C:\Users\Lloyd\Documents\TurboTax
2014-03-07 09:10 - 2013-07-15 15:40 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-07 09:09 - 2014-02-22 12:34 - 00003556 _____ () C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2014-03-07 09:09 - 2013-07-15 15:40 - 00000000 ____D () C:\ProgramData\Garmin
2014-03-07 09:09 - 2013-07-15 15:40 - 00000000 ____D () C:\Program Files (x86)\Garmin
2014-03-06 17:59 - 2014-03-06 17:59 - 00000046 _____ () C:\WINDOWS\wininit.ini
2014-03-06 15:25 - 2012-07-26 00:37 - 00000000 ____D () C:\Users\Default.migrated
2014-03-06 15:11 - 2014-03-06 15:11 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-03-06 15:04 - 2014-03-06 15:04 - 00003310 _____ () C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
2014-03-05 23:15 - 2013-06-30 22:31 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\HpUpdate
2014-03-05 12:54 - 2014-03-05 12:54 - 00748272 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdguard.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00127664 _____ (COMODO) C:\WINDOWS\system32\Drivers\inspect.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00037560 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdhlp.sys
2014-03-05 12:54 - 2014-03-05 12:54 - 00023168 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmderd.sys
2014-03-05 12:53 - 2014-03-05 12:53 - 00453680 _____ (COMODO) C:\WINDOWS\system32\guard64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00363504 _____ (COMODO) C:\WINDOWS\SysWOW64\guard32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00352984 _____ (COMODO) C:\WINDOWS\system32\cmdvrt64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00284888 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdvrt32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00045784 _____ (COMODO) C:\WINDOWS\system32\cmdkbd64.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00043216 _____ (COMODO) C:\WINDOWS\system32\cmdcsr.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00040664 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbd32.dll
2014-03-05 09:26 - 2014-03-30 11:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-03-05 09:26 - 2014-03-30 11:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-03-30 11:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-03-04 17:53 - 2013-08-22 10:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-03-04 17:53 - 2013-08-22 10:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-04 12:26 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-03-03 00:04 - 2014-03-02 23:56 - 00233480 _____ () C:\WINDOWS\hpoins21.dat
2014-03-03 00:04 - 2013-06-30 22:23 - 00013141 _____ () C:\ProgramData\hpzinstall.log
2014-03-03 00:04 - 2012-07-26 00:26 - 00000127 _____ () C:\WINDOWS\win.ini
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\spool
2014-03-03 00:00 - 2014-03-03 00:00 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-03 00:00 - 2013-06-30 22:28 - 00000000 ____D () C:\Program Files (x86)\HP
2014-03-03 00:00 - 2013-06-30 18:31 - 00000000 ____D () C:\ProgramData\HP
2014-03-02 23:20 - 2014-03-02 23:20 - 00000000 __SHD () C:\Recovery
2014-03-02 23:19 - 2014-03-02 23:19 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-03-02 23:19 - 2014-03-02 23:19 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-03-02 23:19 - 2013-08-22 10:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-03-02 23:18 - 2014-03-02 23:18 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-03-02 23:18 - 2014-03-02 23:18 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-03-02 23:18 - 2014-03-02 23:18 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-03-02 23:18 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-03-02 23:17 - 2014-03-02 23:17 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-03-02 23:17 - 2014-03-02 23:17 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-03-02 23:17 - 2014-03-02 23:17 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-03-02 23:17 - 2014-03-02 23:17 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-03-02 23:17 - 2014-03-02 23:17 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-03-02 23:17 - 2013-10-21 11:57 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-03-02 23:16 - 2014-03-02 23:16 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-03-02 23:16 - 2014-03-02 23:16 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-02 23:16 - 2014-03-02 23:16 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-02 23:16 - 2014-03-02 23:16 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-03-02 23:16 - 2014-03-02 23:16 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-02 23:16 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-03-02 23:16 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-03-02 23:16 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-03-02 23:16 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-03-02 23:16 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-03-02 23:16 - 2013-06-25 18:20 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-02 23:16 - 2013-06-25 18:20 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-02 23:14 - 2014-03-02 23:14 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-03-02 23:14 - 2014-03-02 23:14 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-03-02 23:14 - 2014-03-02 23:14 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-03-02 23:14 - 2014-03-02 23:14 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-03-02 23:14 - 2014-03-02 23:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-03-02 23:13 - 2014-03-02 23:13 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-02 23:13 - 2013-08-22 10:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-03-02 23:11 - 2014-03-02 23:11 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2014-03-02 23:11 - 2014-03-02 23:11 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 23:11 - 2014-03-02 23:11 - 00000000 ____D () C:\inetpub
2014-03-02 23:11 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\inetsrv
2014-03-02 23:11 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-03-02 23:10 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-03-02 22:01 - 2014-03-02 21:28 - 00000000 ____D () C:\Users\Lloyd
2014-03-02 21:54 - 2013-06-25 18:17 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\Packages
2014-03-02 21:52 - 2014-03-02 21:52 - 00001446 _____ () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-02 21:52 - 2013-06-25 18:20 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-03-02 21:51 - 2014-03-02 23:20 - 00000000 ___DC () C:\WINDOWS\Panther
2014-03-02 21:51 - 2014-03-02 21:51 - 00000020 ___SH () C:\Users\Lloyd\ntuser.ini
2014-03-02 21:43 - 2014-03-02 21:43 - 00022744 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-03-02 21:43 - 2014-03-02 21:28 - 00022863 _____ () C:\WINDOWS\diagwrn.xml
2014-03-02 21:43 - 2014-03-02 21:28 - 00022863 _____ () C:\WINDOWS\diagerr.xml
2014-03-02 21:43 - 2014-03-02 20:56 - 00006569 _____ () C:\WINDOWS\comsetup.log
2014-03-02 21:43 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\Registration
2014-03-02 21:39 - 2014-03-02 21:25 - 00973290 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-03-02 21:38 - 2013-08-22 10:36 - 00000000 __RSD () C:\WINDOWS\Media
2014-03-02 21:38 - 2013-08-22 10:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-03-02 21:34 - 2014-03-02 21:22 - 00000000 ____D () C:\Program Files\IDT
2014-03-02 21:34 - 2014-03-01 13:00 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-03-02 21:34 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-03-02 21:34 - 2013-07-15 20:16 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Southwest Airlines
2014-03-02 21:34 - 2013-07-01 22:28 - 00000000 ____D () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2014-03-02 21:34 - 2013-01-18 18:03 - 00000000 ____D () C:\WINDOWS\en
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default\Documents\hp.system.package.metadata
2014-03-02 21:32 - 2014-03-02 21:32 - 00000000 ____D () C:\Users\Default User\Documents\hp.system.package.metadata
2014-03-02 21:32 - 2013-11-14 02:14 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2014-03-02 21:32 - 2013-11-14 02:14 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2014-03-02 21:32 - 2013-11-14 02:14 - 00000000 ____D () C:\WINDOWS\system32\WCN
2014-03-02 21:32 - 2013-08-22 10:37 - 00004893 _____ () C:\WINDOWS\DtcInstall.log
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\MUI
2014-03-02 21:32 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-03-02 21:32 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI
2014-03-02 21:32 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-03-02 21:32 - 2013-01-18 18:24 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda
2014-03-02 21:32 - 2013-01-18 18:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\Adobe
2014-03-02 21:31 - 2013-08-22 10:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker
2014-03-02 21:31 - 2013-08-22 10:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-03-02 21:31 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\Help
2014-03-02 21:31 - 2012-08-03 17:29 - 00000000 ____D () C:\ProgramData\PRICache
2014-03-02 21:30 - 2014-03-02 21:23 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-03-02 21:30 - 2013-08-22 10:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-03-02 21:30 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-02 21:29 - 2014-03-02 21:29 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-03-02 21:29 - 2014-03-02 21:28 - 00000000 ___RD () C:\Users\Lloyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-02 21:29 - 2014-03-02 21:25 - 00012096 _____ () C:\WINDOWS\iis.log
2014-03-02 21:29 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-03-02 21:23 - 2014-03-02 21:23 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-03-02 21:23 - 2014-03-02 21:23 - 00000000 ____D () C:\Program Files\Synaptics
2014-03-02 21:22 - 2014-03-02 21:22 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-03-02 21:21 - 2013-08-22 08:36 - 00000000 __RHD () C:\Users\Default
2014-03-02 21:03 - 2014-03-02 18:39 - 00223670 _____ () C:\WINDOWS\WindowsUpdate (1).log
2014-03-02 20:54 - 2012-07-26 03:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2014-03-02 18:23 - 2013-07-23 19:27 - 00000000 ____D () C:\Users\Lloyd\AppData\Local\CrashDumps
2014-03-02 17:27 - 2013-07-08 16:06 - 00000000 ____D () C:\Users\Lloyd\Documents\Reflect

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2014-03-29 01:06] - [2014-01-31 11:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02



LastRegBack: 2014-03-30 11:49

==================== End Of Log ============================

Link to post
Share on other sites

Tdsskiller.txt:

 

