Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer running slow [Solved]

Started by Bismillah , Mar 14 2014 05:13 AM

  • This topic is locked This topic is locked

#1
Bismillah
Posted 14 March 2014 - 05:13 AM

Bismillah

    Member

  • Member
  • PipPipPip
  • 514 posts
Lately my computer seems to be running extremely slow :/ I'm wondering if this is due to any infection/malware?

Sometimes the mouse lags or appears to move itself? Another problem is that Internet Explorer doesn't work, although this is not an immediate problem as i use Chrome it is nice to have the choice of either browsers.

A lot of Adware i think O_o
C:\Users\Dan\AppData\Local\Temp\tmp2013232911 << Adware (Lollipops Infection)
C:\Users\Dan\AppData\Local\Temp\Offercast2802_MYC_.exe <<Adware

[2009/07/14 04:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
How could the date for creation of this possible be correct? This laptop was purchased brand new on 27/12/2012



Thanks.

OTL logfile created on: 14/03/2014 10:00:21 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dan\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

5.89 Gb Total Physical Memory | 2.99 Gb Available Physical Memory | 50.69% Memory free
11.79 Gb Paging File | 8.13 Gb Available in Paging File | 68.96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 578.98 Gb Total Space | 183.46 Gb Free Space | 31.69% Space Free | Partition Type: NTFS

Computer Name: BISMILLAH | User Name: Dan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Dan\Downloads\OTL (1).exe (OldTimer Tools)
PRC - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\MusicManager.exe (Google Inc.)
PRC - C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
PRC - C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
PRC - C:\Windows\SysWOW64\PnkBstrB.exe ()
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Users\Dan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation)
PRC - C:\Users\Dan\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
PRC - C:\Program Files (x86)\ShortKeys 3\shortkey.exe (Insight Software Solutions, Inc.)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe (ManyCam LLC)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files (x86)\FAHClient\FAHClient.exe ()
PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe ()
PRC - C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Brother Industries, Ltd.)
PRC - C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.)
PRC - C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE (CANON INC.)
PRC - C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE (CANON INC.)
PRC - C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
PRC - C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe ()
PRC - C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG)
PRC - C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
PRC - C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe (Nuance Communications, Inc.)
PRC - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Acresso Corporation)
PRC - C:\Users\Dan\Desktop\texter.exe ()


========== Modules (No Company Name) ==========

MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM9DED.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM99F5.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM981F.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM9511.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM8DCC.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM88FA.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM831E.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM8280.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM8185.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM8116.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM7EE2.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM7D79.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM7859.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM755A.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM73D2.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM7315.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM7110.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM6D38.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM6682.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM6519.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM6333.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5DD4.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5CC9.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5B60.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5748.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM56D9.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM56B8.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM55CC.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM554D.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM54DE.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4E76.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4D5B.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4A6C.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4A5B.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4A39.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4A16.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4978.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4957.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4869.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4857.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4826.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4776.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM488A.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4A28.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAA47F6.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAA4775.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAA4725.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4260.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAA436A.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM3BC9.tmp ()
MOD - C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM3062.tmp ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libid3tag.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libmpgdec.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libaudioenc.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libaacdec.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppgooglenaclpluginchrome.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libglesv2.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libegl.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\75b6a68103e1b76063d9f69b8275ae61\UIAutomationTypes.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\47e7fc401facd4a5d3f2237f16948f36\PresentationFramework-SystemXml.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\a4b45c44490c75bc2fb22780e7ef087d\PresentationFramework.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\3fe705796c6a41d4889d9001d1c56af8\System.Xaml.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f4f6ee0df2aa4189bf36e6335cb92761\System.Windows.Forms.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\966f64a25064fe74936295dc06ec586e\System.Runtime.Remoting.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\a74542efbeb46445949a39026c501132\PresentationCore.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Core\dce99d8de14d8a015313db98c72552ee\System.Core.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\acf97bfe2a931d4a47253b26b7218991\WindowsBase.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\75f8bc4cf08030c4a53b6d5e0ae20046\PresentationFramework.Aero.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\bbc48ec4245e502ae19b0601d3799c9e\System.Configuration.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Steam\bin\chromehtml.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files (x86)\Steam\SDL2.dll ()
MOD - C:\Program Files (x86)\Steam\bin\libcef.dll ()
MOD - C:\Program Files (x86)\Steam\libavresample-1.dll ()
MOD - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\c2r32.dll ()
MOD - C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\imageformats\qgif4.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtWebKit4.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtNetwork4.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtGui4.dll ()
MOD - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtCore4.dll ()
MOD - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll ()
MOD - C:\Program Files\Microsoft Office 15\root\office15\appvisvstream32.dll ()
MOD - C:\Program Files (x86)\Steam\libavutil-52.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll ()
MOD - C:\Program Files (x86)\Steam\bin\avcodec-53.dll ()
MOD - C:\Program Files (x86)\Steam\bin\avformat-53.dll ()
MOD - C:\Program Files (x86)\Steam\bin\avutil-51.dll ()
MOD - C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll ()
MOD - C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll ()
MOD - C:\Program Files (x86)\ManyCam\Bin\opencv_highgui220.dll ()
MOD - C:\Program Files (x86)\ManyCam\Bin\opencv_objdetect220.dll ()
MOD - C:\Program Files (x86)\ManyCam\Bin\opencv_video220.dll ()
MOD - C:\Program Files (x86)\FAHClient\FAHClient.exe ()
MOD - C:\Program Files (x86)\ShortKeys 3\ssce32.dll ()
MOD - C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll ()
MOD - C:\Users\Dan\Desktop\texter.exe ()


========== Services (SafeList) ==========

SRV:64bit: - (IEEtwCollectorService) -- C:\windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (OfficeSvc) -- C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV:64bit: - (MySQL55) -- C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe ()
SRV:64bit: - (Intel® -- C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel® Corporation)
SRV:64bit: - (TosCoSrv) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TPCHSrv) -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TOSHIBA HDD SSD Alert Service) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TOSHIBA eco Utility Service) -- C:\Program Files\TOSHIBA\TECO\TecoService.exe (TOSHIBA Corporation)
SRV:64bit: - (TODDSrv) -- C:\Windows\SysNative\TODDSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (GFNEXSrv) -- C:\Windows\SysNative\GFNEXSrv.exe ()
SRV:64bit: - (TlntSvr) -- C:\Windows\SysNative\tlntsvr.exe (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (c2cautoupdatesvc) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
SRV - (c2cpnrsvc) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (PnkBstrB) -- C:\Windows\SysWOW64\PnkBstrB.exe ()
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe ()
SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (IJPLMSVC) -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe ()
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Intel Corporation)
SRV - (Intel® -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe ()
SRV - (NAUpdate) -- C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG)
SRV - (PDFProFiltSrvPP) -- C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe (Nuance Communications, Inc.)
SRV - (TMachInfo) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (TOSHIBA Corporation)
SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)
SRV - (TemproMonitoringService) -- C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (Toshiba Europe GmbH)
SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (aswSnx) -- C:\windows\SysNative\drivers\aswSnx.sys (AVAST Software)
DRV:64bit: - (aswSP) -- C:\windows\SysNative\drivers\aswSP.sys (AVAST Software)
DRV:64bit: - (aswVmm) -- C:\windows\SysNative\drivers\aswVmm.sys ()
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
DRV:64bit: - (aswRvrt) -- C:\windows\SysNative\drivers\aswRvrt.sys ()
DRV:64bit: - (aswTdi) -- C:\windows\SysNative\drivers\aswTdi.sys (AVAST Software)
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:64bit: - (aswFsBlk) -- C:\windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
DRV:64bit: - (mcaudrv_simple) -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys (ManyCam LLC)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (ManyCam) -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys (ManyCam LLC)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (tosrfbd) -- C:\Windows\SysNative\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV:64bit: - (RTL8192Ce) -- C:\Windows\SysNative\drivers\rtwlane.sys (Realtek Semiconductor Corporation )
DRV:64bit: - (RtkBtFilter) -- C:\Windows\SysNative\drivers\RtkBtfilter.sys (Realtek Microelectronics)
DRV:64bit: - (iusb3xhc) -- C:\Windows\SysNative\drivers\iusb3xhc.sys (Intel Corporation)
DRV:64bit: - (iusb3hub) -- C:\Windows\SysNative\drivers\iusb3hub.sys (Intel Corporation)
DRV:64bit: - (iusb3hcs) -- C:\Windows\SysNative\drivers\iusb3hcs.sys (Intel Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (Tosrfusb) -- C:\Windows\SysNative\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel® Corporation)
DRV:64bit: - (NBVol) -- C:\Windows\SysNative\drivers\NBVol.sys (Nero AG)
DRV:64bit: - (NBVolUp) -- C:\Windows\SysNative\drivers\NBVolUp.sys (Nero AG)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (PGEffect) -- C:\Windows\SysNative\drivers\PGEffect.sys (TOSHIBA Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (vpcvmm) -- C:\Windows\SysNative\drivers\vpcvmm.sys (Microsoft Corporation)
DRV:64bit: - (vpcbus) -- C:\Windows\SysNative\drivers\vpchbus.sys (Microsoft Corporation)
DRV:64bit: - (vpcusb) -- C:\Windows\SysNative\drivers\vpcusb.sys (Microsoft Corporation)
DRV:64bit: - (vpcnfltr) -- C:\Windows\SysNative\drivers\vpcnfltr.sys (Microsoft Corporation)
DRV:64bit: - (Tosrfhid) -- C:\Windows\SysNative\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV:64bit: - (tosrfec) -- C:\Windows\SysNative\drivers\tosrfec.sys (TOSHIBA Corporation)
DRV:64bit: - (tdcmdpst) -- C:\Windows\SysNative\drivers\tdcmdpst.sys (TOSHIBA Corporation.)
DRV:64bit: - (TVALZ) -- C:\Windows\SysNative\drivers\TVALZ_O.SYS (TOSHIBA Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation)
DRV:64bit: - (tos_sps64) -- C:\Windows\SysNative\drivers\tos_sps64.sys (TOSHIBA Corporation)
DRV:64bit: - (TVALZFL) -- C:\Windows\SysNative\drivers\TVALZFL.sys (TOSHIBA Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (RimUsb) -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys (Research In Motion Limited)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64}
IE:64bit: - HKLM\..\SearchScopes\{1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64}: "URL" = http://www.google.co...g}&rlz=1I7TEUA;
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64}
IE - HKLM\..\SearchScopes\{1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64}: "URL" = http://www.google.co...g}&rlz=1I7TEUA;

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=TEUA&bmod=TEUA
IE - HKCU\..\SearchScopes,DefaultScope = {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64}
IE - HKCU\..\SearchScopes\{1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64}: "URL" = http://www.google.co...UA_enGB516GB517
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.0.282: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.0: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.0: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.0: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.0.282: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Users\Dan\AppData\Local\Roblox\Versions\version-bce30591d031432c\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Dan\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Dan\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Dan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{34712C68-7391-4c47-94F3-8F88D49AD632}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/01/12 00:27:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/01/12 00:27:42 | 000,000,000 | ---D | M]

[2013/05/10 22:30:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Extensions

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.co...=TEUA&bmod=TEUA
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Nero Kwik Media Helper (Enabled) = C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Windows Live™ Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
CHR - Extension: General Crawler = C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel\2.6_0\
CHR - Extension: avast! Online Security = C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2013.75_0\
CHR - Extension: RealDownloader = C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.0_0\
CHR - Extension: Skype Click to Call = C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.1.15383.6004_0\
CHR - Extension: Google Wallet = C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\