2:17:21.0443 0x1588  TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
12:17:21.0443 0x1588  UEFI system
12:17:44.0608 0x1588  ============================================================
12:17:44.0608 0x1588  Current date / time: 2014/04/01 12:17:44.0608
12:17:44.0608 0x1588  SystemInfo:
12:17:44.0608 0x1588  
12:17:44.0608 0x1588  OS Version: 6.3.9600 ServicePack: 0.0
12:17:44.0608 0x1588  Product type: Workstation
12:17:44.0608 0x1588  ComputerName: LLOYD
12:17:44.0609 0x1588  UserName: Lloyd
12:17:44.0609 0x1588  Windows directory: C:\WINDOWS
12:17:44.0609 0x1588  System windows directory: C:\WINDOWS
12:17:44.0609 0x1588  Running under WOW64
12:17:44.0609 0x1588  Processor architecture: Intel x64
12:17:44.0609 0x1588  Number of processors: 4
12:17:44.0609 0x1588  Page size: 0x1000
12:17:44.0609 0x1588  Boot type: Normal boot
12:17:44.0609 0x1588  ============================================================
12:17:44.0844 0x1588  KLMD registered as C:\WINDOWS\system32\drivers\65591433.sys
12:17:45.0216 0x1588  System UUID: {98F11052-1762-5C2F-DB96-A785AAA068C5}
12:17:46.0032 0x1588  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:17:46.0061 0x1588  ============================================================
12:17:46.0061 0x1588  \Device\Harddisk0\DR0:
12:17:46.0061 0x1588  GPT partitions:
12:17:46.0062 0x1588  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {A3078A5D-9DC4-4FDB-9C0D-11F13A6AD117}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
12:17:46.0062 0x1588  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {DC20576A-604D-46AD-9CBC-2344672325A5}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
12:17:46.0062 0x1588  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {70E0C420-EF41-418B-A003-54B60B5CD2BA}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
12:17:46.0062 0x1588  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {15D0DC5A-9458-4218-AEF5-4DBC33E9149A}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x12B51000
12:17:46.0063 0x1588  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {DCD62E51-B740-42DC-8D80-C323837BBDD9}, Name: , StartLBA 0x12CDB800, BlocksNum 0xAF000
12:17:46.0063 0x1588  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {00085DB9-C4E0-E0C3-C0FD-DE1372BB1000}, Name: Basic data partition, StartLBA 0x12D8A800, BlocksNum 0x5E86C800
12:17:46.0063 0x1588  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {41F661D6-31B9-4581-9FCA-61EAC18C5328}, Name: Basic data partition, StartLBA 0x715F7800, BlocksNum 0x310C800
12:17:46.0063 0x1588  MBR partitions:
12:17:46.0063 0x1588  ============================================================
12:17:46.0088 0x1588  C: <-> \Device\Harddisk0\DR0\Partition4
12:17:46.0130 0x1588  D: <-> \Device\Harddisk0\DR0\Partition7
12:17:46.0155 0x1588  E: <-> \Device\Harddisk0\DR0\Partition6
12:17:46.0156 0x1588  ============================================================
12:17:46.0156 0x1588  Initialize success
12:17:46.0156 0x1588  ============================================================
12:17:59.0170 0x09b8  ============================================================
12:17:59.0170 0x09b8  Scan started
12:17:59.0170 0x09b8  Mode: Manual;
12:17:59.0170 0x09b8  ============================================================
12:17:59.0170 0x09b8  KSN ping started
12:18:01.0846 0x09b8  KSN ping finished: true
12:18:03.0695 0x09b8  ================ Scan system memory ========================
12:18:03.0695 0x09b8  System memory - ok
12:18:03.0696 0x09b8  ================ Scan services =============================
12:18:03.0864 0x09b8  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
12:18:03.0871 0x09b8  1394ohci - ok
12:18:03.0901 0x09b8  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
12:18:03.0903 0x09b8  3ware - ok
12:18:03.0919 0x09b8  [ 899B7E724BF19F17978B6A37B864A277, F7D166DC5F7642D4B834B1E0D956929BA94F3E4D402989FC1A681A08FA1F86B6 ] Accelerometer   C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
12:18:03.0921 0x09b8  Accelerometer - ok
12:18:03.0953 0x09b8  [ 3D30878A269D934100FA5F972E53AF39, 3D2D22D1A9D80DB94D6059C789FBD04DC945722B8644DF6DAA73D5713A10EC52 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
12:18:03.0964 0x09b8  ACPI - ok
12:18:03.0976 0x09b8  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
12:18:03.0979 0x09b8  acpiex - ok
12:18:03.0997 0x09b8  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
12:18:03.0998 0x09b8  acpipagr - ok
12:18:04.0012 0x09b8  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
12:18:04.0013 0x09b8  AcpiPmi - ok
12:18:04.0027 0x09b8  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
12:18:04.0028 0x09b8  acpitime - ok
12:18:04.0096 0x09b8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:18:04.0098 0x09b8  AdobeARMservice - ok
12:18:04.0130 0x09b8  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
12:18:04.0145 0x09b8  ADP80XX - ok
12:18:04.0184 0x09b8  [ B19CA8E441D35AA2B1EE51C10B27DA1B, EBEB96EA44E665B2D4FCD1CC58621A20A17F036EA4A695340A2B65F94F69CDDC ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
12:18:04.0188 0x09b8  AeLookupSvc - ok
12:18:04.0214 0x09b8  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
12:18:04.0223 0x09b8  AFD - ok
12:18:04.0237 0x09b8  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
12:18:04.0238 0x09b8  agp440 - ok
12:18:04.0263 0x09b8  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
12:18:04.0265 0x09b8  ahcache - ok
12:18:04.0299 0x09b8  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
12:18:04.0301 0x09b8  ALG - ok
12:18:04.0310 0x09b8  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
12:18:04.0312 0x09b8  AmdK8 - ok
12:18:04.0344 0x09b8  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
12:18:04.0346 0x09b8  AmdPPM - ok
12:18:04.0357 0x09b8  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
12:18:04.0359 0x09b8  amdsata - ok
12:18:04.0377 0x09b8  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
12:18:04.0381 0x09b8  amdsbs - ok
12:18:04.0391 0x09b8  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
12:18:04.0392 0x09b8  amdxata - ok
12:18:04.0437 0x09b8  [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
12:18:04.0438 0x09b8  AppHostSvc - ok
12:18:04.0449 0x09b8  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
12:18:04.0451 0x09b8  AppID - ok
12:18:04.0477 0x09b8  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
12:18:04.0479 0x09b8  AppIDSvc - ok
12:18:04.0498 0x09b8  [ 7E790DE2487CEDB349D1750B9E47F090, EDA4A87EA2F89ABD174E9590DD46E70B9E7E4B35BDFC3ED90D79CD594F8CB2CD ] Appinfo         C:\WINDOWS\System32\appinfo.dll
12:18:04.0501 0x09b8  Appinfo - ok
12:18:04.0521 0x09b8  [ 4B964AE0DF433A3BFA7BD24713BC2E9B, DC8933265E67E43CAE96EA64B146CB9067B536A4DA2C90EDCB38302BBFA1CE6B ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
12:18:04.0531 0x09b8  AppReadiness - ok
12:18:04.0610 0x09b8  [ 0B726D9ED75C787D6FFAF1E3873BCC70, DC3822B35FB65D53CC5D0E3982C326C5F47F0911BEB1F66DCC84A79C84621E1E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
12:18:04.0632 0x09b8  AppXSvc - ok
12:18:04.0662 0x09b8  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
12:18:04.0665 0x09b8  arcsas - ok
12:18:04.0765 0x09b8  [ AA2E8C6B8D7EA7BAF04C988801927F48, 4B82043F1B9C67CDCDC71102F7AEE05EEA8F9775A5CB33AE80F4DCDB42521C40 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:18:04.0768 0x09b8  aspnet_state - ok
12:18:04.0800 0x09b8  [ 0ACC3F49015E628590CA4372322EB46B, EB4E22EB4E840261168AF750E878E7A28CC080A89CEF77B5037C2897C40D1DE3 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
12:18:04.0805 0x09b8  aswMonFlt - ok
12:18:04.0838 0x09b8  [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
12:18:04.0842 0x09b8  aswRdr - ok
12:18:04.0856 0x09b8  [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
12:18:04.0859 0x09b8  aswRvrt - ok
12:18:04.0900 0x09b8  [ 43599E630DFC30AD4E6A2B4B269EB1C0, DA6C7FDC1F6A57117B17F697A94190CC0BB9E32B8CBB4F8C042AA461361CC74C ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
12:18:04.0916 0x09b8  aswSnx - ok
12:18:04.0946 0x09b8  [ F22DE5F5BA8ADA0A861441B624B51EB5, 58EF9FB3328B6B470F3652DBCE8ACEDAEE6839AC393889A02052298CA204689B ] aswSP           C:\Windows\system32\drivers\aswSP.sys
12:18:04.0953 0x09b8  aswSP - ok
12:18:04.0969 0x09b8  [ FD3EA14ADF6216BDF4030DB2EFD43D96, 2D3009008AAE93285301B5844DC214D6B05ECB05D37AE08895D8E7187A0BB619 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
12:18:04.0971 0x09b8  aswStm - ok
12:18:04.0991 0x09b8  [ 90399625F341AB76BA4B85A5E860EB1F, 92DD461B14240222F451F971642844A4DAD9DF4FFEAA8F12D16EA117822BEEF3 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
12:18:04.0995 0x09b8  aswVmm - ok
12:18:05.0012 0x09b8  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:18:05.0013 0x09b8  AsyncMac - ok
12:18:05.0025 0x09b8  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
12:18:05.0026 0x09b8  atapi - ok
12:18:05.0189 0x09b8  [ 37B33DDE5490A2DF56DFB46580356E3F, 40FE378C9010B06FD7ADE30F76F916D5BDBB26525CF3D11D5780E2247B6099D8 ] athr            C:\WINDOWS\system32\DRIVERS\athwbx.sys
12:18:05.0250 0x09b8  athr - ok
12:18:05.0287 0x09b8  [ 4903CBC14742B5AB4DCF7A92F7DEC483, B8491FDA1D1E767658ECC5C3C3DDFB3EB12A969F0F6ACF116C18300FF54075D5 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
12:18:05.0291 0x09b8  AudioEndpointBuilder - ok
12:18:05.0358 0x09b8  [ EF276593AD1BDF5A99032F62D6272848, 3961689B34A6BCD891FF48A044ABD184F5D7320AE882DF79E5ADC57B08205BA9 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
12:18:05.0373 0x09b8  Audiosrv - ok
12:18:05.0447 0x09b8  [ CC42F104172B4A62793083D380867317, 0B09823419B328E29EB9FFBD033B3295590E414F31E7B37F11F62BD4B7EBAF06 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:18:05.0452 0x09b8  avast! Antivirus - ok
12:18:05.0490 0x09b8  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
12:18:05.0495 0x09b8  AxInstSV - ok
12:18:05.0541 0x09b8  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
12:18:05.0566 0x09b8  b06bdrv - ok
12:18:05.0585 0x09b8  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
12:18:05.0587 0x09b8  BasicDisplay - ok
12:18:05.0603 0x09b8  [ 2748E116F8621A4DB0D39FCDD7318C01, DA2DEB7FE1D887B1EF5E2B5103270B72268D8ABDDA36C396627305C0BA90FC20 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
12:18:05.0604 0x09b8  BasicRender - ok
12:18:05.0673 0x09b8  [ F2E8CEFC8CF4D6454F4121C5FF93136A, DFD05AD328BD0FDD8BF44043C40084A6DF98BF6F5CEAE71BF793176AF6ADFBBB ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe
12:18:05.0684 0x09b8  BBSvc - ok
12:18:05.0710 0x09b8  [ 6E1BCC590C9D30FEE8FC14DBD053CE94, 4F698D399225A890B7FDCE3773E504B2880534ED1C0F4C37589568C44BA51743 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
12:18:05.0717 0x09b8  BBUpdate - ok
12:18:05.0735 0x09b8  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
12:18:05.0736 0x09b8  bcmfn2 - ok
12:18:05.0764 0x09b8  [ BBE61A40665B83488901E41082A6097D, ADF750DB32E1295C57C03D587A60194529C8B83F90F433C3458288FB5E8F475B ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
12:18:05.0771 0x09b8  BDESVC - ok
12:18:05.0801 0x09b8  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
12:18:05.0801 0x09b8  Beep - ok
12:18:05.0841 0x09b8  [ 6468B696C65775D51A06615830E0E79D, CC4081B3A4895192B4796A745F0BCE8C9C3149B854A7B9BEF84668A2E1D074B5 ] BFE             C:\WINDOWS\System32\bfe.dll
12:18:05.0856 0x09b8  BFE - ok
12:18:05.0941 0x09b8  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
12:18:05.0968 0x09b8  BITS - ok
12:18:05.0978 0x09b8  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
12:18:05.0980 0x09b8  bowser - ok
12:18:06.0012 0x09b8  [ A6207A88B596F726DE558425F3B7E592, 126375CC8EA101E0878728323B7EAA69DC8699AC04470FB95D482B1025E0FFB2 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
12:18:06.0018 0x09b8  BrokerInfrastructure - ok
12:18:06.0041 0x09b8  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\WINDOWS\System32\browser.dll
12:18:06.0044 0x09b8  Browser - ok
12:18:06.0073 0x09b8  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
12:18:06.0074 0x09b8  BthAvrcpTg - ok
12:18:06.0090 0x09b8  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
12:18:06.0092 0x09b8  BthHFEnum - ok
12:18:06.0103 0x09b8  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
12:18:06.0104 0x09b8  bthhfhid - ok
12:18:06.0110 0x09b8  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
12:18:06.0111 0x09b8  BTHMODEM - ok
12:18:06.0138 0x09b8  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
12:18:06.0141 0x09b8  bthserv - ok
12:18:06.0153 0x09b8  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
12:18:06.0154 0x09b8  cdfs - ok
12:18:06.0184 0x09b8  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
12:18:06.0187 0x09b8  cdrom - ok
12:18:06.0201 0x09b8  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
12:18:06.0204 0x09b8  CertPropSvc - ok
12:18:06.0232 0x09b8  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
12:18:06.0233 0x09b8  circlass - ok
12:18:06.0266 0x09b8  [ 7F006813C2AFE622C13D7AF94F56CD07, 9F4AEEE19B44F4117BE036F1475CE2E91ED740EB7D8D38364F9724517F777482 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
12:18:06.0273 0x09b8  CLFS - ok
12:18:06.0293 0x09b8  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
12:18:06.0294 0x09b8  CmBatt - ok
12:18:06.0545 0x09b8  [ 43C3EA1629CF8F6EDF020D7ABF65137B, 914891F3DC0936C8A7B1E30C6D4DF9F55E35EC91F3EB4150D947968D590AC62A ] CmdAgent        C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
12:18:06.0650 0x09b8  CmdAgent - ok
12:18:06.0685 0x09b8  [ B55F5BFFF2D0484630D0BBAF90B74692, 43FFA6D3B4F99646A4721B6DF5DDA0660F108E4E5F9C8C97518A9AB3186DC207 ] cmderd          C:\WINDOWS\system32\DRIVERS\cmderd.sys
12:18:06.0686 0x09b8  cmderd - ok
12:18:06.0735 0x09b8  [ B24552677A7AB8AE3530599B17179DC9, AA2C12C70305B2C07EA5E463B42635BDEFD8F8860ECA4546F214E1DD336AF2E9 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
12:18:06.0747 0x09b8  cmdGuard - ok
12:18:06.0759 0x09b8  [ CDF75A3EBB59FC6146AB872769175865, E946E97E924317E7668814436529A0D53A4ACB89A8F2DEB17F446DA7F55A5056 ] cmdhlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
12:18:06.0760 0x09b8  cmdhlp - ok
12:18:06.0842 0x09b8  [ C8D131CF2377A8E61A9A38766BCDCCF7, 740EDE3CBC0860C11BDDFDB0E8346D3DB432D436ADA7BD6F31F6D1BF550D6581 ] cmdvirth        C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
12:18:06.0877 0x09b8  cmdvirth - ok
12:18:06.0910 0x09b8  [ 825BE21E6395E00698D8A23955A87972, 303F10C3BA72ABB3BA27D08968B10E8EB03FFB6951943B0E9DD35CF48BB72578 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
12:18:06.0919 0x09b8  CNG - ok
12:18:06.0941 0x09b8  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
12:18:06.0943 0x09b8  CompositeBus - ok
12:18:06.0947 0x09b8  COMSysApp - ok
12:18:06.0975 0x09b8  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
12:18:06.0977 0x09b8  condrv - ok
12:18:07.0042 0x09b8  [ 6DB7264A95FE984FFA072BA79FA087C8, CF180663B24B1660CD04CB26D8663FB7F357C9CF5731B315635D63B7DB76BCEC ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
12:18:07.0049 0x09b8  cphs - ok
12:18:07.0085 0x09b8  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
12:18:07.0089 0x09b8  CryptSvc - ok
12:18:07.0108 0x09b8  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
12:18:07.0112 0x09b8  dam - ok
12:18:07.0181 0x09b8  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
12:18:07.0200 0x09b8  DcomLaunch - ok
12:18:07.0235 0x09b8  [ F4CCAADC2C78F57E4F16B24C9201CE22, B76A5C487A814CB986FE8CC398FB7493C9EAB9ACC933A3C35384FA447092EF00 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
12:18:07.0244 0x09b8  defragsvc - ok
12:18:07.0279 0x09b8  [ 0BC71D4D3B5883903C37BF4E13B0F0C5, C5EC2AD001FB7E72D3D12DBADFE01C308ACCB7426E0B90CCB3ECE2DE49D5E7D4 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
12:18:07.0287 0x09b8  DeviceAssociationService - ok
12:18:07.0309 0x09b8  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
12:18:07.0316 0x09b8  DeviceInstall - ok
12:18:07.0345 0x09b8  [ 5DB26D7E0216D0BF364A81D3829AD7B9, FD786D530EA9ADBCB48782FE091E926505A83F2BF3B4181A3D4EDFAA991C4E5E ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
12:18:07.0348 0x09b8  Dfsc - ok
12:18:07.0385 0x09b8  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
12:18:07.0392 0x09b8  Dhcp - ok
12:18:07.0410 0x09b8  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
12:18:07.0412 0x09b8  disk - ok
12:18:07.0446 0x09b8  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
12:18:07.0447 0x09b8  dmvsc - ok
12:18:07.0475 0x09b8  [ 5BAF7714E68F93515A937A3FA8587EF9, DD9296F75341EF96D514139DD8A8680B332E9B9D476368AB897FDA2D5D674E60 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
12:18:07.0481 0x09b8  Dnscache - ok
12:18:07.0505 0x09b8  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
12:18:07.0511 0x09b8  dot3svc - ok
12:18:07.0533 0x09b8  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
12:18:07.0537 0x09b8  DPS - ok
12:18:07.0654 0x09b8  [ 49B2C034D77F9F73C80AC55E795CCB6E, EC3B3AF80FA86222E63ABA646C3452C7AD1B9462A1A18D059F5F7EC18C37D97C ] DragonUpdater   C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
12:18:07.0689 0x09b8  DragonUpdater - ok
12:18:07.0703 0x09b8  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
12:18:07.0704 0x09b8  drmkaud - ok
12:18:07.0730 0x09b8  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
12:18:07.0735 0x09b8  DsmSvc - ok
12:18:07.0801 0x09b8  [ 13B160C1913F012BD1615EB1398D3779, 2B5786AAEC845156D28ABDAA77347844D39F33DF53F2C96ACEF38A668ADFF422 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
12:18:07.0826 0x09b8  DXGKrnl - ok
12:18:07.0854 0x09b8  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
12:18:07.0857 0x09b8  Eaphost - ok