O1 HOSTS File: ([2013/03/30 17:38:29 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (TOSHIBA Media Controller Plug-in) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (PlusIEEventHelper Class) - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\bin\PlusIEContextMenu.dll (Zeon Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (TOSHIBA Media Controller Plug-in) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [SRS Premium Sound HD] C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
O4:64bit: - HKLM..\Run: [TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Toshiba Registration] C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [Toshiba TEMPRO] C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN File not found
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
O4 - HKLM..\Run: [IndexSearch] C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [ITSecMng] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime File not found
O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKCU..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Acresso Corporation)
O4 - HKCU..\Run: [ManyCam] C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe (ManyCam LLC)
O4 - HKCU..\Run: [Media Finder] "C:\Program Files (x86)\Media Finder\Media Finder.exe" /opentotray File not found
O4 - HKCU..\Run: [MusicManager] C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\MusicManager.exe (Google Inc.)
O4 - HKCU..\Run: [SkyDrive] C:\Users\Dan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (TOSHIBA)
O4 - Startup: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\[email protected] = C:\Program Files (x86)\FAHClient\HideConsole.exe ()
O4 - Startup: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Texter.lnk = C:\Users\Dan\Desktop\texter.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Download with &Media Finder - C:\Program Files (x86)\Media Finder\hook.html File not found
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Open with PDF Viewer Plus - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
O8:64bit: - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files (x86)\Media Finder\hook.html File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Open with PDF Viewer Plus - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:64bit: - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.45.2)
O16 - DPF: {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_39)
O16 - DPF: {CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.45.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9002BD8E-F33D-49AA-8006-E4BF84F58C8B}: DhcpNameServer = 194.168.4.100 194.168.8.100
O18:64bit: - Protocol\Handler\osf - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/03/14 10:03:14 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\Dan\Desktop\aswmbr (1).exe
[2014/03/07 07:57:50 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014/03/03 12:13:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2014/03/03 12:11:52 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2014/03/03 12:11:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2014/03/03 12:11:52 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2014/03/03 12:11:52 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2014/03/03 12:04:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2014/03/03 11:59:56 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/03/03 11:57:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
[2014/03/01 17:44:31 | 000,000,000 | ---D | C] -- C:\Users\Dan\AppData\Local\Skype
[2014/03/01 17:44:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014/03/01 17:44:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014/02/25 23:44:11 | 000,000,000 | ---D | C] -- C:\windows\Migration
[2014/02/24 20:07:39 | 000,000,000 | ---D | C] -- C:\Users\Dan\AppData\Local\Uber Entertainment
[2014/02/20 16:47:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive
[2014/02/16 22:01:57 | 000,000,000 | ---D | C] -- C:\Users\Dan\Extinction1
[2014/02/16 21:51:22 | 000,000,000 | ---D | C] -- C:\Users\Dan\Desktop\New folder
[2014/02/16 20:00:43 | 000,119,000 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/02/16 20:00:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[2014/02/16 20:00:20 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbamchameleon.sys
[2014/02/16 20:00:15 | 000,000,000 | ---D | C] -- C:\Users\Dan\Desktop\mbar
[4 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[2 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\Users\Dan\Documents\*.tmp files -> C:\Users\Dan\Documents\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/03/14 10:04:36 | 000,000,912 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/03/14 10:02:50 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\Dan\Desktop\aswmbr (1).exe
[2014/03/14 09:57:12 | 000,024,608 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/14 09:57:12 | 000,024,608 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/14 09:54:32 | 000,000,900 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000UA.job
[2014/03/14 09:48:31 | 000,000,433 | ---- | M] () -- C:\Users\Dan\Desktop\texter.ini
[2014/03/14 09:47:00 | 000,000,828 | ---- | M] () -- C:\windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2014/03/14 09:46:56 | 000,000,908 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/03/14 09:45:19 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2014/03/14 09:45:17 | 451,776,511 | -HS- | M] () -- C:\hiberfil.sys
[2014/03/14 00:22:01 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/03/13 22:54:57 | 000,443,712 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2014/03/13 06:56:25 | 002,735,678 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2014/03/13 06:56:25 | 000,671,118 | ---- | M] () -- C:\windows\SysNative\perfh01D.dat
[2014/03/13 06:56:25 | 000,669,734 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2014/03/13 06:56:25 | 000,501,912 | ---- | M] () -- C:\windows\SysNative\perfh014.dat
[2014/03/13 06:56:25 | 000,488,900 | ---- | M] () -- C:\windows\SysNative\perfh00B.dat
[2014/03/13 06:56:25 | 000,148,440 | ---- | M] () -- C:\windows\SysNative\perfc01D.dat
[2014/03/13 06:56:25 | 000,128,110 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2014/03/13 06:56:25 | 000,107,486 | ---- | M] () -- C:\windows\SysNative\perfc00B.dat
[2014/03/13 06:56:25 | 000,101,370 | ---- | M] () -- C:\windows\SysNative\perfc014.dat
[2014/03/10 22:54:01 | 000,000,848 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000Core.job
[2014/03/07 08:03:43 | 000,001,933 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/03/07 08:03:43 | 000,000,000 | ---- | M] () -- C:\windows\SysWow64\config.nt
[2014/03/03 12:13:21 | 000,001,794 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2014/02/27 00:24:29 | 002,673,230 | ---- | M] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2014/02/23 00:53:34 | 000,104,570 | ---- | M] () -- C:\Users\Dan\Documents\NYPD Laws v1.3.pdf
[2014/02/22 18:44:06 | 000,107,832 | ---- | M] () -- C:\windows\SysWow64\PnkBstrB.exe
[2014/02/22 18:43:58 | 002,337,865 | ---- | M] () -- C:\windows\SysWow64\pbsvc.exe
[2014/02/22 18:43:58 | 000,066,872 | ---- | M] () -- C:\windows\SysWow64\PnkBstrA.exe
[2014/02/17 23:47:48 | 000,091,998 | ---- | M] () -- C:\Users\Dan\Documents\NYPD Laws v1.2.pdf
[2014/02/17 23:05:35 | 000,090,908 | ---- | M] () -- C:\Users\Dan\Documents\NYPD Laws v1.1.pdf
[2014/02/16 20:00:43 | 000,119,000 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/02/16 20:00:20 | 000,091,352 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbamchameleon.sys
[4 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[2 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\Users\Dan\Documents\*.tmp files -> C:\Users\Dan\Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/03/03 12:13:21 | 000,001,794 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2014/02/23 00:53:33 | 000,104,570 | ---- | C] () -- C:\Users\Dan\Documents\NYPD Laws v1.3.pdf
[2014/02/22 18:44:00 | 000,107,832 | ---- | C] () -- C:\windows\SysWow64\PnkBstrB.exe
[2014/02/22 18:43:58 | 002,337,865 | ---- | C] () -- C:\windows\SysWow64\pbsvc.exe
[2014/02/22 18:43:58 | 000,066,872 | ---- | C] () -- C:\windows\SysWow64\PnkBstrA.exe
[2014/02/20 16:47:47 | 000,002,123 | ---- | C] () -- C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
[2014/02/17 23:47:47 | 000,091,998 | ---- | C] () -- C:\Users\Dan\Documents\NYPD Laws v1.2.pdf
[2014/02/17 23:05:33 | 000,090,908 | ---- | C] () -- C:\Users\Dan\Documents\NYPD Laws v1.1.pdf
[2014/01/03 00:15:36 | 000,000,043 | ---- | C] () -- C:\Users\Dan\jagex_cl_runescape_LIVE1.dat
[2014/01/03 00:03:29 | 000,000,023 | ---- | C] () -- C:\Users\Dan\jagexappletviewer.preferences
[2013/09/19 14:10:21 | 000,196,128 | -H-- | C] () -- C:\windows\SysWow64\mlfcache.dat
[2013/09/16 10:28:37 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2013/09/10 16:52:13 | 000,000,600 | ---- | C] () -- C:\Users\Dan\AppData\Local\PUTTY.RND
[2013/08/10 23:56:15 | 171,059,279 | ---- | C] () -- C:\Users\Dan\AppData\Roaming\.technic.rar
[2013/05/03 15:18:01 | 000,007,602 | ---- | C] () -- C:\Users\Dan\AppData\Local\Resmon.ResmonCfg
[2013/04/02 19:05:30 | 000,013,055 | ---- | C] () -- C:\windows\BRRBCOM.INI
[2013/04/02 19:03:22 | 000,045,056 | ---- | C] () -- C:\windows\SysWow64\BRTCPCON.DLL
[2013/04/02 19:03:21 | 000,000,114 | ---- | C] () -- C:\windows\SysWow64\BRLMW03A.INI
[2013/03/30 17:22:50 | 000,256,000 | ---- | C] () -- C:\windows\PEV.exe
[2013/03/30 17:22:50 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe
[2013/03/30 17:22:49 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe
[2013/03/30 17:22:49 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe
[2013/03/30 17:22:49 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe
[2013/03/13 20:02:52 | 000,000,044 | ---- | C] () -- C:\Users\Dan\jagex_cl_loginapplet_LIVE.dat
[2013/02/19 00:39:22 | 000,000,042 | ---- | C] () -- C:\Users\Dan\jagex_cl_runescape_LIVE.dat
[2013/02/19 00:39:22 | 000,000,024 | ---- | C] () -- C:\Users\Dan\random.dat
[2013/01/19 22:35:05 | 000,703,117 | ---- | C] () -- C:\Users\Dan\AppData\Roaming\technic-launcher.jar
[2013/01/19 22:35:05 | 000,703,007 | ---- | C] () -- C:\Users\Dan\AppData\Roaming\technic-launcher.jar.bak
[2013/01/05 21:09:33 | 002,673,230 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012/05/31 07:38:27 | 000,128,312 | ---- | C] () -- C:\windows\SysWow64\GFNEX.dll
[2012/05/31 07:35:05 | 000,028,528 | ---- | C] () -- C:\windows\rlt8723a_chip_bt40_fw_asic_rom_patch.dll
[2012/05/31 07:32:19 | 000,451,072 | ---- | C] () -- C:\windows\SysWow64\ISSRemoveSP.exe
[2012/05/10 15:14:32 | 000,755,572 | ---- | C] () -- C:\windows\SysWow64\igkrng700.bin
[2012/05/10 15:14:32 | 000,559,972 | ---- | C] () -- C:\windows\SysWow64\igfcg700m.bin
[2012/05/10 15:07:18 | 000,058,880 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2012/05/10 14:25:28 | 013,026,304 | ---- | C] () -- C:\windows\SysWow64\ig7icd32.dll

========== ZeroAccess Check ==========

[2009/07/14 04:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 02:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 01:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 01:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 03:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 01:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014/01/19 20:19:36 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\.minecraft
[2013/09/16 12:55:01 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\.mono
[2013/04/02 21:01:17 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\.technic
[2013/03/22 23:29:19 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\.techniclauncher
[2013/12/20 21:16:46 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\11bitstudios
[2013/08/08 21:57:05 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\3909
[2013/04/24 18:08:34 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\3909 LLC
[2013/12/19 23:53:33 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\8BitMMO
[2013/01/12 02:32:23 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1
[2013/05/23 21:51:22 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\BitTorrent
[2013/09/17 20:23:49 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Canon
[2013/06/23 19:34:17 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\com.shirogames.evoland
[2013/04/02 19:12:38 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\ControlCenter4
[2013/04/21 13:25:32 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\CorsixTH
[2013/07/31 17:17:56 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Faerie Solitaire
[2014/03/14 09:48:53 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\FAHClient
[2013/03/22 23:28:54 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\logs
[2013/06/16 22:42:59 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\ManyCam
[2013/05/23 21:52:29 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Media Finder
[2013/01/02 18:58:18 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\MotioninJoy
[2013/01/03 23:17:03 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\MySQL
[2013/01/24 23:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\NetBeans
[2013/01/08 00:27:10 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Notepad++
[2013/04/02 18:56:55 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Nuance
[2013/03/10 10:56:22 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Origin
[2013/10/12 16:42:13 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\PC Remote
[2013/02/03 18:38:01 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\PDF Writer
[2014/02/23 00:53:08 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\PrimoPDF
[2013/09/04 11:16:07 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\SoftGrid Client
[2013/04/05 18:26:58 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Spore
[2013/01/04 01:03:08 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\TeamViewer
[2013/03/13 19:43:23 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\The Creative Assembly
[2013/06/20 13:36:47 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Toshiba
[2013/01/16 22:17:42 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\TOSHIBA Online Product Information
[2013/01/05 21:10:37 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\TP
[2012/12/27 23:04:12 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Tropico 3
[2013/11/16 00:21:07 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Unity
[2012/12/27 23:06:09 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\WildTangent
[2012/12/27 14:55:07 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\WinBatch

========== Purity Check ==========



< End of report >


aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2014-03-14 10:03:19
-----------------------------
10:03:19.210 OS Version: Windows x64 6.1.7601 Service Pack 1
10:03:19.210 Number of processors: 4 586 0x3A09
10:03:19.211 ComputerName: BISMILLAH UserName: Dan
10:03:24.643 Initialize success
10:03:24.807 AVAST engine defs: 14031301
10:03:28.176 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:03:28.179 Disk 0 Vendor: Hitachi_ JEDO Size: 610480MB BusType: 3
10:03:28.350 Disk 0 MBR read successfully
10:03:28.356 Disk 0 MBR scan
10:03:28.361 Disk 0 Windows VISTA default MBR code
10:03:28.368 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
10:03:28.394 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 592872 MB offset 3074048
10:03:28.427 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 16107 MB offset 1217275904
10:03:28.662 Disk 0 scanning C:\windows\system32\drivers
10:03:54.839 Service scanning
10:05:07.834 Modules scanning
10:05:07.847 Disk 0 trace - called modules:
10:05:07.865 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
10:05:08.205 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007aa3790]
10:05:08.209 3 CLASSPNP.SYS[fffff88001d5243f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007aa2050]
10:05:13.483 AVAST engine scan C:\windows
10:05:25.775 AVAST engine scan C:\windows\system32
10:14:49.118 AVAST engine scan C:\windows\system32\drivers
10:16:15.206 AVAST engine scan C:\Users\Dan
10:34:26.114 File: C:\Users\Dan\AppData\Local\Temp\tmp2013232911\bpl\uFrm_LollipopBR.bpl **INFECTED** Win32:Lollipop-B [Adw]
10:34:26.532 File: C:\Users\Dan\AppData\Local\Temp\tmp2013232911\bpl\uFrm_LollipopES.bpl **INFECTED** Win32:Lollipop-B [Adw]
10:34:26.637 File: C:\Users\Dan\AppData\Local\Temp\tmp2013232911\bpl\uFrm_LollipopFR.bpl **INFECTED** Win32:Lollipop-B [Adw]
10:34:26.700 File: C:\Users\Dan\AppData\Local\Temp\tmp2013232911\bpl\uFrm_LollipopIT.bpl **INFECTED** Win32:Lollipop-B [Adw]
10:34:26.996 File: C:\Users\Dan\AppData\Local\Temp\tmp2013232911\bpl\uFrm_PlayBryte.bpl **INFECTED** Win32:Malware-gen
10:34:27.307 File: C:\Users\Dan\AppData\Local\Temp\tmp2013232911\bpl\uFrm_QwikLinkx.bpl **INFECTED** Win32:Malware-gen
11:04:20.313 AVAST engine scan C:\ProgramData
11:05:37.198 Disk 0 MBR has been saved successfully to "C:\Users\Dan\Desktop\MBR.dat"
11:05:37.199 The log file has been saved successfully to "C:\Users\Dan\Desktop\aswMBR.txt"