12:18:07.0967 0x09b8  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
12:18:08.0021 0x09b8  ebdrv - ok
12:18:08.0049 0x09b8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
12:18:08.0053 0x09b8  EFS - ok
12:18:08.0088 0x09b8  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
12:18:08.0090 0x09b8  EhStorClass - ok
12:18:08.0106 0x09b8  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
12:18:08.0108 0x09b8  EhStorTcgDrv - ok
12:18:08.0122 0x09b8  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
12:18:08.0123 0x09b8  ErrDev - ok
12:18:08.0182 0x09b8  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
12:18:08.0192 0x09b8  EventSystem - ok
12:18:08.0218 0x09b8  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
12:18:08.0222 0x09b8  exfat - ok
12:18:08.0238 0x09b8  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
12:18:08.0242 0x09b8  fastfat - ok
12:18:08.0278 0x09b8  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
12:18:08.0291 0x09b8  Fax - ok
12:18:08.0311 0x09b8  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
12:18:08.0312 0x09b8  fdc - ok
12:18:08.0342 0x09b8  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
12:18:08.0344 0x09b8  fdPHost - ok
12:18:08.0355 0x09b8  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
12:18:08.0358 0x09b8  FDResPub - ok
12:18:08.0370 0x09b8  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
12:18:08.0374 0x09b8  fhsvc - ok
12:18:08.0396 0x09b8  [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5, 85D1AC25CF8056FF303930A7E18DE5F7C3AEE429272CB791BD6F81F1DAFB7D8A ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
12:18:08.0398 0x09b8  FileInfo - ok
12:18:08.0409 0x09b8  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
12:18:08.0411 0x09b8  Filetrace - ok
12:18:08.0424 0x09b8  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
12:18:08.0425 0x09b8  flpydisk - ok
12:18:08.0453 0x09b8  [ 60D5067FCE6D9433D35E04C01D8538B3, 2D97E9E8FF18CF564DE8E70F68B56F0177DC6C0E9EEB7E1C58BBDF42456CB0D8 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
12:18:08.0459 0x09b8  FltMgr - ok
12:18:08.0519 0x09b8  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\WINDOWS\system32\FntCache.dll
12:18:08.0543 0x09b8  FontCache - ok
12:18:08.0631 0x09b8  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:18:08.0634 0x09b8  FontCache3.0.0.0 - ok
12:18:08.0669 0x09b8  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
12:18:08.0671 0x09b8  FsDepends - ok
12:18:08.0690 0x09b8  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:18:08.0692 0x09b8  Fs_Rec - ok
12:18:08.0751 0x09b8  [ 83E1F0983B02A6F8EC764D18E24ECF10, B5CA3FCB442697681C513FB37C6BB74D7A72B67DC65E2FCA93A7F9E81B63EAAC ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
12:18:08.0768 0x09b8  fvevol - ok
12:18:08.0788 0x09b8  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
12:18:08.0789 0x09b8  FxPPM - ok
12:18:08.0802 0x09b8  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
12:18:08.0804 0x09b8  gagp30kx - ok
12:18:08.0861 0x09b8  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
12:18:08.0868 0x09b8  GamesAppService - ok
12:18:08.0952 0x09b8  [ C881D138459165D6E4347ADB00272E29, D63C9CC6E741560A646C60067AA4D1CA2CF2DB75ED94340ABE3B38CD4D25E54B ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
12:18:08.0960 0x09b8  Garmin Core Update Service - ok
12:18:08.0991 0x09b8  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
12:18:08.0992 0x09b8  gencounter - ok
12:18:09.0028 0x09b8  [ FDA72810CA2F8409D9B31E833C448E34, FC24350E875D2AF2A41DB5EF0BFE4F876DADEACCC0B34B9B9C9B2CA185CBAE87 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
12:18:09.0034 0x09b8  GPIOClx0101 - ok
12:18:09.0092 0x09b8  [ 0BDE0FCF597E9B65600121EF54FF8340, DA5C96E84E05AD09251C82B4BFEDE274342409803730CEBF24EEAD0DCD42DA7E ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
12:18:09.0115 0x09b8  gpsvc - ok
12:18:09.0176 0x09b8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:18:09.0183 0x09b8  gupdate - ok
12:18:09.0196 0x09b8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:18:09.0200 0x09b8  gupdatem - ok
12:18:09.0237 0x09b8  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:18:09.0240 0x09b8  gusvc - ok
12:18:09.0264 0x09b8  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
12:18:09.0266 0x09b8  HDAudBus - ok
12:18:09.0277 0x09b8  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
12:18:09.0278 0x09b8  HidBatt - ok
12:18:09.0322 0x09b8  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
12:18:09.0328 0x09b8  HidBth - ok
12:18:09.0358 0x09b8  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
12:18:09.0360 0x09b8  hidi2c - ok
12:18:09.0379 0x09b8  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
12:18:09.0381 0x09b8  HidIr - ok
12:18:09.0406 0x09b8  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
12:18:09.0411 0x09b8  hidserv - ok
12:18:09.0430 0x09b8  [ F31397220D9687E11EB448649AA6E038, 671ACEAA8E00E0D4ED7E33D06A4558121DA4F56EB94F1CBC16FEB2EF3852F7A5 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
12:18:09.0432 0x09b8  HidUsb - ok
12:18:09.0470 0x09b8  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
12:18:09.0479 0x09b8  hkmsvc - ok
12:18:09.0502 0x09b8  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
12:18:09.0515 0x09b8  HomeGroupListener - ok
12:18:09.0574 0x09b8  [ BE5F89BAFBD4272D5A0C0A37B97865ED, 2F80CE6D123FEED9FA7B00ACF7547FF77E0E6FDC5243942E83BE308C46D414C6 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
12:18:09.0592 0x09b8  HomeGroupProvider - ok
12:18:09.0637 0x09b8  [ 2A8B93A01621E100A578E83C768AFA2C, 6637D260AF180D1F200D219796FCE6D524FC6BF57C0CEEF9E1B3616E85865AD1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
12:18:09.0639 0x09b8  HP Support Assistant Service - ok
12:18:09.0671 0x09b8  [ 4F88FA114D15504E1B17978A8DA4165E, FB3876525BC82B20D1CD159F1DC2CCBA63CAAA755A97E5C97089B09DEA6DD790 ] HPConnectedRemote C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
12:18:09.0672 0x09b8  HPConnectedRemote - ok
12:18:09.0694 0x09b8  [ D104FF402FC3DDB686E6DEF00334DB26, 6CCE56587C02ECE474C6BF959C4A6F752A1FF0B718FBE8EE4FD9755313A207C1 ] hpdskflt        C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
12:18:09.0695 0x09b8  hpdskflt - ok
12:18:09.0769 0x09b8  [ 0D0213498683414DDE29B1686A4C08D5, E9B64406C04B6E55CBD17E7C47B023CEA11FEE07B791154129D6F4F29D15AB7F ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
12:18:09.0780 0x09b8  hpqcxs08 - ok
12:18:09.0801 0x09b8  [ EE281DD6843F3F697C1AD7933EEB1E9B, 1ECE31C2150B92DDC1DCBBCECFE3E979F2C60B3F106280E3167BEC0269BF7A41 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
12:18:09.0803 0x09b8  hpqddsvc - ok
12:18:09.0862 0x09b8  [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
12:18:09.0880 0x09b8  hpqwmiex - ok
12:18:09.0903 0x09b8  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
12:18:09.0905 0x09b8  HpSAMD - ok
12:18:09.0949 0x09b8  [ C995EA1C6915D897E06D41AF95B9312C, 65DE6599F1C735BBDCCE4728F7F98167BCA0BF1B8D4218BBF7546B025C9A38BD ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
12:18:09.0980 0x09b8  HPSLPSVC - ok
12:18:10.0010 0x09b8  [ 55FFCBB036D7BE4BCA6FA1421203A27F, 5BB865FC631390F59AF5F2452D4D2DA47E34A49E194C8010E942F5A2013F3895 ] hpsrv           C:\WINDOWS\system32\Hpservice.exe
12:18:10.0013 0x09b8  hpsrv - ok
12:18:10.0032 0x09b8  [ 3C5B2067338E4EFDADE94E4A72728F23, 72E21FA1E660F9405A5E39B0F89AB21C60F20BAC13247567EF7139AC130F1897 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
12:18:10.0033 0x09b8  HPWMISVC - ok
12:18:10.0071 0x09b8  [ 3502776E366C913D49C0DA928AE3E6CB, 3FB452F640B78AEDFBC09188F25C566949660163732A180331226A93DB08F26C ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
12:18:10.0091 0x09b8  HTTP - ok
12:18:10.0137 0x09b8  [ D7E0591E2BA1289C875A9D948377441E, 9FDBC10A4FBCE2E9521DF84E177A08530DF6FBF1F830B3D3788367DF8F8ED327 ] HWiNFO32        C:\Windows\system32\drivers\HWiNFO64A.SYS
12:18:10.0139 0x09b8  HWiNFO32 - ok
12:18:10.0184 0x09b8  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
12:18:10.0185 0x09b8  hwpolicy - ok
12:18:10.0199 0x09b8  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
12:18:10.0200 0x09b8  hyperkbd - ok
12:18:10.0217 0x09b8  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
12:18:10.0218 0x09b8  HyperVideo - ok
12:18:10.0240 0x09b8  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
12:18:10.0243 0x09b8  i8042prt - ok
12:18:10.0258 0x09b8  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
12:18:10.0259 0x09b8  iaLPSSi_GPIO - ok
12:18:10.0276 0x09b8  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
12:18:10.0279 0x09b8  iaLPSSi_I2C - ok
12:18:10.0330 0x09b8  [ C02FC4C6C411C85F209EBD0EBBF8CAE9, C023D2B98009FE7599AEFC5B246C7599686ED24783FAD7C6706F77DCA29CC65D ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
12:18:10.0341 0x09b8  iaStorA - ok
12:18:10.0392 0x09b8  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
12:18:10.0406 0x09b8  iaStorAV - ok
12:18:10.0477 0x09b8  [ 43095B27DB6B7C250245C56E6BFBCD70, 32E567FE24573258D99AC3768C8536E0527ABA1434E7E1899C3E0A69DD3FDA5F ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
12:18:10.0478 0x09b8  IAStorDataMgrSvc - ok
12:18:10.0525 0x09b8  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
12:18:10.0532 0x09b8  iaStorV - ok
12:18:10.0621 0x09b8  [ ABEFA4BD23329FD9BD47496BF2E58774, 9689D4C6380735EE1CC7F480696CDDC229E0FA511942AC813314D353584D82DD ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
12:18:10.0661 0x09b8  IconMan_R - ok
12:18:10.0668 0x09b8  IEEtwCollectorService - ok
12:18:10.0802 0x09b8  [ 0AECABC08F9AB4E504935B7662123B6E, 79D1C801A8FB0920469D6088158C518481485A065E8AF2E580FE4FCC1DE8F39B ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
12:18:10.0871 0x09b8  igfx - ok
12:18:10.0933 0x09b8  [ B82255670D270B75D2D2F0F8747D1443, C40E151AC3FBF289456A4AD9E5744B314067ADA03FE729970410931904305F51 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
12:18:10.0953 0x09b8  IKEEXT - ok
12:18:10.0985 0x09b8  [ D4E3E1BB88AAD5AAE8A97AD4910E67F7, 08025D65D3288716470F887BCBA367A91342182A6CB1E0A5A53BBD82490EB250 ] inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
12:18:10.0988 0x09b8  inspect - ok
12:18:11.0018 0x09b8  [ F0F581A2299CB2BAB1DF2597BCDDB80F, EE485AF3049C87666BC6D6BFFC8A0EB4B95831D9061EB81848ECEE29C4232BF4 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
12:18:11.0019 0x09b8  intaud_WaveExtensible - ok
12:18:11.0055 0x09b8  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
12:18:11.0073 0x09b8  IntcDAud - ok
12:18:11.0167 0x09b8  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:18:11.0181 0x09b8  Intel® Capability Licensing Service Interface - ok
12:18:11.0208 0x09b8  [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
12:18:11.0210 0x09b8  Intel® ME Service - ok
12:18:11.0235 0x09b8  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
12:18:11.0236 0x09b8  intelide - ok
12:18:11.0253 0x09b8  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
12:18:11.0254 0x09b8  intelpep - ok
12:18:11.0280 0x09b8  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
12:18:11.0282 0x09b8  intelppm - ok
12:18:11.0365 0x09b8  [ 0895CDD7F1542FFCC5BBB560EC78BC16, 383D9FFE7FB313EA201DE877F3D48B5116FFA261EDEF5D0D0FE79F14E9682D25 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
12:18:11.0368 0x09b8  IntuitUpdateServiceV4 - ok
12:18:11.0422 0x09b8  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:18:11.0426 0x09b8  IpFilterDriver - ok
12:18:11.0503 0x09b8  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
12:18:11.0522 0x09b8  iphlpsvc - ok
12:18:11.0552 0x09b8  [ 9949A3C7590B8C536C05312205079A82, 9276A09D5F910AE8358A96505AB3F66C514870944D58B63B71D5E96567D1E6BB ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
12:18:11.0554 0x09b8  IPMIDRV - ok
12:18:11.0580 0x09b8  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
12:18:11.0583 0x09b8  IPNAT - ok
12:18:11.0605 0x09b8  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
12:18:11.0606 0x09b8  IRENUM - ok
12:18:11.0621 0x09b8  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
12:18:11.0622 0x09b8  isapnp - ok
12:18:11.0661 0x09b8  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
12:18:11.0666 0x09b8  iScsiPrt - ok
12:18:11.0692 0x09b8  [ C2BC9AC9C6514230A481BDCA6A24BEFD, 84E41675D11EF2EEECED23C8469503C8D12810A2C6B6743D7AA322EB6DF7E68D ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
12:18:11.0694 0x09b8  iwdbus - ok
12:18:11.0732 0x09b8  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
12:18:11.0740 0x09b8  jhi_service - ok
12:18:11.0775 0x09b8  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
12:18:11.0778 0x09b8  kbdclass - ok
12:18:11.0797 0x09b8  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
12:18:11.0800 0x09b8  kbdhid - ok
12:18:11.0833 0x09b8  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
12:18:11.0835 0x09b8  kdnic - ok
12:18:11.0850 0x09b8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
12:18:11.0854 0x09b8  KeyIso - ok
12:18:11.0873 0x09b8  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
12:18:11.0875 0x09b8  KSecDD - ok
12:18:11.0892 0x09b8  [ 7296EA420134EAC390798B3232D066A4, 1F5D51EEFD389706660DFB4DB4BF3EC570BEC7097CEB5CAE70EFFE35C3255346 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
12:18:11.0896 0x09b8  KSecPkg - ok
12:18:11.0910 0x09b8  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
12:18:11.0912 0x09b8  ksthunk - ok
12:18:11.0937 0x09b8  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
12:18:11.0946 0x09b8  KtmRm - ok
12:18:11.0981 0x09b8  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
12:18:11.0991 0x09b8  LanmanServer - ok
12:18:12.0018 0x09b8  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
12:18:12.0028 0x09b8  LanmanWorkstation - ok
12:18:12.0070 0x09b8  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
12:18:12.0080 0x09b8  lfsvc - ok
12:18:12.0110 0x09b8  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
12:18:12.0111 0x09b8  lltdio - ok
12:18:12.0146 0x09b8  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
12:18:12.0153 0x09b8  lltdsvc - ok
12:18:12.0179 0x09b8  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
12:18:12.0183 0x09b8  lmhosts - ok
12:18:12.0205 0x09b8  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
12:18:12.0210 0x09b8  LMS - ok
12:18:12.0241 0x09b8  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
12:18:12.0244 0x09b8  LSI_SAS - ok
12:18:12.0260 0x09b8  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
12:18:12.0263 0x09b8  LSI_SAS2 - ok
12:18:12.0268 0x09b8  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
12:18:12.0270 0x09b8  LSI_SAS3 - ok
12:18:12.0286 0x09b8  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
12:18:12.0288 0x09b8  LSI_SSS - ok
12:18:12.0332 0x09b8  [ B6B69FF200F68888A7FAFDF204D00C91, 4C9BA7B8646C74AE1E49F513EF426930C09969F29F1533D84D020B414BB1609B ] LSM             C:\WINDOWS\System32\lsm.dll
12:18:12.0347 0x09b8  LSM - ok
12:18:12.0358 0x09b8  [ 5EF604B0698F4FA962778285E8C5F1F2, 0465BDAB7EFBE9CC648E7E736B0B8BE152BD2FAB0917F6306675B9039C77F454 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
12:18:12.0361 0x09b8  luafv - ok
12:18:12.0386 0x09b8  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
12:18:12.0387 0x09b8  megasas - ok
12:18:12.0411 0x09b8  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
12:18:12.0420 0x09b8  megasr - ok
12:18:12.0453 0x09b8  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
12:18:12.0455 0x09b8  MEIx64 - ok
12:18:12.0476 0x09b8  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
12:18:12.0481 0x09b8  MMCSS - ok
12:18:12.0509 0x09b8  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
12:18:12.0511 0x09b8  Modem - ok
12:18:12.0528 0x09b8  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
12:18:12.0529 0x09b8  monitor - ok
12:18:12.0543 0x09b8  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
12:18:12.0545 0x09b8  mouclass - ok
12:18:12.0575 0x09b8  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
12:18:12.0576 0x09b8  mouhid - ok
12:18:12.0589 0x09b8  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
12:18:12.0591 0x09b8  mountmgr - ok
12:18:12.0630 0x09b8  [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:18:12.0633 0x09b8  MozillaMaintenance - ok
12:18:12.0652 0x09b8  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
12:18:12.0654 0x09b8  mpsdrv - ok
12:18:12.0697 0x09b8  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
12:18:12.0715 0x09b8  MpsSvc - ok
12:18:12.0752 0x09b8  [ 59DCEC7499095DE5AED741358037AE2D, 60C4CEBCAE27C121E9D63BD2BC3E5863A91ABC77616C56C10618273A8F9B6F61 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
12:18:12.0755 0x09b8  MRxDAV - ok
12:18:12.0799 0x09b8  [ 79B6F3DF7CDFD12159871FF71464F0CE, E01CDD5296237FB60D426784E1142B1AF2CEABDD7CB0B43C4798402C812A94D5 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:18:12.0805 0x09b8  mrxsmb - ok
12:18:12.0827 0x09b8  [ 295771B092D4F7FCF2B62F80CCD14320, 53655B5ABA43A6A9114FE545B88F84E52319B905B8393A51BD97678D3F94A178 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
12:18:12.0832 0x09b8  mrxsmb10 - ok
12:18:12.0846 0x09b8  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
12:18:12.0850 0x09b8  mrxsmb20 - ok
12:18:12.0881 0x09b8  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
12:18:12.0883 0x09b8  MsBridge - ok
12:18:12.0913 0x09b8  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
12:18:12.0919 0x09b8  MSDTC - ok
12:18:12.0934 0x09b8  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
12:18:12.0935 0x09b8  Msfs - ok
12:18:12.0960 0x09b8  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys

Link to post
Share on other sites

The rest of the Tdsskiller.txt:

 

12:18:12.0961 0x09b8  msgpiowin32 - ok
12:18:12.0972 0x09b8  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
12:18:12.0974 0x09b8  mshidkmdf - ok
12:18:12.0981 0x09b8  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
12:18:12.0982 0x09b8  mshidumdf - ok
12:18:12.0990 0x09b8  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
12:18:12.0991 0x09b8  msisadrv - ok
12:18:13.0018 0x09b8  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
12:18:13.0024 0x09b8  MSiSCSI - ok
12:18:13.0028 0x09b8  msiserver - ok
12:18:13.0043 0x09b8  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:18:13.0044 0x09b8  MSKSSRV - ok
12:18:13.0065 0x09b8  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
12:18:13.0067 0x09b8  MsLldp - ok
12:18:13.0083 0x09b8  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:18:13.0084 0x09b8  MSPCLOCK - ok
12:18:13.0090 0x09b8  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
12:18:13.0091 0x09b8  MSPQM - ok
12:18:13.0127 0x09b8  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
12:18:13.0133 0x09b8  MsRPC - ok
12:18:13.0153 0x09b8  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
12:18:13.0155 0x09b8  mssmbios - ok
12:18:13.0159 0x09b8  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
12:18:13.0160 0x09b8  MSTEE - ok
12:18:13.0180 0x09b8  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
12:18:13.0181 0x09b8  MTConfig - ok
12:18:13.0207 0x09b8  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
12:18:13.0209 0x09b8  Mup - ok
12:18:13.0222 0x09b8  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
12:18:13.0224 0x09b8  mvumis - ok
12:18:13.0298 0x09b8  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
12:18:13.0314 0x09b8  napagent - ok
12:18:13.0350 0x09b8  [ CF8B989D89D6807B887690F2CF24EFD9, 7A3ED124D8D7736F57CD687111C478A206422D117099B2F752B6D933D009BCAC ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
12:18:13.0358 0x09b8  NativeWifiP - ok
12:18:13.0406 0x09b8  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
12:18:13.0425 0x09b8  NcaSvc - ok
12:18:13.0458 0x09b8  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
12:18:13.0465 0x09b8  NcbService - ok
12:18:13.0485 0x09b8  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
12:18:13.0490 0x09b8  NcdAutoSetup - ok
12:18:13.0553 0x09b8  [ ED39D676080A1AEA755F1DEC1A8DF1A4, E413DA1113A51F3A68957147A50248AA98C0D365103D137D5AE8638C74E802D7 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
12:18:13.0584 0x09b8  NDIS - ok
12:18:13.0610 0x09b8  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
12:18:13.0611 0x09b8  NdisCap - ok
12:18:13.0626 0x09b8  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
12:18:13.0629 0x09b8  NdisImPlatform - ok
12:18:13.0652 0x09b8  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:18:13.0653 0x09b8  NdisTapi - ok
12:18:13.0673 0x09b8  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:18:13.0677 0x09b8  Ndisuio - ok
12:18:13.0689 0x09b8  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
12:18:13.0691 0x09b8  NdisVirtualBus - ok
12:18:13.0707 0x09b8  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:18:13.0712 0x09b8  NdisWan - ok
12:18:13.0719 0x09b8  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:18:13.0723 0x09b8  NdisWanLegacy - ok
12:18:13.0742 0x09b8  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
12:18:13.0744 0x09b8  NDProxy - ok
12:18:13.0756 0x09b8  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
12:18:13.0758 0x09b8  Ndu - ok
12:18:13.0784 0x09b8  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll
12:18:13.0788 0x09b8  Net Driver HPZ12 - ok
12:18:13.0800 0x09b8  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
12:18:13.0801 0x09b8  NetBIOS - ok
12:18:13.0822 0x09b8  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
12:18:13.0827 0x09b8  NetBT - ok
12:18:13.0838 0x09b8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
12:18:13.0842 0x09b8  Netlogon - ok
12:18:13.0865 0x09b8  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
12:18:13.0873 0x09b8  Netman - ok
12:18:13.0911 0x09b8  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
12:18:13.0924 0x09b8  netprofm - ok
12:18:13.0955 0x09b8  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:18:13.0982 0x09b8  NetTcpPortSharing - ok
12:18:14.0011 0x09b8  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
12:18:14.0013 0x09b8  netvsc - ok
12:18:14.0048 0x09b8  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
12:18:14.0058 0x09b8  NlaSvc - ok
12:18:14.0074 0x09b8  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
12:18:14.0076 0x09b8  Npfs - ok
12:18:14.0093 0x09b8  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
12:18:14.0094 0x09b8  npsvctrig - ok
12:18:14.0116 0x09b8  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
12:18:14.0121 0x09b8  nsi - ok
12:18:14.0140 0x09b8  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
12:18:14.0141 0x09b8  nsiproxy - ok
12:18:14.0246 0x09b8  [ 4412D565C0278C401575E11072C7DCE3, 82A0E9AA88750900EA0E9983157345456B418745C8BA62FAF339640E759C0418 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
12:18:14.0278 0x09b8  Ntfs - ok
12:18:14.0299 0x09b8  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
12:18:14.0300 0x09b8  Null - ok
12:18:14.0337 0x09b8  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
12:18:14.0347 0x09b8  nvraid - ok
12:18:14.0363 0x09b8  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
12:18:14.0370 0x09b8  nvstor - ok
12:18:14.0394 0x09b8  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
12:18:14.0397 0x09b8  nv_agp - ok
12:18:14.0427 0x09b8  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
12:18:14.0437 0x09b8  p2pimsvc - ok
12:18:14.0481 0x09b8  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
12:18:14.0493 0x09b8  p2psvc - ok
12:18:14.0514 0x09b8  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
12:18:14.0516 0x09b8  Parport - ok
12:18:14.0538 0x09b8  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
12:18:14.0540 0x09b8  partmgr - ok
12:18:14.0584 0x09b8  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
12:18:14.0595 0x09b8  PcaSvc - ok
12:18:14.0623 0x09b8  [ C0D3F3BC1C84B4BA746D9847314C1164, 66FDF288ACAE021C5F63BCCC68D7534B4DB737E252AB16DFF746355D8BE7502D ] pci             C:\WINDOWS\system32\drivers\pci.sys
12:18:14.0628 0x09b8  pci - ok
12:18:14.0646 0x09b8  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
12:18:14.0648 0x09b8  pciide - ok
12:18:14.0681 0x09b8  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
12:18:14.0683 0x09b8  pcmcia - ok
12:18:14.0700 0x09b8  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
12:18:14.0702 0x09b8  pcw - ok
12:18:14.0715 0x09b8  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
12:18:14.0717 0x09b8  pdc - ok
12:18:14.0762 0x09b8  [ BA50CC0BD19004AAB88BE37338B6FA0D, 34D4720A621CCB4707F2EB929F6F44C317DBC6F055F7F34F3FAC68DFDAA00DEF ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
12:18:14.0773 0x09b8  PEAUTH - ok
12:18:14.0841 0x09b8  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
12:18:14.0849 0x09b8  PerfHost - ok
12:18:14.0926 0x09b8  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
12:18:14.0952 0x09b8  pla - ok
12:18:14.0976 0x09b8  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
12:18:14.0983 0x09b8  PlugPlay - ok
12:18:14.0998 0x09b8  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll
12:18:15.0002 0x09b8  Pml Driver HPZ12 - ok
12:18:15.0022 0x09b8  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
12:18:15.0026 0x09b8  PNRPAutoReg - ok
12:18:15.0050 0x09b8  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
12:18:15.0060 0x09b8  PNRPsvc - ok
12:18:15.0098 0x09b8  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
12:18:15.0107 0x09b8  PolicyAgent - ok
12:18:15.0127 0x09b8  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
12:18:15.0133 0x09b8  Power - ok
12:18:15.0166 0x09b8  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:18:15.0169 0x09b8  PptpMiniport - ok
12:18:15.0306 0x09b8  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
12:18:15.0363 0x09b8  PrintNotify - ok
12:18:15.0383 0x09b8  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
12:18:15.0386 0x09b8  Processor - ok
12:18:15.0415 0x09b8  [ 8513A1E7AE4B9DC82C4B4F432C648A58, C0C629BF79722A12B35BDA6D5EF6FD2D96E013D80D8F17077E9137ED3988B452 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
12:18:15.0423 0x09b8  ProfSvc - ok
12:18:15.0448 0x09b8  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
12:18:15.0451 0x09b8  Psched - ok
12:18:15.0466 0x09b8  [ C32ECB99AD25E9A04F01C8665DF29EF8, 0489B3DEC6A33E50D8A48A8DAD3F5B923A81F7300E4A71358D90D2879BAC9AA2 ] pwdrvio         C:\Windows\system32\pwdrvio.sys
12:18:15.0471 0x09b8  pwdrvio - ok
12:18:15.0496 0x09b8  [ D619356B955EEFA642F5FF72755E8B3C, 1FD54978A77ACD6FBF1236E177ED074894743A9141E4169FE9AFE28680FC93C5 ] pwdspio         C:\Windows\system32\pwdspio.sys
12:18:15.0500 0x09b8  pwdspio - ok
12:18:15.0534 0x09b8  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
12:18:15.0543 0x09b8  QWAVE - ok
12:18:15.0568 0x09b8  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
12:18:15.0570 0x09b8  QWAVEdrv - ok
12:18:15.0598 0x09b8  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:18:15.0599 0x09b8  RasAcd - ok
12:18:15.0619 0x09b8  [ 55FE43112F61836D0581D615C72AA113, 35665E09BD74BD078A0BC49BF98102B5F3679A3FA2AC25FB629D448652D9938F ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
12:18:15.0621 0x09b8  RasAgileVpn - ok
12:18:15.0647 0x09b8  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
12:18:15.0654 0x09b8  RasAuto - ok
12:18:15.0668 0x09b8  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:18:15.0671 0x09b8  Rasl2tp - ok
12:18:15.0698 0x09b8  [ BF3B17016764F20F9D28CF1A8DC210C0, F64B410D444D4A3DFEE356EFC5B758781FA2612771EDCF72DB91D3120385D7DB ] RasMan          C:\WINDOWS\System32\rasmans.dll
12:18:15.0711 0x09b8  RasMan - ok
12:18:15.0728 0x09b8  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:18:15.0730 0x09b8  RasPppoe - ok
12:18:15.0750 0x09b8  [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
12:18:15.0753 0x09b8  RasSstp - ok
12:18:15.0788 0x09b8  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:18:15.0795 0x09b8  rdbss - ok
12:18:15.0810 0x09b8  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
12:18:15.0812 0x09b8  rdpbus - ok
12:18:15.0840 0x09b8  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
12:18:15.0844 0x09b8  RDPDR - ok
12:18:15.0862 0x09b8  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
12:18:15.0863 0x09b8  RdpVideoMiniport - ok
12:18:15.0885 0x09b8  [ 847C6A08912C3515807049C93E526D65, 74AFC58793B43E73614D2F49B19FB360091E208097696D9DF0B0354761E0B30F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
12:18:15.0890 0x09b8  rdyboost - ok
12:18:16.0020 0x09b8  [ DA40E7E82790B2E7595ED29098310449, 591669C6950346AB2CFBEEB8ECC51B966C1AE71F899E5C7C89FEAEF6D9CD81AF ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe
12:18:16.0044 0x09b8  ReflectService.exe - ok
12:18:16.0101 0x09b8  [ 036746D54347FD2D0385668E2A4064E4, 7C670176176C86D6C3814367A6282A78F4E950F84DDEDA849829236C891F5BB9 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
12:18:16.0127 0x09b8  ReFS - ok
12:18:16.0161 0x09b8  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
12:18:16.0168 0x09b8  RemoteAccess - ok
12:18:16.0196 0x09b8  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
12:18:16.0203 0x09b8  RemoteRegistry - ok
12:18:16.0234 0x09b8  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
12:18:16.0240 0x09b8  RpcEptMapper - ok
12:18:16.0267 0x09b8  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
12:18:16.0271 0x09b8  RpcLocator - ok
12:18:16.0311 0x09b8  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
12:18:16.0342 0x09b8  RpcSs - ok
12:18:16.0371 0x09b8  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
12:18:16.0373 0x09b8  rspndr - ok
12:18:16.0425 0x09b8  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
12:18:16.0435 0x09b8  RTL8168 - ok
12:18:16.0448 0x09b8  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
12:18:16.0449 0x09b8  s3cap - ok
12:18:16.0483 0x09b8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
12:18:16.0487 0x09b8  SamSs - ok
12:18:16.0533 0x09b8  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
12:18:16.0535 0x09b8  sbp2port - ok
12:18:16.0568 0x09b8  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
12:18:16.0575 0x09b8  SCardSvr - ok
12:18:16.0588 0x09b8  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
12:18:16.0594 0x09b8  ScDeviceEnum - ok
12:18:16.0622 0x09b8  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
12:18:16.0623 0x09b8  scfilter - ok
12:18:16.0687 0x09b8  [ A95838FFFAEAA7500263D491575F7E0C, FEB79ECAE6D9AB0C29D9AFE12F60502A8357B3A382C0FACF4C6DA4852B6ECFA4 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
12:18:16.0711 0x09b8  Schedule - ok
12:18:16.0745 0x09b8  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
12:18:16.0749 0x09b8  SCPolicySvc - ok
12:18:16.0783 0x09b8  [ 2F9A3380B8C0380E5608E29C7AA66899, 56D1908437DD3791E54866819E39CC89586C5CD804F47B556416FA8642D88CBB ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
12:18:16.0787 0x09b8  sdbus - ok
12:18:16.0802 0x09b8  [ 4EAF4DCF9DBD9A56952A58F56D61C005, BCA42FD1553569D3603008CC97D88FD309E87F8A8B1522A4287A0E81CAE6C294 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
12:18:16.0804 0x09b8  sdstor - ok
12:18:16.0814 0x09b8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
12:18:16.0815 0x09b8  secdrv - ok
12:18:16.0833 0x09b8  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
12:18:16.0838 0x09b8  seclogon - ok
12:18:16.0854 0x09b8  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
12:18:16.0860 0x09b8  SENS - ok
12:18:16.0881 0x09b8  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
12:18:16.0889 0x09b8  SensrSvc - ok
12:18:16.0916 0x09b8  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
12:18:16.0918 0x09b8  SerCx - ok
12:18:16.0952 0x09b8  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
12:18:16.0955 0x09b8  SerCx2 - ok
12:18:16.0964 0x09b8  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
12:18:16.0965 0x09b8  Serenum - ok
12:18:16.0976 0x09b8  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
12:18:16.0978 0x09b8  Serial - ok
12:18:16.0989 0x09b8  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
12:18:16.0991 0x09b8  sermouse - ok
12:18:17.0038 0x09b8  [ 441E6FF1F34D7A942946DB42A15FB519, A16BA505B74C7A2ADD08BD5B50728C2AD55062E0ABABAD7E3EE0EB97F3725523 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
12:18:17.0048 0x09b8  SessionEnv - ok
12:18:17.0059 0x09b8  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
12:18:17.0061 0x09b8  sfloppy - ok
12:18:17.0114 0x09b8  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
12:18:17.0123 0x09b8  SharedAccess - ok
12:18:17.0176 0x09b8  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:18:17.0190 0x09b8  ShellHWDetection - ok
12:18:17.0217 0x09b8  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
12:18:17.0218 0x09b8  SiSRaid2 - ok
12:18:17.0236 0x09b8  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
12:18:17.0238 0x09b8  SiSRaid4 - ok
12:18:17.0260 0x09b8  [ AF5CC3F9B88F140D78FC967ABF0F4EC7, 7CE3AB7B0A36635CF00E35E84C14B8661FAF794ABCFA61AE45A0E5E8EA996A3B ] SmbDrv          C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
12:18:17.0261 0x09b8  SmbDrv - ok
12:18:17.0291 0x09b8  [ 962ABD93C70B28CE97F78B8F115FF1B2, C3C83AF01764E24FFEFDDC8383DA4667107A0D84C2533FE71794EF90C3C374A7 ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
12:18:17.0293 0x09b8  SmbDrvI - ok
12:18:17.0318 0x09b8  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
12:18:17.0323 0x09b8  smphost - ok
12:18:17.0354 0x09b8  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
12:18:17.0359 0x09b8  SNMPTRAP - ok
12:18:17.0388 0x09b8  [ F6EBE514D13ECE7EDC23440039CDF9AB, B58072BE7E4E52704C7B1D52DD49F469542B4B015C6D560369EEC1B046AFB254 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
12:18:17.0395 0x09b8  spaceport - ok
12:18:17.0421 0x09b8  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
12:18:17.0423 0x09b8  SpbCx - ok
12:18:17.0457 0x09b8  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
12:18:17.0474 0x09b8  Spooler - ok
12:18:17.0680 0x09b8  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
12:18:17.0788 0x09b8  sppsvc - ok
12:18:17.0849 0x09b8  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
12:18:17.0866 0x09b8  srv - ok
12:18:17.0901 0x09b8  [ C1AE59C0B0817236EC083A91C396005A, 26F05ECB44C300DA8F333B115727C31C5C8252C83F37F0AE7DFF89B267599CDF ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
12:18:17.0912 0x09b8  srv2 - ok
12:18:17.0928 0x09b8  [ 77195C32175FC63D6054EBA5A066D727, 22F5D26809BC9288021620040FC7B7BB76708D434C863B3C0C20F73200C1C6A9 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
12:18:17.0933 0x09b8  srvnet - ok
12:18:17.0974 0x09b8  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
12:18:17.0982 0x09b8  SSDPSRV - ok
12:18:18.0014 0x09b8  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
12:18:18.0021 0x09b8  SstpSvc - ok
12:18:18.0091 0x09b8  [ 098185E9B7C417CF7480BB9F839DB652, 5573CB98057DC2F01E8958780165A32AFD08E4C768F5625250628CB8A4C509D3 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
12:18:18.0106 0x09b8  STacSV - ok
12:18:18.0132 0x09b8  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
12:18:18.0133 0x09b8  stexstor - ok
12:18:18.0168 0x09b8  [ 32BE0B7CCA47A5BE30E7E43DC54B54F3, D4667E88E14393311F93D787C902B993B9451A94D332A65B0E22A8C40C3DFF44 ] STHDA           C:\WINDOWS\system32\DRIVERS\stwrt64.sys
12:18:18.0177 0x09b8  STHDA - ok
12:18:18.0208 0x09b8  [ 2A997C64F9B2584D81FA6749FE36A887, D26F5BC591ED46B96B2ACFDF555C2BF42F4915A22B12E4139ACEF7DE7AC303A7 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
12:18:18.0209 0x09b8  StillCam - ok
12:18:18.0250 0x09b8  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
12:18:18.0265 0x09b8  stisvc - ok
12:18:18.0296 0x09b8  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
12:18:18.0299 0x09b8  storahci - ok
12:18:18.0315 0x09b8  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
12:18:18.0317 0x09b8  storflt - ok
12:18:18.0334 0x09b8  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
12:18:18.0336 0x09b8  stornvme - ok
12:18:18.0368 0x09b8  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
12:18:18.0373 0x09b8  StorSvc - ok
12:18:18.0387 0x09b8  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
12:18:18.0389 0x09b8  storvsc - ok
12:18:18.0412 0x09b8  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
12:18:18.0417 0x09b8  svsvc - ok
12:18:18.0434 0x09b8  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
12:18:18.0435 0x09b8  swenum - ok
12:18:18.0475 0x09b8  [ 99453C649DC4B0BE6D062B701CD2917F, 6E136BBF46E2E07635BEDC307A7F2E7C653DB45C055419DAB4878BF657B82058 ] swprv           C:\WINDOWS\System32\swprv.dll
12:18:18.0491 0x09b8  swprv - ok
12:18:18.0527 0x09b8  [ 1C9BC67929C728DED1091CA19C3F7D41, 78C7EA28E339FCDBD74470938298E33AB41A14CEE967E1B82CE1D11C54594135 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
12:18:18.0536 0x09b8  SynTP - ok
12:18:18.0596 0x09b8  [ E45DA7CBBA34510C8B9473AD7D4FFD0B, 89C2AED757D86C276D78D29D94DCBF9C1B6A244A2153EC85CCB2E86C5F078387 ] SysMain         C:\WINDOWS\system32\sysmain.dll
12:18:18.0621 0x09b8  SysMain - ok
12:18:18.0663 0x09b8  [ D65B1C952AEB864C2BAC7A770B17ECCE, 3EFAAFFF73390D9CB660E0F42B305512396CF66ED06E4A20ED67E8722FB4355B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
12:18:18.0672 0x09b8  SystemEventsBroker - ok
12:18:18.0788 0x09b8  [ 196E20CE11EDB0EA3EDA491FCD3C943B, DDE0CA36C1E2C15621CAB6CCD84EB3F415F800B62629C213016B0C2FB04E7035 ] SystemExplorerHelpService C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
12:18:18.0806 0x09b8  SystemExplorerHelpService - ok
12:18:18.0840 0x09b8  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
12:18:18.0847 0x09b8  TabletInputService - ok
12:18:18.0872 0x09b8  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
12:18:18.0881 0x09b8  TapiSrv - ok
12:18:18.0977 0x09b8  [ ECC68BD5347BDE9631EE68274858A41F, F5274400312C776C13BCBC333AF20C29163FEBC7879E9C6AD45774A0C39F8A52 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
12:18:19.0018 0x09b8  Tcpip - ok
12:18:19.0078 0x09b8  [ ECC68BD5347BDE9631EE68274858A41F, F5274400312C776C13BCBC333AF20C29163FEBC7879E9C6AD45774A0C39F8A52 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:18:19.0118 0x09b8  TCPIP6 - ok
12:18:19.0154 0x09b8  [ 33A7D83EEB15431773A6E186CFAABA21, AC5100A76CA44BFADF4A54FDB09FF5D2FF13B9F8482DC1AE86C8C27005F77B0F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
12:18:19.0156 0x09b8  tcpipreg - ok
12:18:19.0186 0x09b8  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
12:18:19.0189 0x09b8  tdx - ok
12:18:19.0366 0x09b8  [ 2B29FD3AF7B4FEB272CD1F6EEC8FE4BA, 2E3E775218F1A9DCD977C7D42D0AADDA83A76DCBF65FB25E0F0215ABE3D55C5B ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
12:18:19.0443 0x09b8  TeamViewer9 - ok
12:18:19.0470 0x09b8  [ F5520DBB47C60EE83024B38720ABDA24, B8E555D92440BF93E3B55A66E27CEF936477EF7528F870D3B78BD3B294A05CC0 ] teamviewervpn   C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys
12:18:19.0471 0x09b8  teamviewervpn - ok
12:18:19.0495 0x09b8  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
12:18:19.0496 0x09b8  terminpt - ok
12:18:19.0557 0x09b8  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\WINDOWS\System32\termsrv.dll
12:18:19.0588 0x09b8  TermService - ok
12:18:19.0604 0x09b8  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
12:18:19.0609 0x09b8  Themes - ok
12:18:19.0631 0x09b8  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
12:18:19.0635 0x09b8  THREADORDER - ok
12:18:19.0659 0x09b8  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
12:18:19.0667 0x09b8  TimeBroker - ok
12:18:19.0697 0x09b8  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
12:18:19.0701 0x09b8  TPM - ok
12:18:19.0721 0x09b8  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
12:18:19.0728 0x09b8  TrkWks - ok
12:18:19.0759 0x09b8  [ DA56FFA46030E6FEB215E3D5DAA65B11, 36B5EED8F9044475000362DBFC8A2A40B889ED46382CCEFB6BA04BE0442F98C2 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
12:18:19.0761 0x09b8  TrustedInstaller - ok
12:18:19.0784 0x09b8  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
12:18:19.0786 0x09b8  TsUsbFlt - ok
12:18:19.0800 0x09b8  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
12:18:19.0802 0x09b8  TsUsbGD - ok
12:18:19.0828 0x09b8  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
12:18:19.0831 0x09b8  tunnel - ok
12:18:19.0850 0x09b8  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
12:18:19.0852 0x09b8  uagp35 - ok
12:18:19.0867 0x09b8  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
12:18:19.0869 0x09b8  UASPStor - ok
12:18:19.0929 0x09b8  [ 5D1B430EA11064C56E7C8F84B90DEB6A, 874D9EE807F16321C4857030F9C18D2B925785FD4BB7ED047AF9535BF3F30D84 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
12:18:19.0933 0x09b8  UCX01000 - ok
12:18:19.0957 0x09b8  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
12:18:19.0963 0x09b8  udfs - ok
12:18:19.0974 0x09b8  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
12:18:19.0976 0x09b8  UEFI - ok
12:18:20.0009 0x09b8  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
12:18:20.0016 0x09b8  UI0Detect - ok
12:18:20.0033 0x09b8  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
12:18:20.0035 0x09b8  uliagpkx - ok
12:18:20.0046 0x09b8  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
12:18:20.0048 0x09b8  umbus - ok
12:18:20.0061 0x09b8  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
12:18:20.0063 0x09b8  UmPass - ok
12:18:20.0098 0x09b8  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
12:18:20.0109 0x09b8  UmRdpService - ok
12:18:20.0164 0x09b8  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
12:18:20.0170 0x09b8  UNS - ok
12:18:20.0197 0x09b8  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
12:18:20.0210 0x09b8  upnphost - ok
12:18:20.0240 0x09b8  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
12:18:20.0244 0x09b8  usbccgp - ok
12:18:20.0271 0x09b8  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
12:18:20.0274 0x09b8  usbcir - ok
12:18:20.0297 0x09b8  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
12:18:20.0300 0x09b8  usbehci - ok
12:18:20.0326 0x09b8  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
12:18:20.0334 0x09b8  usbhub - ok
12:18:20.0360 0x09b8  [ C0E33820326199CE3CFD3B9F27F81D99, C67F55E7DD6F7FC4A96256A14A805D39C5CE8725FD86675C6C860B3DE8E4DBC3 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
12:18:20.0370 0x09b8  USBHUB3 - ok
12:18:20.0383 0x09b8  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
12:18:20.0386 0x09b8  usbohci - ok
12:18:20.0404 0x09b8  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
12:18:20.0405 0x09b8  usbprint - ok
12:18:20.0432 0x09b8  [ 4628B415A84EA9D4D396A56F1D0CB6C6, 430F4C819BF958430FD0DEEFD5BA07F210E0541634811993090C039CB602622F ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
12:18:20.0436 0x09b8  USBSTOR - ok
12:18:20.0465 0x09b8  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
12:18:20.0467 0x09b8  usbuhci - ok
12:18:20.0488 0x09b8  [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
12:18:20.0493 0x09b8  usbvideo - ok
12:18:20.0526 0x09b8  [ D22EB844EB57D016CC34178AC86456DF, C83440A44EA9CC3D1041AB966FFC423DD17FB25B42BA41BB36C109D16723BD5E ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
12:18:20.0532 0x09b8  USBXHCI - ok
12:18:20.0550 0x09b8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
12:18:20.0554 0x09b8  VaultSvc - ok
12:18:20.0565 0x09b8  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
12:18:20.0566 0x09b8  vdrvroot - ok
12:18:20.0620 0x09b8  [ CFBAD6B48EDFAA0828A52646B7C4C08D, DDC7D607E784CE6FB5BC62E53E6309EB583D74425E6D3FC8F3D3EC705D69C075 ] vds             C:\WINDOWS\System32\vds.exe
12:18:20.0646 0x09b8  vds - ok
12:18:20.0679 0x09b8  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
12:18:20.0683 0x09b8  VerifierExt - ok
12:18:20.0713 0x09b8  [ 041D3EF364E624DBB2703A64A5AADF89, 94A52A35AFDD09EBCC4266BD6D44014AAB4BBDFD3F6E8C997A1CA49DFB48F60D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
12:18:20.0722 0x09b8  vhdmp - ok
12:18:20.0755 0x09b8  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
12:18:20.0756 0x09b8  viaide - ok
12:18:20.0777 0x09b8  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
12:18:20.0779 0x09b8  vmbus - ok
12:18:20.0793 0x09b8  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
12:18:20.0795 0x09b8  VMBusHID - ok
12:18:20.0837 0x09b8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
12:18:20.0849 0x09b8  vmicguestinterface - ok
12:18:20.0868 0x09b8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
12:18:20.0879 0x09b8  vmicheartbeat - ok
12:18:20.0894 0x09b8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
12:18:20.0905 0x09b8  vmickvpexchange - ok
12:18:20.0921 0x09b8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
12:18:20.0932 0x09b8  vmicrdv - ok
12:18:20.0947 0x09b8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
12:18:20.0958 0x09b8  vmicshutdown - ok
12:18:20.0973 0x09b8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
12:18:20.0984 0x09b8  vmictimesync - ok
12:18:21.0000 0x09b8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
12:18:21.0012 0x09b8  vmicvss - ok
12:18:21.0041 0x09b8  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
12:18:21.0044 0x09b8  volmgr - ok
12:18:21.0068 0x09b8  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
12:18:21.0075 0x09b8  volmgrx - ok
12:18:21.0114 0x09b8  [ C85C075DE5B6D0FE116043054DE8EE02, 8BB01DA3D63562F51BCCB5CC996F99A5CB0A8F89900045BBCF4115FD521A9706 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
12:18:21.0120 0x09b8  volsnap - ok
12:18:21.0142 0x09b8  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
12:18:21.0144 0x09b8  vpci - ok
12:18:21.0177 0x09b8  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
12:18:21.0181 0x09b8  vsmraid - ok
12:18:21.0237 0x09b8  [ D51D7EF1EA5ED2BB01E9D07E6E0533BC, E31118F42B316C9B6C9072D9628AA2801FC2519F1A46C9ED167843CD67183C19 ] VSS             C:\WINDOWS\system32\vssvc.exe
12:18:21.0265 0x09b8  VSS - ok
12:18:21.0291 0x09b8  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
12:18:21.0297 0x09b8  VSTXRAID - ok
12:18:21.0323 0x09b8  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
12:18:21.0325 0x09b8  vwifibus - ok
12:18:21.0348 0x09b8  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
12:18:21.0355 0x09b8  vwififlt - ok
12:18:21.0391 0x09b8  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
12:18:21.0393 0x09b8  vwifimp - ok
12:18:21.0433 0x09b8  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
12:18:21.0444 0x09b8  W32Time - ok
12:18:21.0489 0x09b8  [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
12:18:21.0491 0x09b8  w3logsvc - ok
12:18:21.0508 0x09b8  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
12:18:21.0510 0x09b8  WacomPen - ok
12:18:21.0538 0x09b8  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:18:21.0540 0x09b8  Wanarp - ok
12:18:21.0546 0x09b8  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:18:21.0548 0x09b8  Wanarpv6 - ok
12:18:21.0577 0x09b8  [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
12:18:21.0586 0x09b8  WAS - ok
12:18:21.0660 0x09b8  [ 92BF4B3EBD6F163B94B7A20C65E7B698, 293E6FEFA862690A7B75443D6495144313D759971B98B495A99AAB0D2CF1F350 ] wbengine        C:\WINDOWS\system32\wbengine.exe
12:18:21.0688 0x09b8  wbengine - ok
12:18:21.0726 0x09b8  [ 58F28103889817C93E5B5AFABC87E709, 547381B10DAC8A3CC16FB5DE6DF2FDA3CCD8F45DF581959FFF6E30875419B011 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
12:18:21.0738 0x09b8  WbioSrvc - ok
12:18:21.0757 0x09b8  [ 772365894F14652D376B2E5030179DC9, 3D917CED040456EB269BE2B82315CEAE3589FEC016DAE37FC5BC1C3D66DE3140 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
12:18:21.0768 0x09b8  Wcmsvc - ok
12:18:21.0796 0x09b8  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
12:18:21.0808 0x09b8  wcncsvc - ok
12:18:21.0841 0x09b8  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
12:18:21.0847 0x09b8  WcsPlugInService - ok
12:18:21.0870 0x09b8  [ 241895E8A9C158DF86E12FDD21033A32, 46D4BF6319271AC33EC1C7283053B91D38A3D5443F3F749E640253FDC2819679 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
12:18:21.0872 0x09b8  WdBoot - ok
12:18:21.0906 0x09b8  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
12:18:21.0920 0x09b8  Wdf01000 - ok
12:18:21.0938 0x09b8  [ C52148456E0F6EAD9E903020A79207FC, 7DEB2D7D09FB005A79E88FA8766B7EBE0396F0CA084D72269156874C727FBFF4 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
12:18:21.0942 0x09b8  WdFilter - ok
12:18:21.0977 0x09b8  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
12:18:21.0984 0x09b8  WdiServiceHost - ok
12:18:21.0989 0x09b8  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
12:18:21.0996 0x09b8  WdiSystemHost - ok
12:18:22.0025 0x09b8  [ 57F22324FAAF92ADF957B281E88F1743, 46CFBA6529E28756D73A00A211C3D72E9854E035EE6F2520066E074697A9745E ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
12:18:22.0028 0x09b8  WdNisDrv - ok
12:18:22.0066 0x09b8  WdNisSvc - ok
12:18:22.0102 0x09b8  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\WINDOWS\System32\webclnt.dll
12:18:22.0123 0x09b8  WebClient - ok
12:18:22.0145 0x09b8  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
12:18:22.0156 0x09b8  Wecsvc - ok
12:18:22.0173 0x09b8  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
12:18:22.0179 0x09b8  WEPHOSTSVC - ok
12:18:22.0191 0x09b8  [ AA1315B87D9B2E39584165318A59F15D, CD19608BE1F6B7AECF802F8D2DD4FCBDAA29450ED37F7D040DC6453924C7B0FE ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
12:18:22.0197 0x09b8  wercplsupport - ok
12:18:22.0215 0x09b8  [ 22B4C24AB921BFF7827FFBCA1F4E1BB3, B634F7018097A8E4EECDD9F032DF6A0FB6817FC3DEB92BCE6A0965B5D71D8DFA ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
12:18:22.0222 0x09b8  WerSvc - ok
12:18:22.0253 0x09b8  [ 2E3E82D7B1076B90F4E228A8EF17B261, 0492F8E0BE09DAD9922E85CCA7BCB1548CB9DC5841F46174A0657FDC59AAC3CE ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
12:18:22.0257 0x09b8  WFPLWFS - ok
12:18:22.0286 0x09b8  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
12:18:22.0293 0x09b8  WiaRpc - ok
12:18:22.0322 0x09b8  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
12:18:22.0323 0x09b8  WIMMount - ok
12:18:22.0338 0x09b8  WinDefend - ok
12:18:22.0384 0x09b8  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
12:18:22.0402 0x09b8  WinHttpAutoProxySvc - ok
12:18:22.0471 0x09b8  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
12:18:22.0485 0x09b8  Winmgmt - ok
12:18:22.0572 0x09b8  [ 690C3FC5C9DBD6B9AEDF8341EC720E41, 0E4412BB6DEB5761F7A889FD90821FAFD7C6E173F449EAB3A0446BA653D6AD0C ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
12:18:22.0616 0x09b8  WinRM - ok
12:18:22.0660 0x09b8  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\WINDOWS\system32\DRIVERS\WinUsb.sys
12:18:22.0662 0x09b8  WinUsb - ok
12:18:22.0690 0x09b8  [ 4F2A80D65AE6F845776E2F06AE6782ED, 2455537C048115435D9EDE4B18F9F54C43912076AEF36BDEFEC35AF2140B8B2E ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
12:18:22.0691 0x09b8  WirelessButtonDriver - ok
12:18:22.0826 0x09b8  [ 728D3349FAB251B0265EFA55C67DCA2D, 676D2C9CF16DD333BF99FD5EC31B8F53E5295553E19BED5CF94620EE59345777 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
12:18:22.0854 0x09b8  WlanSvc - ok
12:18:22.0926 0x09b8  [ C2838466CCC44FAEF2C3D4C1E5971ECB, 4CA5B1632302E59E754CEA5B3CA3977D8CE9DC7B2E8673B450BBF0D646AD7AD8 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
12:18:22.0971 0x09b8  wlidsvc - ok
12:18:22.0993 0x09b8  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
12:18:22.0994 0x09b8  WmiAcpi - ok
12:18:23.0024 0x09b8  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
12:18:23.0028 0x09b8  wmiApSrv - ok
12:18:23.0060 0x09b8  WMPNetworkSvc - ok
12:18:23.0122 0x09b8  [ E178371E493BF17EB90FE71ABA8BE643, E6F96C62D6AD1FE65D54F6799ABC32D34DE8C6EBFF8A297CA3142EF096112FCE ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
12:18:23.0152 0x09b8  workfolderssvc - ok
12:18:23.0180 0x09b8  [ E746BCDBA2E02CF6B8D6B26FB167FBE0, 8875BBE444A33E0C477EF1A3899955501B7E0A9479CA8AA20DD8E6AA0D9A71E6 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
12:18:23.0182 0x09b8  wpcfltr - ok
12:18:23.0206 0x09b8  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
12:18:23.0212 0x09b8  WPCSvc - ok
12:18:23.0222 0x09b8  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
12:18:23.0230 0x09b8  WPDBusEnum - ok
12:18:23.0249 0x09b8  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
12:18:23.0251 0x09b8  WpdUpFltr - ok
12:18:23.0275 0x09b8  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
12:18:23.0276 0x09b8  ws2ifsl - ok
12:18:23.0305 0x09b8  [ 5CFA46C4ACB2FD70572017052378DAE5, F09134C4433A9E174889A16F29EA6628045B21BE4FA85275ACFD24D5DFB0D937 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
12:18:23.0313 0x09b8  wscsvc - ok
12:18:23.0318 0x09b8  WSearch - ok
12:18:23.0448 0x09b8  [ D8E3A4701376CCFD0BE542D745FA4809, CF267B5507BD02EEB6BF051534E900D592682D11159A6A13C38AE70B3CCC081F ] WSService       C:\WINDOWS\System32\WSService.dll
12:18:23.0505 0x09b8  WSService - ok
12:18:23.0653 0x09b8  [ 86D0BF4F792053A50D6EE43DFA5837A5, 5705DAB9C5896F10757630439AC8FEAB5754251C6C90E9E8449220A65D1E95D5 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
12:18:23.0712 0x09b8  wuauserv - ok
12:18:23.0748 0x09b8  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
12:18:23.0751 0x09b8  WudfPf - ok
12:18:23.0768 0x09b8  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
12:18:23.0773 0x09b8  WUDFRd - ok
12:18:23.0805 0x09b8  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
12:18:23.0812 0x09b8  wudfsvc - ok
12:18:23.0822 0x09b8  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:18:23.0826 0x09b8  WUDFWpdFs - ok
12:18:23.0836 0x09b8  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:18:23.0840 0x09b8  WUDFWpdMtp - ok
12:18:23.0877 0x09b8  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
12:18:23.0891 0x09b8  WwanSvc - ok
12:18:23.0911 0x09b8  ================ Scan global ===============================
12:18:23.0957 0x09b8  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
12:18:23.0978 0x09b8  [ 599F1244C60E3D6C28A8DA7FBA7A2C13, 992E5EB5E3ED6172DC986085532224A148A09A4E9A4DED9556F34533EE98E4D0 ] C:\WINDOWS\system32\winsrv.dll
12:18:24.0011 0x09b8  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
12:18:24.0032 0x09b8  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\WINDOWS\system32\services.exe
12:18:24.0043 0x09b8  [ Global ] - ok
12:18:24.0044 0x09b8  ================ Scan MBR ==================================
12:18:24.0055 0x09b8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:18:24.0060 0x09b8  \Device\Harddisk0\DR0 - ok
12:18:24.0061 0x09b8  ================ Scan VBR ==================================
12:18:24.0064 0x09b8  [ 3BFA6F60E135F019E5FD2B9FDE5A7167 ] \Device\Harddisk0\DR0\Partition1
12:18:24.0118 0x09b8  \Device\Harddisk0\DR0\Partition1 - ok
12:18:24.0139 0x09b8  [ 31E0DBE9FC5D2F3EF321900B6A2184DB ] \Device\Harddisk0\DR0\Partition2
12:18:24.0197 0x09b8  \Device\Harddisk0\DR0\Partition2 - ok
12:18:24.0212 0x09b8  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
12:18:24.0213 0x09b8  \Device\Harddisk0\DR0\Partition3 - ok
12:18:24.0223 0x09b8  [ FA81A42DDF38AF8C9CBEA4A6906FA372 ] \Device\Harddisk0\DR0\Partition4
12:18:24.0285 0x09b8  \Device\Harddisk0\DR0\Partition4 - ok
12:18:24.0310 0x09b8  [ 1ECD85DF28E446A6103D31E4D912420F ] \Device\Harddisk0\DR0\Partition5
12:18:24.0317 0x09b8  \Device\Harddisk0\DR0\Partition5 - ok
12:18:24.0331 0x09b8  [ 76DBD84AA0C81AA8610B8E4E8653BC4A ] \Device\Harddisk0\DR0\Partition6
12:18:24.0400 0x09b8  \Device\Harddisk0\DR0\Partition6 - ok
12:18:24.0429 0x09b8  [ 1A71CA9F9D1D548936A7116380B24393 ] \Device\Harddisk0\DR0\Partition7
12:18:24.0442 0x09b8  \Device\Harddisk0\DR0\Partition7 - ok
12:18:24.0443 0x09b8  Waiting for KSN requests completion. In queue: 95
12:18:25.0444 0x09b8  Waiting for KSN requests completion. In queue: 95
12:18:26.0445 0x09b8  Waiting for KSN requests completion. In queue: 95
12:18:27.0541 0x09b8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.4.304.0 ), 0x60100 ( disabled : updated )
12:18:27.0543 0x09b8  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2013.292 ), 0x41000 ( enabled : updated )
12:18:27.0555 0x09b8  FW detected via SS2: COMODO Firewall, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 7.0.51350.4115 ), 0x61010 ( enabled )
12:18:30.0166 0x09b8  ============================================================
12:18:30.0166 0x09b8  Scan finished
12:18:30.0166 0x09b8  ============================================================
12:18:30.0174 0x1220  Detected object count: 0
12:18:30.0174 0x1220  Actual detected object count: 0
 