11:07:13.0375 0x2088 TDSS rootkit removing tool 3.0.0.25 Feb 27 2014 15:23:02
11:07:16.0557 0x2088 ============================================================
11:07:16.0557 0x2088 Current date / time: 2014/03/14 11:07:16.0557
11:07:16.0557 0x2088 SystemInfo:
11:07:16.0557 0x2088
11:07:16.0557 0x2088 OS Version: 6.1.7601 ServicePack: 1.0
11:07:16.0557 0x2088 Product type: Workstation
11:07:16.0557 0x2088 ComputerName: BISMILLAH
11:07:16.0562 0x2088 UserName: Dan
11:07:16.0562 0x2088 Windows directory: C:\windows
11:07:16.0562 0x2088 System windows directory: C:\windows
11:07:16.0562 0x2088 Running under WOW64
11:07:16.0562 0x2088 Processor architecture: Intel x64
11:07:16.0562 0x2088 Number of processors: 4
11:07:16.0562 0x2088 Page size: 0x1000
11:07:16.0562 0x2088 Boot type: Normal boot
11:07:16.0562 0x2088 ============================================================
11:07:17.0614 0x2088 KLMD registered as C:\windows\system32\drivers\15302353.sys
11:07:18.0815 0x2088 System UUID: {DE200B4B-A6EC-6356-4777-DB6F4128443C}
11:07:20.0212 0x2088 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:07:20.0242 0x2088 ============================================================
11:07:20.0242 0x2088 \Device\Harddisk0\DR0:
11:07:20.0250 0x2088 MBR partitions:
11:07:20.0250 0x2088 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x485F4000
11:07:20.0250 0x2088 ============================================================
11:07:20.0332 0x2088 C: <-> \Device\Harddisk0\DR0\Partition1
11:07:20.0332 0x2088 ============================================================
11:07:20.0332 0x2088 Initialize success
11:07:20.0332 0x2088 ============================================================
11:07:22.0107 0x28cc ============================================================
11:07:22.0107 0x28cc Scan started
11:07:22.0107 0x28cc Mode: Manual;
11:07:22.0107 0x28cc ============================================================
11:07:22.0107 0x28cc KSN ping started
11:07:36.0150 0x28cc KSN ping finished: true
11:07:36.0867 0x28cc ================ Scan system memory ========================
11:07:36.0867 0x28cc System memory - ok
11:07:36.0867 0x28cc ================ Scan services =============================
11:07:38.0188 0x28cc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
11:07:38.0201 0x28cc 1394ohci - ok
11:07:38.0407 0x28cc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\windows\system32\drivers\ACPI.sys
11:07:38.0432 0x28cc ACPI - ok
11:07:38.0616 0x28cc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
11:07:38.0639 0x28cc AcpiPmi - ok
11:07:38.0902 0x28cc [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:07:38.0911 0x28cc AdobeARMservice - ok
11:07:40.0319 0x28cc [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:07:40.0337 0x28cc AdobeFlashPlayerUpdateSvc - ok
11:07:40.0391 0x28cc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
11:07:40.0405 0x28cc adp94xx - ok
11:07:40.0515 0x28cc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\drivers\adpahci.sys
11:07:40.0538 0x28cc adpahci - ok
11:07:40.0667 0x28cc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\drivers\adpu320.sys
11:07:40.0685 0x28cc adpu320 - ok
11:07:40.0724 0x28cc [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
11:07:40.0738 0x28cc AeLookupSvc - ok
11:07:41.0003 0x28cc [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\windows\system32\drivers\afd.sys
11:07:41.0029 0x28cc AFD - ok
11:07:41.0430 0x28cc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\windows\system32\drivers\agp440.sys
11:07:41.0446 0x28cc agp440 - ok
11:07:41.0532 0x28cc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe
11:07:41.0548 0x28cc ALG - ok
11:07:41.0613 0x28cc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\drivers\aliide.sys
11:07:41.0622 0x28cc aliide - ok
11:07:41.0689 0x28cc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\drivers\amdide.sys
11:07:41.0696 0x28cc amdide - ok
11:07:41.0777 0x28cc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
11:07:41.0811 0x28cc AmdK8 - ok
11:07:41.0956 0x28cc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
11:07:41.0981 0x28cc AmdPPM - ok
11:07:42.0024 0x28cc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\windows\system32\drivers\amdsata.sys
11:07:42.0043 0x28cc amdsata - ok
11:07:42.0086 0x28cc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
11:07:42.0111 0x28cc amdsbs - ok
11:07:42.0145 0x28cc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\windows\system32\drivers\amdxata.sys
11:07:42.0167 0x28cc amdxata - ok
11:07:42.0210 0x28cc [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\windows\system32\drivers\appid.sys
11:07:42.0216 0x28cc AppID - ok
11:07:42.0282 0x28cc [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\windows\System32\appidsvc.dll
11:07:42.0300 0x28cc AppIDSvc - ok
11:07:42.0378 0x28cc [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\windows\System32\appinfo.dll
11:07:42.0391 0x28cc Appinfo - ok
11:07:42.0552 0x28cc [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:07:42.0556 0x28cc Apple Mobile Device - ok
11:07:42.0644 0x28cc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\drivers\arc.sys
11:07:42.0648 0x28cc arc - ok
11:07:42.0690 0x28cc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\drivers\arcsas.sys
11:07:42.0720 0x28cc arcsas - ok
11:07:43.0402 0x28cc [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:07:43.0485 0x28cc aspnet_state - ok
11:07:43.0615 0x28cc [ 0BAEFD3F648C6E7AB52990DD9565E4E2, 5B33A0F08F9A5F78280B854694FC764A2EDA28E2F26D26B57417895E4008583D ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
11:07:43.0618 0x28cc aswFsBlk - ok
11:07:43.0662 0x28cc [ FA562F34ED6633C66170B09182B4C049, 3FD89D5CF9F95D41085E7BCAE834F8CA83FCE405F2246161DC62549D36BF5795 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
11:07:43.0677 0x28cc aswMonFlt - ok
11:07:43.0791 0x28cc [ 64E2BAB4096C13D2342BC4661C967E07, 967172302AB0EF6C4CE42F6C079916FD22F355829C9E3A17CF22B265FF2810BE ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
11:07:43.0815 0x28cc aswRdr - ok
11:07:43.0954 0x28cc [ 5573AA70993A2BB81525B1C704B88763, 895909C0BEEDF93BE532F1C989628C68A798703C614D0C458E2D0BB70B7C5E18 ] aswRvrt C:\windows\system32\drivers\aswRvrt.sys
11:07:43.0973 0x28cc aswRvrt - ok
11:07:44.0346 0x28cc [ 8C0800CDB501CFC1164B286A0478DC10, 5B68140A7B5B6F4D02A15353996188A443B6FAE2A038E89E299F0E90979796F2 ] aswSnx C:\windows\system32\drivers\aswSnx.sys
11:07:44.0404 0x28cc aswSnx - ok
11:07:44.0637 0x28cc [ 3815DB16CDA62190F5C0A65118F3D714, 40FA13AC64A8B27B5D83D38F950075F34BA950C05BD0D864C72A99C615AB477D ] aswSP C:\windows\system32\drivers\aswSP.sys
11:07:44.0674 0x28cc aswSP - ok
11:07:44.0752 0x28cc [ 29DD8E458A84171202AA4979364C30C0, AA7AFEB487F109D65A047FE77A4A1F75006A9DBE662DACCEB6BF76987D112766 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
11:07:44.0776 0x28cc aswTdi - ok
11:07:44.0940 0x28cc [ 22F521108881DC59837F6FC614E0568F, 99EC002CC9D6C09AAF0D8200E6B157CC703FEBBF38C1B2D11F2464BAC46F53CF ] aswVmm C:\windows\system32\drivers\aswVmm.sys
11:07:44.0964 0x28cc aswVmm - ok
11:07:45.0056 0x28cc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
11:07:45.0058 0x28cc AsyncMac - ok
11:07:45.0163 0x28cc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\drivers\atapi.sys
11:07:45.0166 0x28cc atapi - ok
11:07:45.0352 0x28cc [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
11:07:45.0380 0x28cc AudioEndpointBuilder - ok
11:07:45.0586 0x28cc [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\windows\System32\Audiosrv.dll
11:07:45.0613 0x28cc AudioSrv - ok
11:07:45.0854 0x28cc [ 28D6701C710AD7BA3CB95E75F8F1A9AA, 66EE8BC56E5043B5A84E1BA37D591EAD132BD949F03CA8092FDCC3E196AB39D0 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:07:45.0865 0x28cc avast! Antivirus - ok
11:07:45.0937 0x28cc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\windows\System32\AxInstSV.dll
11:07:45.0969 0x28cc AxInstSV - ok
11:07:46.0107 0x28cc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
11:07:46.0142 0x28cc b06bdrv - ok
11:07:46.0208 0x28cc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
11:07:46.0240 0x28cc b57nd60a - ok
11:07:46.0284 0x28cc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll
11:07:46.0299 0x28cc BDESVC - ok
11:07:46.0493 0x28cc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys
11:07:46.0518 0x28cc Beep - ok
11:07:46.0923 0x28cc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\windows\System32\bfe.dll
11:07:46.0940 0x28cc BFE - ok
11:07:47.0205 0x28cc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\windows\System32\qmgr.dll
11:07:47.0292 0x28cc BITS - ok
11:07:47.0395 0x28cc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
11:07:47.0423 0x28cc blbdrive - ok
11:07:47.0623 0x28cc [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:07:47.0643 0x28cc Bonjour Service - ok
11:07:47.0754 0x28cc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\windows\system32\DRIVERS\bowser.sys
11:07:47.0779 0x28cc bowser - ok
11:07:47.0802 0x28cc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
11:07:47.0824 0x28cc BrFiltLo - ok
11:07:47.0913 0x28cc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
11:07:47.0927 0x28cc BrFiltUp - ok
11:07:47.0961 0x28cc [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
11:07:47.0975 0x28cc BridgeMP - ok
11:07:48.0125 0x28cc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\windows\System32\browser.dll
11:07:48.0139 0x28cc Browser - ok
11:07:48.0255 0x28cc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys
11:07:48.0266 0x28cc Brserid - ok
11:07:48.0290 0x28cc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
11:07:48.0311 0x28cc BrSerWdm - ok
11:07:48.0359 0x28cc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
11:07:48.0384 0x28cc BrUsbMdm - ok
11:07:48.0389 0x28cc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
11:07:48.0405 0x28cc BrUsbSer - ok
11:07:48.0460 0x28cc [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
11:07:48.0474 0x28cc BthEnum - ok
11:07:48.0504 0x28cc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
11:07:48.0521 0x28cc BTHMODEM - ok
11:07:48.0603 0x28cc [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
11:07:48.0627 0x28cc BthPan - ok
11:07:48.0787 0x28cc [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
11:07:48.0912 0x28cc BTHPORT - ok
11:07:49.0000 0x28cc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll
11:07:49.0006 0x28cc bthserv - ok
11:07:49.0045 0x28cc [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
11:07:49.0050 0x28cc BTHUSB - ok
11:07:49.0751 0x28cc [ BE531939BB6D153DB63DBBFBD398A713, CB63FD4051198A89EDB3CF45199F99F5816A672FA9374E166ED7A5D17ED47468 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
11:07:49.0807 0x28cc c2cautoupdatesvc - ok
11:07:50.0338 0x28cc [ 33E9F08F675EF94633C8EF8A7C4EADF3, E1556CF27F7FB3B03EE63F3464F5EE92E7B09E67C5D8AA4A9346FEEBD716A152 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
11:07:50.0450 0x28cc c2cpnrsvc - ok
11:07:50.0454 0x28cc catchme - ok
11:07:50.0583 0x28cc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
11:07:50.0597 0x28cc cdfs - ok
11:07:50.0671 0x28cc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
11:07:50.0705 0x28cc cdrom - ok
11:07:50.0790 0x28cc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\windows\System32\certprop.dll
11:07:50.0807 0x28cc CertPropSvc - ok
11:07:50.0975 0x28cc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\drivers\circlass.sys
11:07:51.0024 0x28cc circlass - ok
11:07:51.0282 0x28cc [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\windows\system32\CLFS.sys
11:07:51.0325 0x28cc CLFS - ok
11:07:51.0670 0x28cc [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:07:51.0688 0x28cc clr_optimization_v2.0.50727_32 - ok
11:07:51.0948 0x28cc [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:07:51.0970 0x28cc clr_optimization_v2.0.50727_64 - ok
11:07:52.0348 0x28cc [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:07:52.0615 0x28cc clr_optimization_v4.0.30319_32 - ok
11:07:52.0641 0x28cc [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:07:52.0762 0x28cc clr_optimization_v4.0.30319_64 - ok
11:07:52.0884 0x28cc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
11:07:52.0905 0x28cc CmBatt - ok
11:07:52.0991 0x28cc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\drivers\cmdide.sys
11:07:53.0008 0x28cc cmdide - ok
11:07:53.0202 0x28cc [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\windows\system32\Drivers\cng.sys
11:07:53.0220 0x28cc CNG - ok
11:07:53.0311 0x28cc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\drivers\compbatt.sys
11:07:53.0336 0x28cc Compbatt - ok
11:07:53.0344 0x28cc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
11:07:53.0346 0x28cc CompositeBus - ok
11:07:53.0357 0x28cc COMSysApp - ok
11:07:54.0947 0x28cc [ 723E3512D6D1FF75E5398981B38FCEF7, 4ED157A4B0C96BA63D4CD8544553828F322FAFF0EC0FF7515C26CE58C9227067 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
11:07:54.0993 0x28cc cphs - ok
11:07:55.0046 0x28cc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
11:07:55.0075 0x28cc crcdisk - ok
11:07:55.0116 0x28cc [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\windows\system32\cryptsvc.dll
11:07:55.0130 0x28cc CryptSvc - ok
11:07:55.0618 0x28cc [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
11:07:55.0707 0x28cc cvhsvc - ok
11:07:55.0812 0x28cc [ BA25D4B9B067248F7CAC416E855D706B, EB00FEC005863284D25AC708CEF65D945A1599801A3FDE4B992C1AD4593E2036 ] dc3d C:\windows\system32\DRIVERS\dc3d.sys
11:07:55.0846 0x28cc dc3d - ok
11:07:56.0012 0x28cc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\windows\system32\rpcss.dll
11:07:56.0043 0x28cc DcomLaunch - ok
11:07:56.0158 0x28cc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll
11:07:56.0178 0x28cc defragsvc - ok
11:07:56.0322 0x28cc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\windows\system32\Drivers\dfsc.sys
11:07:56.0372 0x28cc DfsC - ok
11:07:56.0498 0x28cc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\windows\system32\dhcpcore.dll
11:07:56.0522 0x28cc Dhcp - ok
11:07:56.0755 0x28cc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys
11:07:56.0779 0x28cc discache - ok
11:07:56.0803 0x28cc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\windows\system32\drivers\disk.sys
11:07:56.0819 0x28cc Disk - ok
11:07:56.0876 0x28cc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\windows\System32\dnsrslvr.dll
11:07:56.0898 0x28cc Dnscache - ok
11:07:56.0973 0x28cc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\windows\System32\dot3svc.dll
11:07:57.0006 0x28cc dot3svc - ok
11:07:57.0091 0x28cc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\windows\system32\dps.dll
11:07:57.0108 0x28cc DPS - ok
11:07:57.0279 0x28cc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
11:07:57.0287 0x28cc drmkaud - ok
11:07:57.0587 0x28cc [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
11:07:57.0687 0x28cc DXGKrnl - ok
11:07:57.0772 0x28cc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll
11:07:57.0800 0x28cc EapHost - ok
11:07:58.0786 0x28cc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\drivers\evbda.sys
11:07:59.0023 0x28cc ebdrv - ok
11:07:59.0095 0x28cc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\windows\System32\lsass.exe
11:07:59.0107 0x28cc EFS - ok
11:07:59.0543 0x28cc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\windows\ehome\ehRecvr.exe
11:07:59.0619 0x28cc ehRecvr - ok
11:07:59.0681 0x28cc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe
11:07:59.0737 0x28cc ehSched - ok
11:07:59.0978 0x28cc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\drivers\elxstor.sys
11:08:00.0073 0x28cc elxstor - ok
11:08:00.0086 0x28cc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\windows\system32\drivers\errdev.sys
11:08:00.0088 0x28cc ErrDev - ok
11:08:00.0344 0x28cc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll
11:08:00.0374 0x28cc EventSystem - ok
11:08:00.0430 0x28cc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\windows\system32\drivers\exfat.sys
11:08:00.0446 0x28cc exfat - ok
11:08:00.0536 0x28cc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\windows\system32\drivers\fastfat.sys
11:08:00.0557 0x28cc fastfat - ok
11:08:00.0647 0x28cc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\windows\system32\fxssvc.exe
11:08:00.0673 0x28cc Fax - ok
11:08:00.0696 0x28cc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\drivers\fdc.sys
11:08:00.0709 0x28cc fdc - ok
11:08:00.0777 0x28cc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll
11:08:00.0791 0x28cc fdPHost - ok
11:08:00.0859 0x28cc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll
11:08:00.0876 0x28cc FDResPub - ok
11:08:00.0977 0x28cc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys
11:08:00.0992 0x28cc FileInfo - ok
11:08:01.0022 0x28cc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys
11:08:01.0043 0x28cc Filetrace - ok
11:08:01.0102 0x28cc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\drivers\flpydisk.sys
11:08:01.0121 0x28cc flpydisk - ok
11:08:01.0161 0x28cc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
11:08:01.0183 0x28cc FltMgr - ok
11:08:01.0512 0x28cc [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\windows\system32\FntCache.dll
11:08:01.0567 0x28cc FontCache - ok
11:08:01.0749 0x28cc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:08:01.0766 0x28cc FontCache3.0.0.0 - ok
11:08:01.0885 0x28cc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys
11:08:01.0923 0x28cc FsDepends - ok
11:08:02.0116 0x28cc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
11:08:02.0150 0x28cc Fs_Rec - ok
11:08:02.0313 0x28cc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
11:08:02.0340 0x28cc fvevol - ok
11:08:02.0452 0x28cc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
11:08:02.0484 0x28cc gagp30kx - ok
11:08:02.0747 0x28cc [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
11:08:02.0786 0x28cc GamesAppService - ok
11:08:02.0866 0x28cc [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
11:08:02.0890 0x28cc GEARAspiWDM - ok
11:08:03.0039 0x28cc [ FA07EC01952729DDDDC5BF4BAE06B09E, EAD6B6C4D0C2F27C91D3494DD71B549C47104733CD8C8AF77104D4F7F41C18E5 ] GFNEXSrv C:\Windows\System32\GFNEXSrv.exe
11:08:03.0051 0x28cc GFNEXSrv - ok
11:08:03.0404 0x28cc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\windows\System32\gpsvc.dll
11:08:03.0456 0x28cc gpsvc - ok
11:08:03.0623 0x28cc [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:08:03.0641 0x28cc gupdate - ok
11:08:03.0658 0x28cc [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:08:03.0660 0x28cc gupdatem - ok
11:08:03.0795 0x28cc [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
11:08:03.0820 0x28cc gusvc - ok
11:08:03.0882 0x28cc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
11:08:03.0912 0x28cc hcw85cir - ok
11:08:03.0993 0x28cc [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
11:08:04.0030 0x28cc HdAudAddService - ok
11:08:04.0070 0x28cc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
11:08:04.0111 0x28cc HDAudBus - ok
11:08:04.0138 0x28cc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\drivers\HidBatt.sys
11:08:04.0172 0x28cc HidBatt - ok
11:08:04.0274 0x28cc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\drivers\hidbth.sys
11:08:04.0309 0x28cc HidBth - ok
11:08:04.0353 0x28cc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\drivers\hidir.sys
11:08:04.0383 0x28cc HidIr - ok
11:08:04.0464 0x28cc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\System32\hidserv.dll
11:08:04.0476 0x28cc hidserv - ok
11:08:04.0559 0x28cc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
11:08:04.0594 0x28cc HidUsb - ok
11:08:04.0691 0x28cc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\windows\system32\kmsvc.dll
11:08:04.0706 0x28cc hkmsvc - ok
11:08:04.0783 0x28cc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
11:08:04.0801 0x28cc HomeGroupListener - ok
11:08:04.0882 0x28cc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
11:08:04.0897 0x28cc HomeGroupProvider - ok
11:08:04.0969 0x28cc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
11:08:04.0993 0x28cc HpSAMD - ok
11:08:05.0165 0x28cc [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\windows\system32\drivers\HTTP.sys
11:08:05.0243 0x28cc HTTP - ok
11:08:05.0304 0x28cc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
11:08:05.0331 0x28cc hwpolicy - ok
11:08:05.0384 0x28cc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
11:08:05.0407 0x28cc i8042prt - ok
11:08:05.0569 0x28cc [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
11:08:05.0577 0x28cc iaStor - ok
11:08:05.0704 0x28cc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
11:08:05.0728 0x28cc iaStorV - ok
11:08:06.0064 0x28cc [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:08:06.0180 0x28cc idsvc - ok
11:08:06.0414 0x28cc IEEtwCollectorService - ok
11:08:09.0847 0x28cc [ 9AA61DC7AA32C1D1260C4267FF07E0C1, 34FEE032C2585600E612A6CFEE33AD4C0C140B04ADB0B08825F2FC5505480366 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
11:08:10.0407 0x28cc igfx - ok
11:08:10.0513 0x28cc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\drivers\iirsp.sys
11:08:10.0545 0x28cc iirsp - ok
11:08:10.0943 0x28cc [ EDCCC8C13B1EB882F77BA0ABB84566E7, DB299C1D2CFC197CF2FE69358F5EEDE94DCC4C919AF5D2CDFFF0DE476612C988 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
11:08:10.0977 0x28cc IJPLMSVC - ok
11:08:11.0177 0x28cc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\windows\System32\ikeext.dll
11:08:11.0230 0x28cc IKEEXT - ok
11:08:12.0124 0x28cc [ 7C49C45A86CC0CD59C36701FB2A91E77, 389B67CB7EF69A3789FDE6DC6C8A75847B3731BAD2E8A57A54719DA833FA7E0A ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
11:08:12.0360 0x28cc IntcAzAudAddService - ok
11:08:12.0463 0x28cc [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
11:08:12.0511 0x28cc IntcDAud - ok
11:08:13.0075 0x28cc [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:08:13.0125 0x28cc Intel® Capability Licensing Service Interface - ok
11:08:13.0312 0x28cc [ 896AA2F1D79662B17D5DBBE588E24E30, 834257B3C247ECA0130A55FB8E5F906F54B94A124FBB842DB7D679C030BD439B ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
11:08:13.0324 0x28cc Intel® ME Service - ok
11:08:13.0514 0x28cc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\drivers\intelide.sys
11:08:13.0530 0x28cc intelide - ok
11:08:13.0617 0x28cc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
11:08:13.0645 0x28cc intelppm - ok
11:08:13.0687 0x28cc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll
11:08:13.0703 0x28cc IPBusEnum - ok
11:08:13.0759 0x28cc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
11:08:13.0788 0x28cc IpFilterDriver - ok
11:08:13.0963 0x28cc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\windows\System32\iphlpsvc.dll
11:08:13.0999 0x28cc iphlpsvc - ok
11:08:14.0028 0x28cc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
11:08:14.0057 0x28cc IPMIDRV - ok
11:08:14.0120 0x28cc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys
11:08:14.0147 0x28cc IPNAT - ok
11:08:14.0514 0x28cc [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:08:14.0577 0x28cc iPod Service - ok
11:08:14.0620 0x28cc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys
11:08:14.0645 0x28cc IRENUM - ok
11:08:14.0743 0x28cc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\windows\system32\drivers\isapnp.sys
11:08:14.0761 0x28cc isapnp - ok
11:08:14.0880 0x28cc [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
11:08:14.0900 0x28cc iScsiPrt - ok
11:08:15.0011 0x28cc [ 8E4577C6E0D3114170509159DE658907, 2FC7F96766537716503AB1BAD7EBDB2F16F3CE1584AF4261D57C6A4E00E1A417 ] iusb3hcs C:\windows\system32\DRIVERS\iusb3hcs.sys
11:08:15.0050 0x28cc iusb3hcs - ok
11:08:15.0254 0x28cc [ FE76346E9B57DA575BD1B3BD0CCAD7FF, 8961A08326F66E9FDF63912797C605FEEC23F9B0453D132AB6897DA98BC9AEAB ] iusb3hub C:\windows\system32\DRIVERS\iusb3hub.sys
11:08:15.0286 0x28cc iusb3hub - ok
11:08:15.0691 0x28cc [ 1008CD90DA2198FFD250298DEB9DF160, 2CBA5FF2369861E8F8A55799AFFFC8E5B331A8BD17B559641E87A4C6C0D70206 ] iusb3xhc C:\windows\system32\DRIVERS\iusb3xhc.sys
11:08:15.0843 0x28cc iusb3xhc - ok
11:08:16.0023 0x28cc [ 3C6630473DD42FFC57D9F5564F533127, 1B2BBB8CF7AD5BF3F99565DA49F51B1E15D4B35698C105C0597DDBEB2DA61A83 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
11:08:16.0042 0x28cc jhi_service - ok
11:08:16.0074 0x28cc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
11:08:16.0110 0x28cc kbdclass - ok
11:08:16.0180 0x28cc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
11:08:16.0233 0x28cc kbdhid - ok
11:08:16.0285 0x28cc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\windows\system32\lsass.exe
11:08:16.0293 0x28cc KeyIso - ok
11:08:16.0388 0x28cc [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
11:08:16.0420 0x28cc KSecDD - ok
11:08:16.0479 0x28cc [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
11:08:16.0509 0x28cc KSecPkg - ok
11:08:16.0554 0x28cc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys
11:08:16.0591 0x28cc ksthunk - ok
11:08:16.0724 0x28cc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll
11:08:17.0046 0x28cc KtmRm - ok
11:08:17.0232 0x28cc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\windows\System32\srvsvc.dll
11:08:17.0324 0x28cc LanmanServer - ok
11:08:17.0420 0x28cc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
11:08:17.0459 0x28cc LanmanWorkstation - ok
11:08:17.0478 0x28cc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
11:08:17.0506 0x28cc lltdio - ok
11:08:17.0558 0x28cc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll
11:08:17.0590 0x28cc lltdsvc - ok
11:08:17.0624 0x28cc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll
11:08:17.0628 0x28cc lmhosts - ok
11:08:17.0824 0x28cc [ 2B23FAA39D8F949ED5EEE03ECA50BCD5, 7CEF2455D21A355542B290F4F18EDBC444F3704A31E569652D96A0A3E6799826 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:08:17.0839 0x28cc LMS - ok
11:08:17.0882 0x28cc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
11:08:17.0912 0x28cc LSI_FC - ok
11:08:17.0997 0x28cc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
11:08:18.0024 0x28cc LSI_SAS - ok
11:08:18.0097 0x28cc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
11:08:18.0129 0x28cc LSI_SAS2 - ok
11:08:18.0188 0x28cc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
11:08:18.0224 0x28cc LSI_SCSI - ok
11:08:18.0381 0x28cc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\windows\system32\drivers\luafv.sys
11:08:18.0428 0x28cc luafv - ok
11:08:18.0510 0x28cc [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam C:\windows\system32\DRIVERS\mcvidrv_x64.sys
11:08:18.0542 0x28cc ManyCam - ok
11:08:18.0641 0x28cc [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple C:\windows\system32\drivers\mcaudrv_x64.sys
11:08:18.0678 0x28cc mcaudrv_simple - ok
11:08:18.0751 0x28cc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
11:08:18.0782 0x28cc Mcx2Svc - ok
11:08:18.0869 0x28cc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\drivers\megasas.sys
11:08:18.0905 0x28cc megasas - ok
11:08:18.0994 0x28cc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
11:08:19.0020 0x28cc MegaSR - ok
11:08:19.0145 0x28cc [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
11:08:19.0205 0x28cc MEIx64 - ok
11:08:19.0356 0x28cc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll
11:08:19.0368 0x28cc MMCSS - ok
11:08:19.0420 0x28cc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys
11:08:19.0437 0x28cc Modem - ok
11:08:19.0688 0x28cc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys
11:08:19.0709 0x28cc monitor - ok
11:08:19.0820 0x28cc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
11:08:19.0848 0x28cc mouclass - ok
11:08:19.0999 0x28cc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
11:08:20.0020 0x28cc mouhid - ok
11:08:20.0090 0x28cc [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
11:08:20.0126 0x28cc mountmgr - ok
11:08:20.0300 0x28cc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\windows\system32\drivers\mpio.sys
11:08:20.0321 0x28cc mpio - ok
11:08:20.0402 0x28cc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
11:08:20.0434 0x28cc mpsdrv - ok
11:08:20.0662 0x28cc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\windows\system32\mpssvc.dll
11:08:20.0706 0x28cc MpsSvc - ok
11:08:20.0912 0x28cc [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
11:08:20.0955 0x28cc MRxDAV - ok
11:08:21.0142 0x28cc [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
11:08:21.0178 0x28cc mrxsmb - ok
11:08:21.0338 0x28cc [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
11:08:21.0448 0x28cc mrxsmb10 - ok
11:08:21.0488 0x28cc [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
11:08:21.0527 0x28cc mrxsmb20 - ok
11:08:21.0596 0x28cc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\windows\system32\drivers\msahci.sys
11:08:21.0617 0x28cc msahci - ok
11:08:21.0753 0x28cc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\windows\system32\drivers\msdsm.sys
11:08:21.0783 0x28cc msdsm - ok
11:08:21.0829 0x28cc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe
11:08:21.0866 0x28cc MSDTC - ok
11:08:21.0952 0x28cc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys
11:08:21.0994 0x28cc Msfs - ok
11:08:22.0032 0x28cc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
11:08:22.0059 0x28cc mshidkmdf - ok
11:08:22.0091 0x28cc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
11:08:22.0093 0x28cc msisadrv - ok
11:08:22.0200 0x28cc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll
11:08:22.0247 0x28cc MSiSCSI - ok
11:08:22.0252 0x28cc msiserver - ok
11:08:22.0351 0x28cc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
11:08:22.0383 0x28cc MSKSSRV - ok
11:08:22.0439 0x28cc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
11:08:22.0477 0x28cc MSPCLOCK - ok
11:08:22.0516 0x28cc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys
11:08:22.0549 0x28cc MSPQM - ok
11:08:22.0582 0x28cc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
11:08:22.0609 0x28cc MsRPC - ok
11:08:22.0642 0x28cc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
11:08:22.0653 0x28cc mssmbios - ok
11:08:22.0758 0x28cc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys
11:08:22.0771 0x28cc MSTEE - ok
11:08:22.0805 0x28cc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\drivers\MTConfig.sys
11:08:22.0826 0x28cc MTConfig - ok
11:08:23.0045 0x28cc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys
11:08:23.0076 0x28cc Mup - ok
11:08:23.0188 0x28cc MySQL55 - ok
11:08:23.0288 0x28cc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\windows\system32\qagentRT.dll
11:08:23.0319 0x28cc napagent - ok
11:08:23.0423 0x28cc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
11:08:23.0441 0x28cc NativeWifiP - ok
11:08:23.0947 0x28cc [ DFE14D63F0F649EE94A9E3442B7C8F2C, D4DA9DFF92F0E9DD14192AC77ABA1556C01DB27085731CEA3425F613FD317050 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
11:08:23.0984 0x28cc NAUpdate - ok
11:08:24.0145 0x28cc [ DACA803A8D732FE5EEAA024EC342F81D, 2DDEA48CD417EDD657D487BADA7C31C05F35DA328AAC5AA63A99FDFD44F2BF02 ] NBVol C:\windows\system32\DRIVERS\NBVol.sys
11:08:24.0178 0x28cc NBVol - ok
11:08:24.0241 0x28cc [ 6208F622E9E35860DFB0753DFF56F0C0, AF7730B4AB642E0E45C05AE1429C7B3D90B0889CF94B21AC7869790D4DB6FDBE ] NBVolUp C:\windows\system32\DRIVERS\NBVolUp.sys
11:08:24.0280 0x28cc NBVolUp - ok
11:08:24.0541 0x28cc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\windows\system32\drivers\ndis.sys
11:08:24.0611 0x28cc NDIS - ok
11:08:24.0771 0x28cc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
11:08:24.0791 0x28cc NdisCap - ok
11:08:24.0834 0x28cc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
11:08:24.0851 0x28cc NdisTapi - ok
11:08:24.0910 0x28cc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
11:08:24.0927 0x28cc Ndisuio - ok
11:08:25.0074 0x28cc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
11:08:25.0110 0x28cc NdisWan - ok
11:08:25.0237 0x28cc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
11:08:25.0261 0x28cc NDProxy - ok
11:08:25.0283 0x28cc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
11:08:25.0308 0x28cc NetBIOS - ok
11:08:25.0356 0x28cc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
11:08:25.0387 0x28cc NetBT - ok
11:08:25.0474 0x28cc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\windows\system32\lsass.exe
11:08:25.0486 0x28cc Netlogon - ok
11:08:25.0548 0x28cc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll
11:08:25.0582 0x28cc Netman - ok
11:08:26.0263 0x28cc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:26.0326 0x28cc NetMsmqActivator - ok
11:08:26.0371 0x28cc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:26.0377 0x28cc NetPipeActivator - ok
11:08:26.0581 0x28cc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll
11:08:26.0604 0x28cc netprofm - ok
11:08:26.0695 0x28cc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:26.0700 0x28cc NetTcpActivator - ok
11:08:26.0708 0x28cc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:26.0712 0x28cc NetTcpPortSharing - ok
11:08:26.0750 0x28cc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
11:08:26.0784 0x28cc nfrd960 - ok
11:08:26.0849 0x28cc [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\windows\System32\nlasvc.dll
11:08:26.0892 0x28cc NlaSvc - ok
11:08:26.0976 0x28cc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys
11:08:27.0039 0x28cc Npfs - ok
11:08:27.0086 0x28cc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\windows\system32\nsisvc.dll
11:08:27.0114 0x28cc nsi - ok
11:08:27.0221 0x28cc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
11:08:27.0228 0x28cc nsiproxy - ok
11:08:27.0682 0x28cc [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\windows\system32\drivers\Ntfs.sys
11:08:27.0832 0x28cc Ntfs - ok
11:08:28.0011 0x28cc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys
11:08:28.0040 0x28cc Null - ok
11:08:28.0091 0x28cc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\windows\system32\drivers\nvraid.sys
11:08:28.0115 0x28cc nvraid - ok
11:08:28.0202 0x28cc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\windows\system32\drivers\nvstor.sys
11:08:28.0228 0x28cc nvstor - ok
11:08:28.0262 0x28cc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\windows\system32\drivers\nv_agp.sys
11:08:28.0283 0x28cc nv_agp - ok
11:08:29.0117 0x28cc [ 25FFB1C1E5BD27B9757EACF40B2B0F7B, 41B4236F580B4653C65E3F16DD3FF91E924716FDD2DCBA89A5F416563C5F0076 ] OfficeSvc C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
11:08:29.0157 0x28cc OfficeSvc - ok
11:08:29.0263 0x28cc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
11:08:29.0278 0x28cc ohci1394 - ok
11:08:29.0464 0x28cc [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:08:29.0478 0x28cc ose - ok
11:08:30.0922 0x28cc [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:08:31.0116 0x28cc osppsvc - ok
11:08:31.0285 0x28cc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
11:08:31.0310 0x28cc p2pimsvc - ok
11:08:31.0500 0x28cc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\windows\system32\p2psvc.dll
11:08:31.0553 0x28cc p2psvc - ok
11:08:31.0659 0x28cc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\windows\system32\drivers\parport.sys
11:08:31.0685 0x28cc Parport - ok
11:08:31.0713 0x28cc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\windows\system32\drivers\partmgr.sys
11:08:31.0746 0x28cc partmgr - ok
11:08:31.0798 0x28cc [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\windows\System32\pcasvc.dll
11:08:31.0809 0x28cc PcaSvc - ok
11:08:31.0889 0x28cc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\windows\system32\drivers\pci.sys
11:08:31.0916 0x28cc pci - ok
11:08:31.0968 0x28cc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\windows\system32\drivers\pciide.sys
11:08:31.0984 0x28cc pciide - ok
11:08:32.0104 0x28cc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\windows\system32\drivers\pcmcia.sys
11:08:32.0140 0x28cc pcmcia - ok
11:08:32.0205 0x28cc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\windows\system32\drivers\pcw.sys
11:08:32.0231 0x28cc pcw - ok
11:08:32.0445 0x28cc [ 7CADB4ABAE72390951886CF259791F5F, 9A0F4113F4E09911A44843F31E8C7047EEA39611AB490A4CF16FAE9D95310076 ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
11:08:32.0564 0x28cc PDFProFiltSrvPP - ok
11:08:32.0676 0x28cc [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\windows\system32\drivers\peauth.sys
11:08:32.0708 0x28cc PEAUTH - ok
11:08:33.0251 0x28cc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\windows\SysWow64\perfhost.exe
11:08:33.0286 0x28cc PerfHost - ok
11:08:33.0366 0x28cc [ 91111CEBBDE8015E822C46120ED9537C, 255B85FEF663C2E0652CECF3F9B67B12B576F924A34415DEE13F0F5137E1E7F7 ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
11:08:33.0394 0x28cc PGEffect - ok
11:08:33.0699 0x28cc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\windows\system32\pla.dll
11:08:33.0795 0x28cc pla - ok
11:08:34.0083 0x28cc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\windows\system32\umpnpmgr.dll
11:08:34.0110 0x28cc PlugPlay - ok
11:08:34.0306 0x28cc PnkBstrA - ok
11:08:34.0469 0x28cc PnkBstrB - ok
11:08:34.0541 0x28cc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
11:08:34.0594 0x28cc PNRPAutoReg - ok
11:08:34.0659 0x28cc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
11:08:34.0669 0x28cc PNRPsvc - ok
11:08:34.0765 0x28cc [ 34A8FAE065249F85A67A3215FF5ECB34, 913297755C1046BA004E79660B7DA5BBE5E92B96AAA83D78AE3FF379371950D5 ] Point64 C:\windows\system32\DRIVERS\point64.sys
11:08:34.0790 0x28cc Point64 - ok
11:08:34.0942 0x28cc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
11:08:34.0972 0x28cc PolicyAgent - ok
11:08:35.0040 0x28cc [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\windows\system32\umpo.dll
11:08:35.0063 0x28cc Power - ok
11:08:35.0187 0x28cc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
11:08:35.0231 0x28cc PptpMiniport - ok
11:08:35.0293 0x28cc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\windows\system32\drivers\processr.sys
11:08:35.0311 0x28cc Processor - ok
11:08:35.0359 0x28cc [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\windows\system32\profsvc.dll
11:08:35.0370 0x28cc ProfSvc - ok
11:08:35.0397 0x28cc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\windows\system32\lsass.exe
11:08:35.0414 0x28cc ProtectedStorage - ok
11:08:35.0506 0x28cc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\windows\system32\DRIVERS\pacer.sys
11:08:35.0527 0x28cc Psched - ok
11:08:35.0885 0x28cc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\windows\system32\drivers\ql2300.sys
11:08:36.0005 0x28cc ql2300 - ok
11:08:36.0048 0x28cc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\windows\system32\drivers\ql40xx.sys
11:08:36.0073 0x28cc ql40xx - ok
11:08:36.0189 0x28cc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\windows\system32\qwave.dll
11:08:36.0237 0x28cc QWAVE - ok
11:08:36.0335 0x28cc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
11:08:36.0355 0x28cc QWAVEdrv - ok
11:08:36.0387 0x28cc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
11:08:36.0406 0x28cc RasAcd - ok
11:08:36.0441 0x28cc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
11:08:36.0453 0x28cc RasAgileVpn - ok
11:08:36.0488 0x28cc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\windows\System32\rasauto.dll
11:08:36.0524 0x28cc RasAuto - ok
11:08:36.0562 0x28cc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
11:08:36.0593 0x28cc Rasl2tp - ok
11:08:36.0785 0x28cc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\windows\System32\rasmans.dll
11:08:36.0806 0x28cc RasMan - ok
11:08:36.0828 0x28cc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
11:08:36.0855 0x28cc RasPppoe - ok
11:08:36.0886 0x28cc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
11:08:36.0913 0x28cc RasSstp - ok
11:08:37.0039 0x28cc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
11:08:37.0064 0x28cc rdbss - ok
11:08:37.0150 0x28cc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\windows\system32\drivers\rdpbus.sys
11:08:37.0179 0x28cc rdpbus - ok
11:08:37.0269 0x28cc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
11:08:37.0294 0x28cc RDPCDD - ok
11:08:37.0358 0x28cc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
11:08:37.0379 0x28cc RDPENCDD - ok
11:08:37.0447 0x28cc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
11:08:37.0492 0x28cc RDPREFMP - ok
11:08:37.0596 0x28cc [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
11:08:37.0617 0x28cc RdpVideoMiniport - ok
11:08:37.0686 0x28cc [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
11:08:37.0719 0x28cc RDPWD - ok
11:08:37.0798 0x28cc [ A115F49BEA840A5F049BC6310F35F776, 3A4D681959A493ECC24C4B0925F5F4FD336F93C317198C210907E466D3F704CA ] rdyboost C:\windows\system32\drivers\rdyboost.sys
11:08:37.0836 0x28cc rdyboost - ok
11:08:37.0943 0x28cc [ A0FF419B61AE47E26ADF3BB15DB4F2FE, 974FF9751D123E212BD3CE8DAE70D4BCCC988A01431A1BD91A532849E492BBD8 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
11:08:37.0956 0x28cc RealNetworks Downloader Resolver Service - ok
11:08:38.0193 0x28cc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\windows\System32\mprdim.dll
11:08:38.0198 0x28cc RemoteAccess - ok
11:08:38.0487 0x28cc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\windows\system32\regsvc.dll
11:08:38.0493 0x28cc RemoteRegistry - ok
11:08:38.0597 0x28cc [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
11:08:38.0634 0x28cc RFCOMM - ok
11:08:38.0748 0x28cc [ 7B04C9843921AB1F695FB395422C5360, C9B02BE0384357FD242613C2A12029B45322AF9A795CD69F33500CA7530899A7 ] RimUsb C:\windows\system32\Drivers\RimUsb_AMD64.sys
11:08:38.0781 0x28cc RimUsb - ok
11:08:38.0867 0x28cc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
11:08:38.0903 0x28cc RpcEptMapper - ok
11:08:38.0953 0x28cc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\windows\system32\locator.exe
11:08:38.0995 0x28cc RpcLocator - ok
11:08:39.0179 0x28cc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\windows\System32\rpcss.dll
11:08:39.0202 0x28cc RpcSs - ok
11:08:39.0316 0x28cc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
11:08:39.0344 0x28cc rspndr - ok
11:08:39.0540 0x28cc [ BB1C3DF1D6CC0972E9C7268A19E62D2E, C362BA0CB2B8CC0CBBD44A76DBC8FD2B44546B027CD794DC64E24D50BEA4FAC6 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
11:08:39.0582 0x28cc RSUSBSTOR - ok
11:08:39.0726 0x28cc [ B708BBAB80C60EE613DEE52A1A0A8538, F12624F865A6DD60602BFE3A8E587E4D2CD93774AC30E42917C52E3B382B0CB5 ] RtkBtFilter C:\windows\system32\DRIVERS\RtkBtfilter.sys
11:08:39.0764 0x28cc RtkBtFilter - ok
11:08:39.0942 0x28cc [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
11:08:39.0987 0x28cc RTL8167 - ok
11:08:40.0442 0x28cc [ 8328468053CEDFD7198BEE178C501989, 618E0C01DAD398BA3F121C1A05EC1A6831A19B02D82BF8031202ABA34F20987C ] RTL8192Ce C:\windows\system32\DRIVERS\rtwlane.sys
11:08:40.0533 0x28cc RTL8192Ce - ok
11:08:40.0619 0x28cc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\windows\system32\lsass.exe
11:08:40.0621 0x28cc SamSs - ok
11:08:40.0673 0x28cc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
11:08:40.0707 0x28cc sbp2port - ok
11:08:40.0801 0x28cc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\windows\System32\SCardSvr.dll
11:08:40.0869 0x28cc SCardSvr - ok
11:08:40.0928 0x28cc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
11:08:40.0949 0x28cc scfilter - ok
11:08:41.0241 0x28cc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\windows\system32\schedsvc.dll
11:08:41.0352 0x28cc Schedule - ok
11:08:41.0458 0x28cc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\windows\System32\certprop.dll
11:08:41.0459 0x28cc SCPolicySvc - ok
11:08:41.0578 0x28cc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\windows\System32\SDRSVC.dll
11:08:41.0619 0x28cc SDRSVC - ok
11:08:41.0759 0x28cc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
11:08:41.0802 0x28cc secdrv - ok
11:08:41.0856 0x28cc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\windows\system32\seclogon.dll
11:08:41.0859 0x28cc seclogon - ok
11:08:41.0902 0x28cc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\windows\system32\sens.dll
11:08:41.0906 0x28cc SENS - ok
11:08:41.0934 0x28cc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\windows\system32\sensrsvc.dll
11:08:41.0950 0x28cc SensrSvc - ok
11:08:42.0122 0x28cc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\windows\system32\drivers\serenum.sys
11:08:42.0124 0x28cc Serenum - ok
11:08:42.0202 0x28cc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\windows\system32\drivers\serial.sys
11:08:42.0222 0x28cc Serial - ok
11:08:42.0302 0x28cc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\windows\system32\drivers\sermouse.sys
11:08:42.0334 0x28cc sermouse - ok
11:08:42.0382 0x28cc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\windows\system32\sessenv.dll
11:08:42.0415 0x28cc SessionEnv - ok
11:08:42.0491 0x28cc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\windows\system32\drivers\sffdisk.sys
11:08:42.0527 0x28cc sffdisk - ok
11:08:42.0536 0x28cc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
11:08:42.0538 0x28cc sffp_mmc - ok
11:08:42.0545 0x28cc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
11:08:42.0548 0x28cc sffp_sd - ok
11:08:42.0581 0x28cc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
11:08:42.0609 0x28cc sfloppy - ok
11:08:42.0838 0x28cc [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
11:08:42.0915 0x28cc Sftfs - ok
11:08:43.0181 0x28cc [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
11:08:43.0249 0x28cc sftlist - ok
11:08:43.0347 0x28cc [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
11:08:43.0373 0x28cc Sftplay - ok
11:08:43.0424 0x28cc [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
11:08:43.0447 0x28cc Sftredir - ok
11:08:43.0519 0x28cc [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
11:08:43.0536 0x28cc Sftvol - ok
11:08:43.0629 0x28cc [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
11:08:43.0647 0x28cc sftvsa - ok
11:08:43.0968 0x28cc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\windows\System32\ipnathlp.dll
11:08:44.0014 0x28cc SharedAccess - ok
11:08:44.0273 0x28cc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
11:08:44.0297 0x28cc ShellHWDetection - ok
11:08:44.0394 0x28cc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
11:08:44.0431 0x28cc SiSRaid2 - ok
11:08:44.0520 0x28cc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
11:08:44.0546 0x28cc SiSRaid4 - ok
11:08:45.0586 0x28cc [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:08:45.0620 0x28cc SkypeUpdate - ok
11:08:45.0899 0x28cc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\windows\system32\DRIVERS\smb.sys
11:08:45.0905 0x28cc Smb - ok
11:08:45.0995 0x28cc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\windows\System32\snmptrap.exe
11:08:45.0999 0x28cc SNMPTRAP - ok
11:08:46.0110 0x28cc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\windows\system32\drivers\spldr.sys
11:08:46.0114 0x28cc spldr - ok
11:08:46.0373 0x28cc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\windows\System32\spoolsv.exe
11:08:46.0405 0x28cc Spooler - ok
11:08:47.0499 0x28cc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\windows\system32\sppsvc.exe
11:08:47.0684 0x28cc sppsvc - ok
11:08:47.0781 0x28cc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\windows\system32\sppuinotify.dll
11:08:47.0819 0x28cc sppuinotify - ok
11:08:48.0432 0x28cc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\windows\system32\DRIVERS\srv.sys
11:08:48.0442 0x28cc srv - ok
11:08:48.0545 0x28cc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
11:08:48.0572 0x28cc srv2 - ok
11:08:48.0678 0x28cc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
11:08:48.0703 0x28cc srvnet - ok
11:08:48.0849 0x28cc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
11:08:48.0860 0x28cc SSDPSRV - ok
11:08:48.0978 0x28cc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\windows\system32\sstpsvc.dll
11:08:48.0995 0x28cc SstpSvc - ok
11:08:49.0118 0x28cc [ 2F3B5A3567FFB343D8867C3D34C687F1, D01971412506746B2EA1CBB0ACF9472889ABBC23318C1332BEC9C8256011183E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:08:49.0185 0x28cc Steam Client Service - ok
11:08:49.0217 0x28cc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\windows\system32\drivers\stexstor.sys
11:08:49.0244 0x28cc stexstor - ok
11:08:49.0328 0x28cc [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
11:08:49.0348 0x28cc StillCam - ok
11:08:49.0535 0x28cc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\windows\System32\wiaservc.dll
11:08:49.0590 0x28cc stisvc - ok
11:08:49.0643 0x28cc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\windows\system32\DRIVERS\swenum.sys
11:08:49.0688 0x28cc swenum - ok
11:08:49.0803 0x28cc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\windows\System32\swprv.dll
11:08:49.0818 0x28cc swprv - ok
11:08:50.0072 0x28cc [ B868E292FBA5B62B9FC71572A5FAEF5C, 423AAFBEC27310520DCC4EACF0ADCCCBF5D7339412930F4B42FB5A48FECEE542 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
11:08:50.0090 0x28cc SynTP - ok
11:08:50.0555 0x28cc [ 7BE4CDEA6BC7832BFE3112A350D8B9EA, B51BD5A02D20C1CD8F7B4326114C2FA57ABD8D75133D6CE906CB65E97AAB7F70 ] SysMain C:\windows\system32\sysmain.dll
11:08:50.0723 0x28cc SysMain - ok
11:08:50.0809 0x28cc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
11:08:50.0835 0x28cc TabletInputService - ok
11:08:50.0983 0x28cc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\windows\System32\tapisrv.dll
11:08:51.0010 0x28cc TapiSrv - ok
11:08:51.0160 0x28cc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\windows\System32\tbssvc.dll
11:08:51.0215 0x28cc TBS - ok
11:08:51.0755 0x28cc [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\windows\system32\drivers\tcpip.sys
11:08:51.0836 0x28cc Tcpip - ok
11:08:52.0355 0x28cc [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
11:08:52.0429 0x28cc TCPIP6 - ok
11:08:52.0517 0x28cc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
11:08:52.0538 0x28cc tcpipreg - ok
11:08:52.0778 0x28cc [ FD542B661BD22FA69CA789AD0AC58C29, 75FFAF1834B1E22DF37608ED451F161052FF1FE3C681B4E20A68DCA92CC7FD8C ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
11:08:52.0796 0x28cc tdcmdpst - ok
11:08:52.0955 0x28cc TDEIO - ok
11:08:53.0026 0x28cc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
11:08:53.0047 0x28cc TDPIPE - ok
11:08:53.0055 0x28cc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
11:08:53.0072 0x28cc TDTCP - ok
11:08:53.0203 0x28cc [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\windows\system32\DRIVERS\tdx.sys
11:08:53.0233 0x28cc tdx - ok
11:08:54.0196 0x28cc [ 9F3E7CABE86BBDECA009DE291DB6D9E2, C85176BA98382C82178D682C5F91B5590201BF8C7335DF7ABCAB469367701106 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
11:08:54.0443 0x28cc TeamViewer8 - ok
11:08:54.0586 0x28cc [ 1B709733A04DCC41A63F9CD1F76A4EBE, 3973F7BA3CC5395040F68B60950A836D729B487BF7F732D31915064F7DA4C838 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
11:08:54.0610 0x28cc TemproMonitoringService - ok
11:08:54.0635 0x28cc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\windows\system32\DRIVERS\termdd.sys
11:08:54.0666 0x28cc TermDD - ok
11:08:54.0811 0x28cc [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\windows\System32\termsrv.dll
11:08:54.0941 0x28cc TermService - ok
11:08:54.0991 0x28cc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\windows\system32\themeservice.dll
11:08:55.0009 0x28cc Themes - ok
11:08:55.0054 0x28cc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\windows\system32\mmcss.dll
11:08:55.0078 0x28cc THREADORDER - ok
11:08:55.0133 0x28cc [ 519CB7D7F697F4BA47DE05845C20F158, F4B40014CB5047463FC40C28D9CFF0DA5E8592A2A9ED8E938A0A9D43DBD0A516 ] TlntSvr C:\windows\System32\tlntsvr.exe
11:08:55.0159 0x28cc TlntSvr - ok
11:08:55.0347 0x28cc [ 71C321649B28638EE80A2EEB164C1DC8, D75D296B506DCC38A4DED82C71141388AEB60B065785DCC5BC2F4B3B77ACEDC7 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
11:08:55.0370 0x28cc TMachInfo - ok
11:08:55.0471 0x28cc [ 8E2C799D3476EAC32C3BA0DF7CE6AF19, CFE8A69E3F2A42C3BA2B38EC9233076D0AD32C441500E6407219F2E866905D9B ] TODDSrv C:\windows\system32\TODDSrv.exe
11:08:55.0497 0x28cc TODDSrv - ok
11:08:55.0814 0x28cc [ 4AE80C5F7772C4FB2A762F70AD4A111E, C86F4878D497BD998639A3A01C26F46E5A31F4BBC35FA4B7E9BF66F7799D2511 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
11:08:55.0914 0x28cc TosCoSrv - ok
11:08:56.0096 0x28cc [ A22DEB5EC05FEBFDCA1D3FF70FA1FF46, 3D3F68DC994C99436E31B72AEE15F4F46437AC3F2C2CD1D477C738E16397CB50 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
11:08:56.0211 0x28cc TOSHIBA Bluetooth Service - ok
11:08:56.0382 0x28cc [ 6E2330FB032ED3EBEFC1349AD7081A98, 14009203935221FED275288E2B9801FBA4401854C2566E4F5B4003EB28DE97E6 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
11:08:56.0402 0x28cc TOSHIBA eco Utility Service - ok
11:08:56.0539 0x28cc [ 9338C2DEB14CA2804BCB3276CB7EB4FD, 4204B49D3BE2777E10A442C45A8677E559AF9DF03CB96A9C2FDE5D21A0538623 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
11:08:56.0593 0x28cc TOSHIBA HDD SSD Alert Service - ok
11:08:56.0689 0x28cc [ B9FA0498F6CC596FFA5CF47A04CD1785, E5AF5A1E31416C7917321082A2A34EDA557E6928A74D6B17AB51ED5549A4B6C8 ] tosrfbd C:\windows\system32\DRIVERS\tosrfbd.sys
11:08:56.0714 0x28cc tosrfbd - ok
11:08:56.0722 0x28cc Tosrfcom - ok
11:08:56.0828 0x28cc [ F5E3AC4CBCD154EE80849B21887FD0B0, 7D68AF88F1B01BCA6456FBAEB91580419A49A77D31EFC0BA6A1C50301899BA03 ] tosrfec C:\windows\system32\DRIVERS\tosrfec.sys
11:08:56.0851 0x28cc tosrfec - ok
11:08:56.0905 0x28cc [ 7D2467D3EB9BAA4B69AE4A28C83DE57A, 38D2C64559EF4598025474643EC0D506F0107822AC6205E8C4D26B76EB28177D ] Tosrfhid C:\windows\system32\DRIVERS\Tosrfhid.sys
11:08:56.0934 0x28cc Tosrfhid - ok
11:08:56.0982 0x28cc [ AF8A0D2E2A41043A77CA77CCBDB8D9C2, B215C6357E30A0E669FD0D4B9BB9D84B1D30B2177B6ED626B3C70D96C8FF4497 ] Tosrfusb C:\windows\system32\DRIVERS\tosrfusb.sys
11:08:57.0013 0x28cc Tosrfusb - ok
11:08:57.0174 0x28cc [ 09FF7B0B1B5C3D225495CB6F5A9B39F8, 0D2CC72B7E02B92C9A1D6B76300B75A39427046903326642B9D511A51A795027 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
11:08:57.0214 0x28cc tos_sps64 - ok
11:08:57.0509 0x28cc [ 36CDD894395BEC46EFB14F49D77D3D82, A285DBF83605756B52E09548B78C67C00A814E6FDF8BA761701FA520EF9D94BF ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
11:08:57.0560 0x28cc TPCHSrv - ok
11:08:57.0660 0x28cc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\windows\System32\trkwks.dll
11:08:57.0680 0x28cc TrkWks - ok
11:08:57.0780 0x28cc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
11:08:57.0795 0x28cc TrustedInstaller - ok
11:08:57.0871 0x28cc [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
11:08:57.0896 0x28cc tssecsrv - ok
11:08:57.0940 0x28cc [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
11:08:57.0966 0x28cc TsUsbFlt - ok
11:08:58.0013 0x28cc [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
11:08:58.0034 0x28cc TsUsbGD - ok
11:08:58.0180 0x28cc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
11:08:58.0204 0x28cc tunnel - ok
11:08:58.0301 0x28cc [ 550B567F9364D8F7684C3FB3EA665A72, A214BBBBAB9F0DD525FA5A818CEB8E9294B4A96676317255D7ACF6049049C933 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
11:08:58.0343 0x28cc TVALZ - ok
11:08:58.0484 0x28cc [ 9C7191F4B2E49BFF47A6C1144B5923FA, DF4E663499946F4E68B7528CA399574D1EB69797FF81F681943B84F3E5E6A40E ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
11:08:58.0515 0x28cc TVALZFL - ok
11:08:58.0547 0x28cc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\windows\system32\drivers\uagp35.sys
11:08:58.0561 0x28cc uagp35 - ok
11:08:58.0690 0x28cc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\windows\system32\DRIVERS\udfs.sys
11:08:58.0746 0x28cc udfs - ok
11:08:58.0820 0x28cc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\windows\system32\UI0Detect.exe
11:08:58.0850 0x28cc UI0Detect - ok
11:08:58.0889 0x28cc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
11:08:58.0913 0x28cc uliagpkx - ok
11:08:58.0991 0x28cc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\windows\system32\DRIVERS\umbus.sys
11:08:59.0015 0x28cc umbus - ok
11:08:59.0045 0x28cc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\windows\system32\drivers\umpass.sys
11:08:59.0071 0x28cc UmPass - ok
11:08:59.0310 0x28cc [ 3C5405EF78576E8E4D791EB18F6856A8, 18FD6A5C0ACD045B324F46C7C596D537D52F43B7F2896F0D54CEBEFF4886CAEC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:08:59.0434 0x28cc UNS - ok
11:08:59.0559 0x28cc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\windows\System32\upnphost.dll
11:08:59.0586 0x28cc upnphost - ok
11:08:59.0791 0x28cc [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
11:08:59.0803 0x28cc USBAAPL64 - ok
11:09:00.0001 0x28cc [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\windows\system32\drivers\usbaudio.sys
11:09:00.0034 0x28cc usbaudio - ok
11:09:00.0211 0x28cc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\windows\system32\drivers\usbccgp.sys
11:09:00.0246 0x28cc usbccgp - ok
11:09:00.0303 0x28cc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\windows\system32\drivers\usbcir.sys
11:09:00.0326 0x28cc usbcir - ok
11:09:00.0458 0x28cc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\windows\system32\drivers\usbehci.sys
11:09:00.0474 0x28cc usbehci - ok
11:09:00.0579 0x28cc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
11:09:00.0613 0x28cc usbhub - ok
11:09:00.0686 0x28cc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\windows\system32\drivers\usbohci.sys
11:09:00.0703 0x28cc usbohci - ok
11:09:00.0745 0x28cc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\windows\system32\drivers\usbprint.sys
11:09:00.0771 0x28cc usbprint - ok
11:09:00.0935 0x28cc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
11:09:00.0967 0x28cc USBSTOR - ok
11:09:01.0047 0x28cc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
11:09:01.0052 0x28cc usbuhci - ok
11:09:01.0100 0x28cc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
11:09:01.0116 0x28cc usbvideo - ok
11:09:01.0165 0x28cc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\windows\System32\uxsms.dll
11:09:01.0181 0x28cc UxSms - ok
11:09:01.0220 0x28cc [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\windows\system32\lsass.exe
11:09:01.0224 0x28cc VaultSvc - ok
11:09:01.0347 0x28cc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
11:09:01.0380 0x28cc vdrvroot - ok
11:09:01.0561 0x28cc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\windows\System32\vds.exe
11:09:01.0583 0x28cc vds - ok
11:09:01.0622 0x28cc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
11:09:01.0652 0x28cc vga - ok
11:09:01.0712 0x28cc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\windows\System32\drivers\vga.sys
11:09:01.0743 0x28cc VgaSave - ok
11:09:01.0796 0x28cc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\windows\system32\drivers\vhdmp.sys
11:09:01.0830 0x28cc vhdmp - ok
11:09:01.0947 0x28cc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\windows\system32\drivers\viaide.sys
11:09:01.0971 0x28cc viaide - ok
11:09:02.0028 0x28cc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\windows\system32\drivers\volmgr.sys
11:09:02.0055 0x28cc volmgr - ok
11:09:02.0244 0x28cc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\windows\system32\drivers\volmgrx.sys
11:09:02.0297 0x28cc volmgrx - ok
11:09:02.0379 0x28cc [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap C:\windows\system32\drivers\volsnap.sys
11:09:02.0399 0x28cc volsnap - ok
11:09:02.0520 0x28cc [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus C:\windows\system32\DRIVERS\vpchbus.sys
11:09:02.0552 0x28cc vpcbus - ok
11:09:02.0671 0x28cc [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr C:\windows\system32\DRIVERS\vpcnfltr.sys
11:09:02.0732 0x28cc vpcnfltr - ok
11:09:02.0791 0x28cc [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb C:\windows\system32\DRIVERS\vpcusb.sys
11:09:02.0802 0x28cc vpcusb - ok
11:09:02.0916 0x28cc [ 207B6539799CC1C112661A9B620DD233, 6B915CC7F77C867516D94865D7BF2E5C815402EF0A4488C3EB2FEF7CFA6C98F6 ] vpcvmm C:\windows\system32\drivers\vpcvmm.sys
11:09:02.0945 0x28cc vpcvmm - ok
11:09:03.0030 0x28cc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\windows\system32\drivers\vsmraid.sys
11:09:03.0047 0x28cc vsmraid - ok
11:09:03.0330 0x28cc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\windows\system32\vssvc.exe
11:09:03.0499 0x28cc VSS - ok
11:09:03.0578 0x28cc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
11:09:03.0605 0x28cc vwifibus - ok
11:09:03.0702 0x28cc [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
11:09:03.0732 0x28cc vwififlt - ok
11:09:03.0837 0x28cc [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
11:09:03.0860 0x28cc vwifimp - ok
11:09:03.0969 0x28cc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\windows\system32\w32time.dll
11:09:04.0001 0x28cc W32Time - ok
11:09:04.0048 0x28cc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\windows\system32\drivers\wacompen.sys
11:09:04.0079 0x28cc WacomPen - ok
11:09:04.0193 0x28cc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
11:09:04.0237 0x28cc WANARP - ok
11:09:04.0258 0x28cc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
11:09:04.0264 0x28cc Wanarpv6 - ok
11:09:04.0518 0x28cc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
11:09:04.0580 0x28cc WatAdminSvc - ok
11:09:05.0258 0x28cc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\windows\system32\wbengine.exe
11:09:05.0356 0x28cc wbengine - ok
11:09:05.0486 0x28cc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\windows\System32\wbiosrvc.dll
11:09:05.0545 0x28cc WbioSrvc - ok
11:09:05.0605 0x28cc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\windows\System32\wcncsvc.dll
11:09:05.0623 0x28cc wcncsvc - ok
11:09:05.0689 0x28cc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
11:09:05.0709 0x28cc WcsPlugInService - ok
11:09:05.0825 0x28cc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\windows\system32\drivers\wd.sys
11:09:05.0860 0x28cc Wd - ok
11:09:06.0050 0x28cc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
11:09:06.0095 0x28cc Wdf01000 - ok
11:09:06.0211 0x28cc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\windows\system32\wdi.dll
11:09:06.0217 0x28cc WdiServiceHost - ok
11:09:06.0225 0x28cc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\windows\system32\wdi.dll
11:09:06.0230 0x28cc WdiSystemHost - ok
11:09:06.0346 0x28cc [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\windows\System32\webclnt.dll
11:09:06.0373 0x28cc WebClient - ok
11:09:06.0422 0x28cc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\windows\system32\wecsvc.dll
11:09:06.0454 0x28cc Wecsvc - ok
11:09:06.0481 0x28cc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\windows\System32\wercplsupport.dll
11:09:06.0496 0x28cc wercplsupport - ok
11:09:06.0538 0x28cc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\windows\System32\WerSvc.dll
11:09:06.0553 0x28cc WerSvc - ok
11:09:06.0602 0x28cc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
11:09:06.0630 0x28cc WfpLwf - ok
11:09:06.0769 0x28cc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\windows\system32\drivers\wimmount.sys
11:09:06.0797 0x28cc WIMMount - ok
11:09:06.0856 0x28cc WinDefend - ok
11:09:06.0971 0x28cc WinHttpAutoProxySvc - ok
11:09:07.0224 0x28cc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
11:09:07.0237 0x28cc Winmgmt - ok
11:09:07.0867 0x28cc [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\windows\system32\WsmSvc.dll
11:09:08.0028 0x28cc WinRM - ok
11:09:08.0234 0x28cc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
11:09:08.0261 0x28cc WinUsb - ok
11:09:08.0574 0x28cc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\windows\System32\wlansvc.dll
11:09:08.0679 0x28cc Wlansvc - ok
11:09:09.0252 0x28cc [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:09:09.0343 0x28cc wlidsvc - ok
11:09:09.0394 0x28cc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
11:09:09.0426 0x28cc WmiAcpi - ok
11:09:09.0534 0x28cc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
11:09:09.0558 0x28cc wmiApSrv - ok
11:09:09.0645 0x28cc WMPNetworkSvc - ok
11:09:09.0738 0x28cc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\windows\System32\wpcsvc.dll
11:09:09.0760 0x28cc WPCSvc - ok
11:09:09.0942 0x28cc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
11:09:09.0951 0x28cc WPDBusEnum - ok
11:09:10.0037 0x28cc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
11:09:10.0040 0x28cc ws2ifsl - ok
11:09:10.0176 0x28cc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\windows\system32\wscsvc.dll
11:09:10.0203 0x28cc wscsvc - ok
11:09:10.0220 0x28cc WSearch - ok
11:09:11.0556 0x28cc [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\windows\system32\wuaueng.dll
11:09:11.0715 0x28cc wuauserv - ok
11:09:11.0868 0x28cc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
11:09:11.0873 0x28cc WudfPf - ok
11:09:12.0241 0x28cc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
11:09:12.0250 0x28cc WUDFRd - ok
11:09:12.0302 0x28cc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll
11:09:12.0337 0x28cc wudfsvc - ok
11:09:12.0683 0x28cc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\windows\System32\wwansvc.dll
11:09:12.0748 0x28cc WwanSvc - ok
11:09:12.0765 0x28cc ================ Scan global ===============================
11:09:12.0872 0x28cc [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
11:09:13.0051 0x28cc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
11:09:13.0099 0x28cc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
11:09:13.0215 0x28cc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
11:09:13.0333 0x28cc [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
11:09:13.0359 0x28cc [ Global ] - ok
11:09:13.0359 0x28cc ================ Scan MBR ==================================
11:09:13.0472 0x28cc [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
11:09:16.0262 0x28cc \Device\Harddisk0\DR0 - ok
11:09:16.0263 0x28cc ================ Scan VBR ==================================
11:09:16.0303 0x28cc [ 99DF709393706E1F739D22F0BCCB9B59 ] \Device\Harddisk0\DR0\Partition1
11:09:16.0337 0x28cc \Device\Harddisk0\DR0\Partition1 - ok
11:09:16.0337 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:17.0337 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:18.0337 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:19.0338 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:20.0339 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:21.0339 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:22.0339 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:23.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:24.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:25.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:26.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:27.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:28.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:29.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:30.0341 0x28cc Waiting for KSN requests completion. In queue: 216
11:09:31.0674 0x28cc AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 8.0.1489.300 ), 0x41000 ( enabled : updated )
11:09:31.0894 0x28cc Win FW state via NFP2: enabled
11:09:34.0649 0x28cc ============================================================
11:09:34.0649 0x28cc Scan finished
11:09:34.0649 0x28cc ============================================================
11:09:34.0659 0x1588 Detected object count: 0
11:09:34.0659 0x1588 Actual detected object count: 0
11:12:05.0747 0x0654 ============================================================
11:12:05.0747 0x0654 Scan started
11:12:05.0747 0x0654 Mode: Manual; TDLFS;
11:12:05.0747 0x0654 ============================================================
11:12:05.0747 0x0654 KSN ping started
11:12:19.0455 0x0654 KSN ping finished: true
11:12:20.0074 0x0654 ================ Scan system memory ========================
11:12:20.0074 0x0654 System memory - ok
11:12:20.0074 0x0654 ================ Scan services =============================
11:12:20.0521 0x0654 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
11:12:20.0525 0x0654 1394ohci - ok
11:12:20.0579 0x0654 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\windows\system32\drivers\ACPI.sys
11:12:20.0594 0x0654 ACPI - ok
11:12:20.0660 0x0654 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
11:12:20.0661 0x0654 AcpiPmi - ok
11:12:20.0860 0x0654 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:12:20.0863 0x0654 AdobeARMservice - ok
11:12:21.0041 0x0654 [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:12:21.0050 0x0654 AdobeFlashPlayerUpdateSvc - ok
11:12:21.0095 0x0654 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
11:12:21.0109 0x0654 adp94xx - ok
11:12:21.0189 0x0654 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\drivers\adpahci.sys
11:12:21.0203 0x0654 adpahci - ok
11:12:21.0245 0x0654 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\drivers\adpu320.sys
11:12:21.0250 0x0654 adpu320 - ok
11:12:21.0280 0x0654 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
11:12:21.0282 0x0654 AeLookupSvc - ok
11:12:21.0379 0x0654 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\windows\system32\drivers\afd.sys
11:12:21.0390 0x0654 AFD - ok
11:12:21.0418 0x0654 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\windows\system32\drivers\agp440.sys
11:12:21.0419 0x0654 agp440 - ok
11:12:21.0453 0x0654 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe
11:12:21.0454 0x0654 ALG - ok
11:12:21.0491 0x0654 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\drivers\aliide.sys
11:12:21.0491 0x0654 aliide - ok
11:12:21.0507 0x0654 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\drivers\amdide.sys
11:12:21.0507 0x0654 amdide - ok
11:12:21.0564 0x0654 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
11:12:21.0566 0x0654 AmdK8 - ok
11:12:21.0569 0x0654 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
11:12:21.0570 0x0654 AmdPPM - ok
11:12:21.0574 0x0654 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\windows\system32\drivers\amdsata.sys
11:12:21.0576 0x0654 amdsata - ok
11:12:21.0583 0x0654 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
11:12:21.0586 0x0654 amdsbs - ok
11:12:21.0601 0x0654 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\windows\system32\drivers\amdxata.sys
11:12:21.0601 0x0654 amdxata - ok
11:12:21.0604 0x0654 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\windows\system32\drivers\appid.sys
11:12:21.0606 0x0654 AppID - ok
11:12:21.0624 0x0654 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\windows\System32\appidsvc.dll
11:12:21.0626 0x0654 AppIDSvc - ok
11:12:21.0645 0x0654 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\windows\System32\appinfo.dll
11:12:21.0646 0x0654 Appinfo - ok
11:12:21.0740 0x0654 [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:12:21.0742 0x0654 Apple Mobile Device - ok
11:12:21.0833 0x0654 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\drivers\arc.sys
11:12:21.0834 0x0654 arc - ok
11:12:21.0867 0x0654 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\drivers\arcsas.sys
11:12:21.0870 0x0654 arcsas - ok
11:12:22.0169 0x0654 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:12:22.0172 0x0654 aspnet_state - ok
11:12:22.0216 0x0654 [ 0BAEFD3F648C6E7AB52990DD9565E4E2, 5B33A0F08F9A5F78280B854694FC764A2EDA28E2F26D26B57417895E4008583D ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
11:12:22.0218 0x0654 aswFsBlk - ok
11:12:22.0263 0x0654 [ FA562F34ED6633C66170B09182B4C049, 3FD89D5CF9F95D41085E7BCAE834F8CA83FCE405F2246161DC62549D36BF5795 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
11:12:22.0266 0x0654 aswMonFlt - ok
11:12:22.0302 0x0654 [ 64E2BAB4096C13D2342BC4661C967E07, 967172302AB0EF6C4CE42F6C079916FD22F355829C9E3A17CF22B265FF2810BE ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
11:12:22.0305 0x0654 aswRdr - ok
11:12:22.0343 0x0654 [ 5573AA70993A2BB81525B1C704B88763, 895909C0BEEDF93BE532F1C989628C68A798703C614D0C458E2D0BB70B7C5E18 ] aswRvrt C:\windows\system32\drivers\aswRvrt.sys
11:12:22.0346 0x0654 aswRvrt - ok
11:12:22.0411 0x0654 [ 8C0800CDB501CFC1164B286A0478DC10, 5B68140A7B5B6F4D02A15353996188A443B6FAE2A038E89E299F0E90979796F2 ] aswSnx C:\windows\system32\drivers\aswSnx.sys
11:12:22.0443 0x0654 aswSnx - ok
11:12:22.0510 0x0654 [ 3815DB16CDA62190F5C0A65118F3D714, 40FA13AC64A8B27B5D83D38F950075F34BA950C05BD0D864C72A99C615AB477D ] aswSP C:\windows\system32\drivers\aswSP.sys
11:12:22.0524 0x0654 aswSP - ok
11:12:22.0553 0x0654 [ 29DD8E458A84171202AA4979364C30C0, AA7AFEB487F109D65A047FE77A4A1F75006A9DBE662DACCEB6BF76987D112766 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
11:12:22.0556 0x0654 aswTdi - ok
11:12:22.0577 0x0654 [ 22F521108881DC59837F6FC614E0568F, 99EC002CC9D6C09AAF0D8200E6B157CC703FEBBF38C1B2D11F2464BAC46F53CF ] aswVmm C:\windows\system32\drivers\aswVmm.sys
11:12:22.0584 0x0654 aswVmm - ok
11:12:22.0634 0x0654 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
11:12:22.0636 0x0654 AsyncMac - ok
11:12:22.0685 0x0654 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\drivers\atapi.sys
11:12:22.0687 0x0654 atapi - ok
11:12:22.0739 0x0654 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
11:12:22.0756 0x0654 AudioEndpointBuilder - ok
11:12:22.0777 0x0654 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\windows\System32\Audiosrv.dll
11:12:22.0791 0x0654 AudioSrv - ok
11:12:22.0873 0x0654 [ 28D6701C710AD7BA3CB95E75F8F1A9AA, 66EE8BC56E5043B5A84E1BA37D591EAD132BD949F03CA8092FDCC3E196AB39D0 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:12:22.0876 0x0654 avast! Antivirus - ok
11:12:22.0915 0x0654 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\windows\System32\AxInstSV.dll
11:12:22.0920 0x0654 AxInstSV - ok
11:12:22.0972 0x0654 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
11:12:22.0986 0x0654 b06bdrv - ok
11:12:23.0006 0x0654 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
11:12:23.0019 0x0654 b57nd60a - ok
11:12:23.0048 0x0654 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll
11:12:23.0050 0x0654 BDESVC - ok
11:12:23.0082 0x0654 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys
11:12:23.0085 0x0654 Beep - ok
11:12:23.0122 0x0654 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\windows\System32\bfe.dll
11:12:23.0140 0x0654 BFE - ok
11:12:23.0202 0x0654 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\windows\System32\qmgr.dll
11:12:23.0232 0x0654 BITS - ok
11:12:23.0261 0x0654 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
11:12:23.0264 0x0654 blbdrive - ok
11:12:23.0309 0x0654 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:12:23.0327 0x0654 Bonjour Service - ok
11:12:23.0355 0x0654 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\windows\system32\DRIVERS\bowser.sys
11:12:23.0359 0x0654 bowser - ok
11:12:23.0380 0x0654 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
11:12:23.0382 0x0654 BrFiltLo - ok
11:12:23.0403 0x0654 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
11:12:23.0405 0x0654 BrFiltUp - ok
11:12:23.0412 0x0654 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
11:12:23.0416 0x0654 BridgeMP - ok
11:12:23.0442 0x0654 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\windows\System32\browser.dll
11:12:23.0448 0x0654 Browser - ok
11:12:23.0483 0x0654 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys
11:12:23.0490 0x0654 Brserid - ok
11:12:23.0493 0x0654 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
11:12:23.0495 0x0654 BrSerWdm - ok
11:12:23.0498 0x0654 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
11:12:23.0499 0x0654 BrUsbMdm - ok
11:12:23.0503 0x0654 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
11:12:23.0504 0x0654 BrUsbSer - ok
11:12:23.0538 0x0654 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
11:12:23.0539 0x0654 BthEnum - ok
11:12:23.0562 0x0654 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
11:12:23.0570 0x0654 BTHMODEM - ok
11:12:23.0615 0x0654 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
11:12:23.0618 0x0654 BthPan - ok
11:12:23.0656 0x0654 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
11:12:23.0666 0x0654 BTHPORT - ok
11:12:23.0711 0x0654 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll
11:12:23.0716 0x0654 bthserv - ok
11:12:23.0735 0x0654 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
11:12:23.0739 0x0654 BTHUSB - ok
11:12:23.0902 0x0654 [ BE531939BB6D153DB63DBBFBD398A713, CB63FD4051198A89EDB3CF45199F99F5816A672FA9374E166ED7A5D17ED47468 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
11:12:23.0943 0x0654 c2cautoupdatesvc - ok
11:12:24.0086 0x0654 [ 33E9F08F675EF94633C8EF8A7C4EADF3, E1556CF27F7FB3B03EE63F3464F5EE92E7B09E67C5D8AA4A9346FEEBD716A152 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
11:12:24.0116 0x0654 c2cpnrsvc - ok
11:12:24.0119 0x0654 catchme - ok
11:12:24.0163 0x0654 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
11:12:24.0168 0x0654 cdfs - ok
11:12:24.0188 0x0654 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
11:12:24.0193 0x0654 cdrom - ok
11:12:24.0257 0x0654 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\windows\System32\certprop.dll
11:12:24.0264 0x0654 CertPropSvc - ok
11:12:24.0287 0x0654 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\drivers\circlass.sys
11:12:24.0290 0x0654 circlass - ok
11:12:24.0321 0x0654 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\windows\system32\CLFS.sys
11:12:24.0333 0x0654 CLFS - ok
11:12:24.0459 0x0654 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:12:24.0463 0x0654 clr_optimization_v2.0.50727_32 - ok
11:12:24.0536 0x0654 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:12:24.0541 0x0654 clr_optimization_v2.0.50727_64 - ok
11:12:24.0670 0x0654 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:12:24.0676 0x0654 clr_optimization_v4.0.30319_32 - ok
11:12:24.0707 0x0654 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:12:24.0713 0x0654 clr_optimization_v4.0.30319_64 - ok
11:12:24.0761 0x0654 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
11:12:24.0763 0x0654 CmBatt - ok
11:12:24.0835 0x0654 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\drivers\cmdide.sys
11:12:24.0836 0x0654 cmdide - ok
11:12:24.0907 0x0654 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\windows\system32\Drivers\cng.sys
11:12:24.0923 0x0654 CNG - ok
11:12:24.0944 0x0654 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\drivers\compbatt.sys
11:12:24.0945 0x0654 Compbatt - ok
11:12:24.0951 0x0654 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
11:12:24.0953 0x0654 CompositeBus - ok
11:12:24.0957 0x0654 COMSysApp - ok
11:12:25.0057 0x0654 [ 723E3512D6D1FF75E5398981B38FCEF7, 4ED157A4B0C96BA63D4CD8544553828F322FAFF0EC0FF7515C26CE58C9227067 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
11:12:25.0068 0x0654 cphs - ok
11:12:25.0090 0x0654 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
11:12:25.0092 0x0654 crcdisk - ok
11:12:25.0132 0x0654 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\windows\system32\cryptsvc.dll
11:12:25.0139 0x0654 CryptSvc - ok
11:12:25.0275 0x0654 [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
11:12:25.0305 0x0654 cvhsvc - ok
11:12:25.0346 0x0654 [ BA25D4B9B067248F7CAC416E855D706B, EB00FEC005863284D25AC708CEF65D945A1599801A3FDE4B992C1AD4593E2036 ] dc3d C:\windows\system32\DRIVERS\dc3d.sys
11:12:25.0350 0x0654 dc3d - ok
11:12:25.0409 0x0654 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\windows\system32\rpcss.dll
11:12:25.0435 0x0654 DcomLaunch - ok
11:12:25.0474 0x0654 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll
11:12:25.0489 0x0654 defragsvc - ok
11:12:25.0600 0x0654 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\windows\system32\Drivers\dfsc.sys
11:12:25.0605 0x0654 DfsC - ok
11:12:25.0636 0x0654 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\windows\system32\dhcpcore.dll
11:12:25.0652 0x0654 Dhcp - ok
11:12:25.0658 0x0654 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys
11:12:25.0661 0x0654 discache - ok
11:12:25.0682 0x0654 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\windows\system32\drivers\disk.sys
11:12:25.0686 0x0654 Disk - ok
11:12:25.0711 0x0654 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\windows\System32\dnsrslvr.dll
11:12:25.0721 0x0654 Dnscache - ok
11:12:25.0761 0x0654 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\windows\System32\dot3svc.dll
11:12:25.0775 0x0654 dot3svc - ok
11:12:25.0801 0x0654 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\windows\system32\dps.dll
11:12:25.0809 0x0654 DPS - ok
11:12:25.0878 0x0654 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
11:12:25.0879 0x0654 drmkaud - ok
11:12:26.0019 0x0654 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
11:12:26.0047 0x0654 DXGKrnl - ok
11:12:26.0082 0x0654 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll
11:12:26.0089 0x0654 EapHost - ok
11:12:26.0238 0x0654 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\drivers\evbda.sys
11:12:26.0324 0x0654 ebdrv - ok
11:12:26.0362 0x0654 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\windows\System32\lsass.exe
11:12:26.0366 0x0654 EFS - ok
11:12:26.0453 0x0654 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\windows\ehome\ehRecvr.exe
11:12:26.0480 0x0654 ehRecvr - ok
11:12:26.0493 0x0654 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe
11:12:26.0500 0x0654 ehSched - ok
11:12:26.0554 0x0654 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\drivers\elxstor.sys
11:12:26.0572 0x0654 elxstor - ok
11:12:26.0577 0x0654 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\windows\system32\drivers\errdev.sys
11:12:26.0578 0x0654 ErrDev - ok
11:12:26.0622 0x0654 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll
11:12:26.0639 0x0654 EventSystem - ok
11:12:26.0661 0x0654 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\windows\system32\drivers\exfat.sys
11:12:26.0667 0x0654 exfat - ok
11:12:26.0699 0x0654 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\windows\system32\drivers\fastfat.sys
11:12:26.0704 0x0654 fastfat - ok
11:12:26.0749 0x0654 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\windows