Link to post
Share on other sites

Fix with FRST (normal mode)

WARNING: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
 

  • Download the attached fixlist.txt and save it to the location where FRST is saved to.
  • Run FRST.exe (on 64bit, run FRST64.exe) and press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) which you find where you saved FRST. Please post it to your reply.

 

 

 

 

System File Check

For Windows XP:
 

  • Press the Windows- and the R-key simultanously.
  • Within the text box that jus opened, write cmd and hit Enter.

For Windows Vista/7:
 

  • Press the Windows key to open the start menu.
  • Don´t highlight anything, just write cmd.
  • The start menu will offer you an entry named cmd.
  • Right click it and select "run as administrator"


Within the opening window, write the following:
 

sfc /scannow

(See the blank within).

 

  • Hit enter. Your system will be checked for damaged system files.
  • Tell me the result of that scan in here (as the tool produces no log).

fixlist.txt

Link to post
Share on other sites

Fixlog.txt

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Lloyd at 2014-04-01 13:46:19 Run:1
Running from E:\Lloyd's Stuff\Downloads 0002 Software\Farbar 64x vx 2014-03-31
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM-x32\...\Run: [PrivDogService] - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe [525480 2013-12-13] (AdTrustMedia)
BHO: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
BHO-x32: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
FF Extension: PrivDog - C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\PrivDog@AdTrustMedia.com [2014-02-02]
CHR Extension: (PrivDog) - C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja [2014-02-01]
CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-02-01]

C:\Program Files\AdTrustMedia
C:\Program Files (x86)\AdTrustMedia
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\PrivDogService => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key deleted successfully.
HKCR\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key deleted successfully.
C:\Users\Lloyd\AppData\Roaming\Mozilla\Firefox\Profiles\148proek.default\Extensions\PrivDog@AdTrustMedia.com => Moved successfully.
C:\Users\Lloyd\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cmaiofennmphjldldcpphcechfnnohja => Key deleted successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx => Moved successfully.

"C:\Program Files\AdTrustMedia" directory move:

C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\magpie.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\mfc100u.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\msvcp100.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\msvcr100.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\scriptservice.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\magpie.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\mfc100u.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\msvcp100.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\msvcr100.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\scriptservice.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll => Moved successfully.
C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\trustedadssvc.exe => Moved successfully.
Could not move "C:\Program Files\AdTrustMedia" directory. => Scheduled to move on reboot.


"C:\Program Files (x86)\AdTrustMedia" directory move:

C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_dragon.crx => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\UninstallTrustedAds.exe => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\finalizesetup.exe => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\magpie.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\mfc100u.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\msvcp100.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\msvcr100.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\scriptservice.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\background.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\backgroundHandlers.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\backgroundSession.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\chrome_wrapper.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\configLoader.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\content.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\contentHandlers.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\contentSession.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\infoLookup.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\localConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\messaging.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\options.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\popup.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\scriptInjector.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\scriptLoader.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\searchActions.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\searchEngineUtils.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\serpInjector.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\settings.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\verifycontentloaded.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\schemas\exclusionsConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\schemas\lookupRequest.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\schemas\lookupResponse.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\schemas\scriptInjectConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\schemas\SERPConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\schemas\serverConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\schemas\trustAdConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\models\exclusionsConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\models\lookupRequest.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\models\lookupResponse.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\models\preloadJS.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\models\SERPConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\models\serverConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\models\trustAdConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\backbone-schema.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\backbone-xml.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\backbone.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\backbone.localStorage.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\backgroundDispatch.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\contentDispatch.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\ddr-ecma5.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\environments.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\events.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\ie-basiclibs.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\ie-basiclibs_svc.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\jquery.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\json-schema-draft-01.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\json-schema-draft-02.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\json-schema-draft-03.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\json3.min.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\jsv.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\require.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\sax.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\stacktrace.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\sys.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\underscore.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\uri.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\xml2js-schema.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\frameworks\xml2js.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\action_bw.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\action_clr.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\action_none.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\arrow_right.gif => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\header_normal.gif => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\header_over.gif => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\icon.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\icon128.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\icon16.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\icon48.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\images\logo.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\html\background.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\html\background_chrome.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\html\chrome_wrapper.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\html\localStorage.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\config\advcon_2_0.json => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\config\exlst.json => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\config\icconfg_2_0_865_ie.json => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\config\messageDispatcher.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\config\serp\bing_ie.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\config\serp\google_ie.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\config\serp\serpinject_2_0_865_ie.json => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\finalizesetup.exe => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\magpie.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\mfc100u.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\msvcp100.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\msvcr100.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\scriptservice.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedadssvc.exe => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\background.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\backgroundHandlers.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\backgroundSession.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\chrome_wrapper.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\cloudBasedRetargeting.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\configLoader.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\content.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\contentHandlers.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\contentSession.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\infoLookup.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\localConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\messaging.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\options.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\popup.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\scriptInjector.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\scriptLoader.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\searchActions.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\searchEngineUtils.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\serpInjector.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\settings.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\verifycontentloaded.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\schemas\exclusionsConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\schemas\lookupRequest.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\schemas\lookupResponse.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\schemas\scriptInjectConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\schemas\SERPConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\schemas\serverConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\schemas\trustAdConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\models\exclusionsConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\models\lookupRequest.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\models\lookupResponse.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\models\preloadJS.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\models\SERPConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\models\serverConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\models\trustAdConfig.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\backbone-schema.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\backbone-xml.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\backbone.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\backbone.localStorage.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\backgroundDispatch.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\contentDispatch.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\ddr-ecma5.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\environments.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\events.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\ie-basiclibs.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\jquery.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\json-schema-draft-01.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\json-schema-draft-02.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\json-schema-draft-03.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\json3.min.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\jsv.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\require.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\sax.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\stacktrace.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\sys.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\underscore.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\uri.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\xml2js-schema.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\frameworks\xml2js.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\action_bw.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\action_clr.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\action_none.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\arrow_right.gif => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\header_normal.gif => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\header_over.gif => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\icon.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\icon128.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\icon16.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\icon48.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\images\logo.png => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\html\background.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\html\background_chrome.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\html\chrome_wrapper.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\html\localStorage.html => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\config\advcon_2_0.json => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\config\exlst.json => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\config\icconfg_2_0_865_ie.json => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\config\messageDispatcher.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\config\serp\bing_ie.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\config\serp\google_ie.js => Moved successfully.
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\config\serp\serpinject_2_0_865_ie.json => Moved successfully.
Could not move "C:\Program Files (x86)\AdTrustMedia" directory. => Scheduled to move on reboot.


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-04-01 13:48:06)<=

C:\Program Files\AdTrustMedia => Moved successfully.
C:\Program Files (x86)\AdTrustMedia => Moved successfully.

==== End of Fixlog ====

Link to post
Share on other sites

Results of sfc /scannow

 

Windows Resource Protection found corrupt files but was unable to fix some of them.  Detail are included in the CBS.Log windir\Logs\CBS\CBS.log.  For example C:\Windows\Logs\CBS\CBS.log.  Note that logging is currently not supported in offline servicing scenarios.

 

I could not open the CBS.log file.

 

Should I uninstall PrivDog?

Link to post
Share on other sites

Filter SFC log file

For Windows XP:

  • Press the Windows- and the R-key simultanously.
  • Within the text box that jus opened, write cmd and hit Enter.


For Windows Vista/7:

  • Press the Windows key to open the start menu.
  • Don´t highlight anything, just write cmd.
  • The start menu will offer you an entry named cmd.
  • Right click it and select "run as administrator"




Within the opening window, write the following:

findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >sfcdetails.txt


  • Hit enter. The tool will create a textfile named sfcdetails.txt within the folder where you ran the command, for example C:\windows\system32\.
    Attach this file to your next reply.

Link to post
Share on other sites

I could not get that command to work. In win8, I hold the windows key down + x, and click "Command Prompt (Admin)".  The command appeared to work, but when I browsed sfcdetails.txt, it was empty.  I copied the file to the desktop and edited it.  I hope this is what you want.

 

2014-04-01 13:54:38, Info                  CSI    0000000a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:38, Info                  CSI    0000000b [sR] Beginning Verify and Repair transaction
2014-04-01 13:54:41, Info                  CSI    0000000c [sR] Verify complete
2014-04-01 13:54:42, Info                  CSI    0000000d [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:42, Info                  CSI    0000000e [sR] Beginning Verify and Repair transaction
2014-04-01 13:54:44, Info                  CSI    0000000f [sR] Verify complete
2014-04-01 13:54:44, Info                  CSI    00000010 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:44, Info                  CSI    00000011 [sR] Beginning Verify and Repair transaction
2014-04-01 13:54:47, Info                  CSI    00000012 [sR] Verify complete
2014-04-01 13:54:47, Info                  CSI    00000013 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:47, Info                  CSI    00000014 [sR] Beginning Verify and Repair transaction
2014-04-01 13:54:49, Info                  CSI    00000015 [sR] Verify complete
2014-04-01 13:54:50, Info                  CSI    00000016 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:50, Info                  CSI    00000017 [sR] Beginning Verify and Repair transaction
2014-04-01 13:54:52, Info                  CSI    00000018 [sR] Verify complete
2014-04-01 13:54:52, Info                  CSI    00000019 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:52, Info                  CSI    0000001a [sR] Beginning Verify and Repair transaction
2014-04-01 13:54:55, Info                  CSI    0000001b [sR] Verify complete
2014-04-01 13:54:55, Info                  CSI    0000001c [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:55, Info                  CSI    0000001d [sR] Beginning Verify and Repair transaction
2014-04-01 13:54:57, Info                  CSI    0000001e [sR] Verify complete
2014-04-01 13:54:57, Info                  CSI    0000001f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:54:57, Info                  CSI    00000020 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:01, Info                  CSI    00000021 [sR] Verify complete
2014-04-01 13:55:02, Info                  CSI    00000022 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:02, Info                  CSI    00000023 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:05, Info                  CSI    00000024 [sR] Verify complete
2014-04-01 13:55:05, Info                  CSI    00000025 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:05, Info                  CSI    00000026 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:08, Info                  CSI    00000027 [sR] Verify complete
2014-04-01 13:55:08, Info                  CSI    00000028 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:08, Info                  CSI    00000029 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:11, Info                  CSI    0000002a [sR] Verify complete
2014-04-01 13:55:11, Info                  CSI    0000002b [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:11, Info                  CSI    0000002c [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:14, Info                  CSI    0000002d [sR] Verify complete
2014-04-01 13:55:14, Info                  CSI    0000002e [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:14, Info                  CSI    0000002f [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:16, Info                  CSI    00000030 [sR] Verify complete
2014-04-01 13:55:17, Info                  CSI    00000031 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:17, Info                  CSI    00000032 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:20, Info                  CSI    00000033 [sR] Verify complete
2014-04-01 13:55:21, Info                  CSI    00000034 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:21, Info                  CSI    00000035 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:24, Info                  CSI    00000036 [sR] Verify complete
2014-04-01 13:55:24, Info                  CSI    00000037 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:24, Info                  CSI    00000038 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:30, Info                  CSI    00000039 [sR] Verify complete
2014-04-01 13:55:30, Info                  CSI    0000003a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:30, Info                  CSI    0000003b [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:34, Info                  CSI    0000003c [sR] Verify complete
2014-04-01 13:55:34, Info                  CSI    0000003d [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:34, Info                  CSI    0000003e [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:39, Info                  CSI    0000003f [sR] Verify complete
2014-04-01 13:55:39, Info                  CSI    00000040 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:39, Info                  CSI    00000041 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:44, Info                  CSI    0000005a [sR] Verify complete
2014-04-01 13:55:44, Info                  CSI    0000005b [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:44, Info                  CSI    0000005c [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:52, Info                  CSI    00000064 [sR] Verify complete
2014-04-01 13:55:52, Info                  CSI    00000065 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:52, Info                  CSI    00000066 [sR] Beginning Verify and Repair transaction
2014-04-01 13:55:58, Info                  CSI    00000069 [sR] Verify complete
2014-04-01 13:55:59, Info                  CSI    0000006a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:55:59, Info                  CSI    0000006b [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:05, Info                  CSI    00000074 [sR] Verify complete
2014-04-01 13:56:05, Info                  CSI    00000075 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:05, Info                  CSI    00000076 [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:10, Info                  CSI    0000007c [sR] Verify complete
2014-04-01 13:56:10, Info                  CSI    0000007d [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:10, Info                  CSI    0000007e [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:14, Info                  CSI    0000007f [sR] Verify complete
2014-04-01 13:56:14, Info                  CSI    00000080 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:14, Info                  CSI    00000081 [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:23, Info                  CSI    00000089 [sR] Verify complete
2014-04-01 13:56:23, Info                  CSI    0000008a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:23, Info                  CSI    0000008b [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:32, Info                  CSI    000000a6 [sR] Verify complete
2014-04-01 13:56:32, Info                  CSI    000000a7 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:32, Info                  CSI    000000a8 [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:39, Info                  CSI    000000ce [sR] Verify complete
2014-04-01 13:56:40, Info                  CSI    000000cf [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:40, Info                  CSI    000000d0 [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:46, Info                  CSI    000000d8 [sR] Verify complete
2014-04-01 13:56:46, Info                  CSI    000000d9 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:46, Info                  CSI    000000da [sR] Beginning Verify and Repair transaction
2014-04-01 13:56:55, Info                  CSI    000000e4 [sR] Verify complete
2014-04-01 13:56:55, Info                  CSI    000000e5 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:56:55, Info                  CSI    000000e6 [sR] Beginning Verify and Repair transaction
2014-04-01 13:57:02, Info                  CSI    000000fd [sR] Verify complete
2014-04-01 13:57:03, Info                  CSI    000000fe [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:57:03, Info                  CSI    000000ff [sR] Beginning Verify and Repair transaction
2014-04-01 13:57:09, Info                  CSI    00000105 [sR] Verify complete
2014-04-01 13:57:09, Info                  CSI    00000106 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:57:09, Info                  CSI    00000107 [sR] Beginning Verify and Repair transaction
2014-04-01 13:57:15, Info                  CSI    00000108 [sR] Verify complete
2014-04-01 13:57:15, Info                  CSI    00000109 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:57:15, Info                  CSI    0000010a [sR] Beginning Verify and Repair transaction
2014-04-01 13:57:21, Info                  CSI    00000110 [sR] Verify complete
2014-04-01 13:57:21, Info                  CSI    00000111 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:57:21, Info                  CSI    00000112 [sR] Beginning Verify and Repair transaction
2014-04-01 13:57:30, Info                  CSI    0000012f [sR] Verify complete
2014-04-01 13:57:31, Info                  CSI    00000130 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:57:31, Info                  CSI    00000131 [sR] Beginning Verify and Repair transaction
2014-04-01 13:57:41, Info                  CSI    00000164 [sR] Verify complete
2014-04-01 13:57:41, Info                  CSI    00000165 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:57:41, Info                  CSI    00000166 [sR] Beginning Verify and Repair transaction
2014-04-01 13:57:58, Info                  CSI    00000186 [sR] Verify complete
2014-04-01 13:57:58, Info                  CSI    00000187 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:57:58, Info                  CSI    00000188 [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:12, Info                  CSI    0000018e [sR] Verify complete
2014-04-01 13:58:12, Info                  CSI    0000018f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:12, Info                  CSI    00000190 [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:17, Info                  CSI    00000197 [sR] Verify complete
2014-04-01 13:58:17, Info                  CSI    00000198 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:17, Info                  CSI    00000199 [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:24, Info                  CSI    000001b3 [sR] Verify complete
2014-04-01 13:58:24, Info                  CSI    000001b4 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:24, Info                  CSI    000001b5 [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:29, Info                  CSI    000001ba [sR] Verify complete
2014-04-01 13:58:29, Info                  CSI    000001bb [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:29, Info                  CSI    000001bc [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:33, Info                  CSI    000001bd [sR] Verify complete
2014-04-01 13:58:33, Info                  CSI    000001be [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:33, Info                  CSI    000001bf [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:40, Info                  CSI    000001cb [sR] Verify complete
2014-04-01 13:58:40, Info                  CSI    000001cc [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:40, Info                  CSI    000001cd [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:44, Info                  CSI    000001ce [sR] Verify complete
2014-04-01 13:58:44, Info                  CSI    000001cf [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:44, Info                  CSI    000001d0 [sR] Beginning Verify and Repair transaction
2014-04-01 13:58:51, Info                  CSI    00000246 [sR] Verify complete
2014-04-01 13:58:51, Info                  CSI    00000247 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:58:51, Info                  CSI    00000248 [sR] Beginning Verify and Repair transaction
2014-04-01 13:59:04, Info                  CSI    00000251 [sR] Verify complete
2014-04-01 13:59:04, Info                  CSI    00000252 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:59:04, Info                  CSI    00000253 [sR] Beginning Verify and Repair transaction
2014-04-01 13:59:20, Info                  CSI    00000262 [sR] Verify complete
2014-04-01 13:59:20, Info                  CSI    00000263 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:59:20, Info                  CSI    00000264 [sR] Beginning Verify and Repair transaction
2014-04-01 13:59:36, Info                  CSI    0000027e [sR] Verify complete
2014-04-01 13:59:36, Info                  CSI    0000027f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:59:36, Info                  CSI    00000280 [sR] Beginning Verify and Repair transaction
2014-04-01 13:59:51, Info                  CSI    00000284 [sR] Verify complete
2014-04-01 13:59:51, Info                  CSI    00000285 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 13:59:51, Info                  CSI    00000286 [sR] Beginning Verify and Repair transaction
2014-04-01 14:00:14, Info                  CSI    00000291 [sR] Verify complete
2014-04-01 14:00:14, Info                  CSI    00000292 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:00:14, Info                  CSI    00000293 [sR] Beginning Verify and Repair transaction
2014-04-01 14:00:25, Info                  CSI    00000297 [sR] Verify complete
2014-04-01 14:00:25, Info                  CSI    00000298 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:00:25, Info                  CSI    00000299 [sR] Beginning Verify and Repair transaction
2014-04-01 14:00:45, Info                  CSI    000002af [sR] Verify complete
2014-04-01 14:00:45, Info                  CSI    000002b0 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:00:45, Info                  CSI    000002b1 [sR] Beginning Verify and Repair transaction
2014-04-01 14:00:52, Info                  CSI    000002c0 [sR] Verify complete
2014-04-01 14:00:52, Info                  CSI    000002c1 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:00:52, Info                  CSI    000002c2 [sR] Beginning Verify and Repair transaction
2014-04-01 14:00:58, Info                  CSI    000002c8 [sR] Verify complete
2014-04-01 14:00:58, Info                  CSI    000002c9 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:00:58, Info                  CSI    000002ca [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:07, Info                  CSI    000002d4 [sR] Verify complete
2014-04-01 14:01:07, Info                  CSI    000002d5 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:07, Info                  CSI    000002d6 [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:15, Info                  CSI    00000304 [sR] Verify complete
2014-04-01 14:01:15, Info                  CSI    00000305 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:15, Info                  CSI    00000306 [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:21, Info                  CSI    00000308 [sR] Verify complete
2014-04-01 14:01:21, Info                  CSI    00000309 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:21, Info                  CSI    0000030a [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:27, Info                  CSI    00000317 [sR] Verify complete
2014-04-01 14:01:28, Info                  CSI    00000318 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:28, Info                  CSI    00000319 [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:33, Info                  CSI    00000329 [sR] Verify complete
2014-04-01 14:01:33, Info                  CSI    0000032a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:33, Info                  CSI    0000032b [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:39, Info                  CSI    00000333 [sR] Verify complete
2014-04-01 14:01:39, Info                  CSI    00000334 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:39, Info                  CSI    00000335 [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:46, Info                  CSI    00000347 [sR] Verify complete
2014-04-01 14:01:46, Info                  CSI    00000348 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:46, Info                  CSI    00000349 [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:52, Info                  CSI    0000034f [sR] Verify complete
2014-04-01 14:01:52, Info                  CSI    00000350 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:52, Info                  CSI    00000351 [sR] Beginning Verify and Repair transaction
2014-04-01 14:01:57, Info                  CSI    00000353 [sR] Verify complete
2014-04-01 14:01:57, Info                  CSI    00000354 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:01:57, Info                  CSI    00000355 [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:04, Info                  CSI    00000358 [sR] Verify complete
2014-04-01 14:02:04, Info                  CSI    00000359 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:04, Info                  CSI    0000035a [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:09, Info                  CSI    0000036a [sR] Verify complete
2014-04-01 14:02:10, Info                  CSI    0000036b [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:10, Info                  CSI    0000036c [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:14, Info                  CSI    0000036e [sR] Verify complete
2014-04-01 14:02:14, Info                  CSI    0000036f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:14, Info                  CSI    00000370 [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:19, Info                  CSI    00000371 [sR] Verify complete
2014-04-01 14:02:19, Info                  CSI    00000372 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:19, Info                  CSI    00000373 [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:29, Info                  CSI    00000384 [sR] Verify complete
2014-04-01 14:02:29, Info                  CSI    00000385 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:29, Info                  CSI    00000386 [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:36, Info                  CSI    00000389 [sR] Verify complete
2014-04-01 14:02:36, Info                  CSI    0000038a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:36, Info                  CSI    0000038b [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:48, Info                  CSI    000003c1 [sR] Verify complete
2014-04-01 14:02:48, Info                  CSI    000003c2 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:48, Info                  CSI    000003c3 [sR] Beginning Verify and Repair transaction
2014-04-01 14:02:54, Info                  CSI    000003ca [sR] Verify complete
2014-04-01 14:02:54, Info                  CSI    000003cb [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:02:54, Info                  CSI    000003cc [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:02, Info                  CSI    000003d2 [sR] Verify complete
2014-04-01 14:03:02, Info                  CSI    000003d3 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:02, Info                  CSI    000003d4 [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:08, Info                  CSI    000003d8 [sR] Verify complete
2014-04-01 14:03:08, Info                  CSI    000003d9 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:08, Info                  CSI    000003da [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:15, Info                  CSI    000003db [sR] Verify complete
2014-04-01 14:03:15, Info                  CSI    000003dc [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:15, Info                  CSI    000003dd [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:23, Info                  CSI    000003e1 [sR] Verify complete
2014-04-01 14:03:23, Info                  CSI    000003e2 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:23, Info                  CSI    000003e3 [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:29, Info                  CSI    000003e6 [sR] Verify complete
2014-04-01 14:03:29, Info                  CSI    000003e7 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:29, Info                  CSI    000003e8 [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:37, Info                  CSI    000003f9 [sR] Verify complete
2014-04-01 14:03:37, Info                  CSI    000003fa [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:37, Info                  CSI    000003fb [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:43, Info                  CSI    00000402 [sR] Verify complete
2014-04-01 14:03:43, Info                  CSI    00000403 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:43, Info                  CSI    00000404 [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:50, Info                  CSI    00000416 [sR] Verify complete
2014-04-01 14:03:50, Info                  CSI    00000417 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:50, Info                  CSI    00000418 [sR] Beginning Verify and Repair transaction
2014-04-01 14:03:56, Info                  CSI    00000427 [sR] Verify complete
2014-04-01 14:03:56, Info                  CSI    00000428 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:03:56, Info                  CSI    00000429 [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:02, Info                  CSI    0000042b [sR] Verify complete
2014-04-01 14:04:02, Info                  CSI    0000042c [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:02, Info                  CSI    0000042d [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:08, Info                  CSI    0000042e [sR] Verify complete
2014-04-01 14:04:08, Info                  CSI    0000042f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:08, Info                  CSI    00000430 [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:17, Info                  CSI    0000043e [sR] Verify complete
2014-04-01 14:04:18, Info                  CSI    0000043f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:18, Info                  CSI    00000440 [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:24, Info                  CSI    00000468 [sR] Verify complete
2014-04-01 14:04:25, Info                  CSI    00000469 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:25, Info                  CSI    0000046a [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:29, Info                  CSI    0000046f [sR] Verify complete
2014-04-01 14:04:29, Info                  CSI    00000470 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:29, Info                  CSI    00000471 [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:36, Info                  CSI    0000047e [sR] Verify complete
2014-04-01 14:04:36, Info                  CSI    0000047f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:36, Info                  CSI    00000480 [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:43, Info                  CSI    00000481 [sR] Verify complete
2014-04-01 14:04:43, Info                  CSI    00000482 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:43, Info                  CSI    00000483 [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:49, Info                  CSI    00000485 [sR] Verify complete
2014-04-01 14:04:49, Info                  CSI    00000486 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:49, Info                  CSI    00000487 [sR] Beginning Verify and Repair transaction
2014-04-01 14:04:55, Info                  CSI    00000488 [sR] Verify complete
2014-04-01 14:04:55, Info                  CSI    00000489 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:04:55, Info                  CSI    0000048a [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:02, Info                  CSI    0000048b [sR] Verify complete
2014-04-01 14:05:02, Info                  CSI    0000048c [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:02, Info                  CSI    0000048d [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:06, Info                  CSI    0000048e [sR] Verify complete
2014-04-01 14:05:06, Info                  CSI    0000048f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:06, Info                  CSI    00000490 [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:11, Info                  CSI    00000491 [sR] Verify complete
2014-04-01 14:05:11, Info                  CSI    00000492 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:11, Info                  CSI    00000493 [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:15, Info                  CSI    00000494 [sR] Verify complete
2014-04-01 14:05:15, Info                  CSI    00000495 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:15, Info                  CSI    00000496 [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:19, Info                  CSI    00000497 [sR] Verify complete
2014-04-01 14:05:19, Info                  CSI    00000498 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:19, Info                  CSI    00000499 [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:24, Info                  CSI    0000049a [sR] Verify complete
2014-04-01 14:05:24, Info                  CSI    0000049b [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:24, Info                  CSI    0000049c [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:29, Info                  CSI    000004bf [sR] Verify complete
2014-04-01 14:05:29, Info                  CSI    000004c0 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:29, Info                  CSI    000004c1 [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:34, Info                  CSI    000004c2 [sR] Verify complete
2014-04-01 14:05:34, Info                  CSI    000004c3 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:34, Info                  CSI    000004c4 [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:41, Info                  CSI    000004c6 [sR] Cannot repair member file [l:36{18}]"Amd64\CNBJ2530.DPB" of prncacla.inf, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type = [l:24{12}]"driverUpdate", TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-04-01 14:05:44, Info                  CSI    000004c8 [sR] Cannot repair member file [l:36{18}]"Amd64\CNBJ2530.DPB" of prncacla.inf, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type = [l:24{12}]"driverUpdate", TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-04-01 14:05:44, Info                  CSI    000004c9 [sR] This component was referenced by [l:186{93}]"Microsoft-Windows-Printer-Drivers-Package~31bf3856ad364e35~amd64~~6.3.9600.16384.INF_prncacla"
2014-04-01 14:05:46, Info                  CSI    000004cc [sR] Verify complete
2014-04-01 14:05:46, Info                  CSI    000004cd [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:46, Info                  CSI    000004ce [sR] Beginning Verify and Repair transaction
2014-04-01 14:05:57, Info                  CSI    000004cf [sR] Verify complete
2014-04-01 14:05:57, Info                  CSI    000004d0 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:05:57, Info                  CSI    000004d1 [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:03, Info                  CSI    000004d2 [sR] Verify complete
2014-04-01 14:06:03, Info                  CSI    000004d3 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:03, Info                  CSI    000004d4 [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:07, Info                  CSI    000004d5 [sR] Verify complete
2014-04-01 14:06:07, Info                  CSI    000004d6 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:07, Info                  CSI    000004d7 [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:15, Info                  CSI    000004d8 [sR] Verify complete
2014-04-01 14:06:15, Info                  CSI    000004d9 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:15, Info                  CSI    000004da [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:24, Info                  CSI    000004e5 [sR] Verify complete
2014-04-01 14:06:24, Info                  CSI    000004e6 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:24, Info                  CSI    000004e7 [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:30, Info                  CSI    000004e8 [sR] Verify complete
2014-04-01 14:06:30, Info                  CSI    000004e9 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:30, Info                  CSI    000004ea [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:34, Info                  CSI    0000051b [sR] Verify complete
2014-04-01 14:06:34, Info                  CSI    0000051c [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:34, Info                  CSI    0000051d [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:39, Info                  CSI    0000055b [sR] Verify complete
2014-04-01 14:06:39, Info                  CSI    0000055c [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:39, Info                  CSI    0000055d [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:43, Info                  CSI    00000560 [sR] Verify complete
2014-04-01 14:06:44, Info                  CSI    00000561 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:44, Info                  CSI    00000562 [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:47, Info                  CSI    00000563 [sR] Verify complete
2014-04-01 14:06:47, Info                  CSI    00000564 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:47, Info                  CSI    00000565 [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:51, Info                  CSI    00000566 [sR] Verify complete
2014-04-01 14:06:51, Info                  CSI    00000567 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:51, Info                  CSI    00000568 [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:55, Info                  CSI    00000569 [sR] Verify complete
2014-04-01 14:06:55, Info                  CSI    0000056a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:55, Info                  CSI    0000056b [sR] Beginning Verify and Repair transaction
2014-04-01 14:06:59, Info                  CSI    0000056c [sR] Verify complete
2014-04-01 14:06:59, Info                  CSI    0000056d [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:06:59, Info                  CSI    0000056e [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:04, Info                  CSI    0000057e [sR] Verify complete
2014-04-01 14:07:04, Info                  CSI    0000057f [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:04, Info                  CSI    00000580 [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:12, Info                  CSI    00000595 [sR] Verify complete
2014-04-01 14:07:12, Info                  CSI    00000596 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:12, Info                  CSI    00000597 [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:19, Info                  CSI    000005a8 [sR] Verify complete
2014-04-01 14:07:19, Info                  CSI    000005a9 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:19, Info                  CSI    000005aa [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:24, Info                  CSI    000005ac [sR] Verify complete
2014-04-01 14:07:24, Info                  CSI    000005ad [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:24, Info                  CSI    000005ae [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:28, Info                  CSI    000005af [sR] Verify complete
2014-04-01 14:07:28, Info                  CSI    000005b0 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:28, Info                  CSI    000005b1 [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:36, Info                  CSI    000005be [sR] Verify complete
2014-04-01 14:07:36, Info                  CSI    000005bf [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:36, Info                  CSI    000005c0 [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:43, Info                  CSI    000005c2 [sR] Verify complete
2014-04-01 14:07:43, Info                  CSI    000005c3 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:43, Info                  CSI    000005c4 [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:49, Info                  CSI    000005e6 [sR] Verify complete
2014-04-01 14:07:49, Info                  CSI    000005e7 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:49, Info                  CSI    000005e8 [sR] Beginning Verify and Repair transaction
2014-04-01 14:07:55, Info                  CSI    000005f1 [sR] Verify complete
2014-04-01 14:07:55, Info                  CSI    000005f2 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:07:55, Info                  CSI    000005f3 [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:02, Info                  CSI    00000600 [sR] Verify complete
2014-04-01 14:08:02, Info                  CSI    00000601 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:02, Info                  CSI    00000602 [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:10, Info                  CSI    00000622 [sR] Verify complete
2014-04-01 14:08:10, Info                  CSI    00000623 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:10, Info                  CSI    00000624 [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:17, Info                  CSI    00000676 [sR] Verify complete
2014-04-01 14:08:17, Info                  CSI    00000677 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:17, Info                  CSI    00000678 [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:23, Info                  CSI    0000067a [sR] Verify complete
2014-04-01 14:08:23, Info                  CSI    0000067b [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:23, Info                  CSI    0000067c [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:29, Info                  CSI    0000067d [sR] Verify complete
2014-04-01 14:08:29, Info                  CSI    0000067e [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:29, Info                  CSI    0000067f [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:34, Info                  CSI    00000682 [sR] Verify complete
2014-04-01 14:08:34, Info                  CSI    00000683 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:34, Info                  CSI    00000684 [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:40, Info                  CSI    0000069f [sR] Verify complete
2014-04-01 14:08:40, Info                  CSI    000006a0 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:40, Info                  CSI    000006a1 [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:46, Info                  CSI    000006c6 [sR] Verify complete
2014-04-01 14:08:46, Info                  CSI    000006c7 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:46, Info                  CSI    000006c8 [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:51, Info                  CSI    000006cb [sR] Verify complete
2014-04-01 14:08:51, Info                  CSI    000006cc [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:51, Info                  CSI    000006cd [sR] Beginning Verify and Repair transaction
2014-04-01 14:08:57, Info                  CSI    000006d5 [sR] Verify complete
2014-04-01 14:08:57, Info                  CSI    000006d6 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:08:57, Info                  CSI    000006d7 [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:02, Info                  CSI    000006d8 [sR] Verify complete
2014-04-01 14:09:03, Info                  CSI    000006d9 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:03, Info                  CSI    000006da [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:07, Info                  CSI    000006e4 [sR] Verify complete
2014-04-01 14:09:07, Info                  CSI    000006e5 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:07, Info                  CSI    000006e6 [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:14, Info                  CSI    00000708 [sR] Verify complete
2014-04-01 14:09:14, Info                  CSI    00000709 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:14, Info                  CSI    0000070a [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:19, Info                  CSI    00000721 [sR] Verify complete
2014-04-01 14:09:19, Info                  CSI    00000722 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:19, Info                  CSI    00000723 [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:22, Info                  CSI    00000724 [sR] Verify complete
2014-04-01 14:09:22, Info                  CSI    00000725 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:22, Info                  CSI    00000726 [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:25, Info                  CSI    00000728 [sR] Verify complete
2014-04-01 14:09:25, Info                  CSI    00000729 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:25, Info                  CSI    0000072a [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:31, Info                  CSI    00000734 [sR] Verify complete
2014-04-01 14:09:31, Info                  CSI    00000735 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:31, Info                  CSI    00000736 [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:36, Info                  CSI    0000074f [sR] Verify complete
2014-04-01 14:09:36, Info                  CSI    00000750 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:36, Info                  CSI    00000751 [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:42, Info                  CSI    00000753 [sR] Verify complete
2014-04-01 14:09:42, Info                  CSI    00000754 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:42, Info                  CSI    00000755 [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:52, Info                  CSI    00000769 [sR] Verify complete
2014-04-01 14:09:52, Info                  CSI    0000076a [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:52, Info                  CSI    0000076b [sR] Beginning Verify and Repair transaction
2014-04-01 14:09:58, Info                  CSI    00000780 [sR] Verify complete
2014-04-01 14:09:58, Info                  CSI    00000781 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:09:58, Info                  CSI    00000782 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:07, Info                  CSI    0000078d [sR] Verify complete
2014-04-01 14:10:07, Info                  CSI    0000078e [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:07, Info                  CSI    0000078f [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:12, Info                  CSI    000007b0 [sR] Verify complete
2014-04-01 14:10:12, Info                  CSI    000007b1 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:12, Info                  CSI    000007b2 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:17, Info                  CSI    000007b5 [sR] Verify complete
2014-04-01 14:10:17, Info                  CSI    000007b6 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:17, Info                  CSI    000007b7 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:22, Info                  CSI    000007c9 [sR] Verify complete
2014-04-01 14:10:22, Info                  CSI    000007ca [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:22, Info                  CSI    000007cb [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:26, Info                  CSI    000007d0 [sR] Verify complete
2014-04-01 14:10:26, Info                  CSI    000007d1 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:26, Info                  CSI    000007d2 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:31, Info                  CSI    000007d4 [sR] Verify complete
2014-04-01 14:10:31, Info                  CSI    000007d5 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:31, Info                  CSI    000007d6 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:37, Info                  CSI    000007db [sR] Verify complete
2014-04-01 14:10:37, Info                  CSI    000007dc [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:37, Info                  CSI    000007dd [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:42, Info                  CSI    000007e2 [sR] Verify complete
2014-04-01 14:10:42, Info                  CSI    000007e3 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:42, Info                  CSI    000007e4 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:47, Info                  CSI    000007e7 [sR] Verify complete
2014-04-01 14:10:47, Info                  CSI    000007e8 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:47, Info                  CSI    000007e9 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:52, Info                  CSI    000007ee [sR] Verify complete
2014-04-01 14:10:52, Info                  CSI    000007ef [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:52, Info                  CSI    000007f0 [sR] Beginning Verify and Repair transaction
2014-04-01 14:10:57, Info                  CSI    000007f2 [sR] Verify complete
2014-04-01 14:10:57, Info                  CSI    000007f3 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:10:57, Info                  CSI    000007f4 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:02, Info                  CSI    000007f6 [sR] Verify complete
2014-04-01 14:11:02, Info                  CSI    000007f7 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:02, Info                  CSI    000007f8 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:10, Info                  CSI    00000803 [sR] Verify complete
2014-04-01 14:11:10, Info                  CSI    00000804 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:10, Info                  CSI    00000805 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:17, Info                  CSI    00000806 [sR] Verify complete
2014-04-01 14:11:17, Info                  CSI    00000807 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:17, Info                  CSI    00000808 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:23, Info                  CSI    0000080a [sR] Verify complete
2014-04-01 14:11:23, Info                  CSI    0000080b [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:23, Info                  CSI    0000080c [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:28, Info                  CSI    0000080d [sR] Verify complete
2014-04-01 14:11:28, Info                  CSI    0000080e [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:28, Info                  CSI    0000080f [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:34, Info                  CSI    00000810 [sR] Verify complete
2014-04-01 14:11:34, Info                  CSI    00000811 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:34, Info                  CSI    00000812 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:38, Info                  CSI    00000813 [sR] Verify complete
2014-04-01 14:11:38, Info                  CSI    00000814 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:38, Info                  CSI    00000815 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:43, Info                  CSI    00000816 [sR] Verify complete
2014-04-01 14:11:44, Info                  CSI    00000817 [sR] Verifying 100 (0x0000000000000064) components
2014-04-01 14:11:44, Info                  CSI    00000818 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:48, Info                  CSI    0000081b [sR] Verify complete
2014-04-01 14:11:48, Info                  CSI    0000081c [sR] Verifying 6 components
2014-04-01 14:11:48, Info                  CSI    0000081d [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:49, Info                  CSI    0000081e [sR] Verify complete
2014-04-01 14:11:49, Info                  CSI    0000081f [sR] Repairing 1 components
2014-04-01 14:11:49, Info                  CSI    00000820 [sR] Beginning Verify and Repair transaction
2014-04-01 14:11:49, Info                  CSI    00000822 [sR] Cannot repair member file [l:36{18}]"Amd64\CNBJ2530.DPB" of prncacla.inf, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type = [l:24{12}]"driverUpdate", TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-04-01 14:11:50, Info                  CSI    00000824 [sR] Cannot repair member file [l:36{18}]"Amd64\CNBJ2530.DPB" of prncacla.inf, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type = [l:24{12}]"driverUpdate", TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-04-01 14:11:50, Info                  CSI    00000825 [sR] This component was referenced by [l:186{93}]"Microsoft-Windows-Printer-Drivers-Package~31bf3856ad364e35~amd64~~6.3.9600.16384.INF_prncacla"
2014-04-01 14:11:50, Info                  CSI    00000826 [sR] Repair complete
2014-04-01 14:11:50, Info                  CSI    00000827 [sR] Committing transaction
2014-04-01 14:11:50, Info                  CSI    0000082c [sR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction  have been successfully repaired

Link to post
Share on other sites

My win8 laptop is running great as far as I can tell.   I still have the problem doing a right-click on a file/folder and running MBAM v2 to scan.   The MBAM window pops up, indicates I need to update the database which works, but does not do the scan on the file/folder.

Link to post
Share on other sites

Please download and run Malwarebytes Antimalware Cleanup tool.

Follow the instructions to completely remove the program.

 

 

 

Windows Repair (all-in-one)

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.

Go to Step 2 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool indicates that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22004342.gif


Once the above is done go to Step 3 and allow it to run System File Check by clicking on Do It button: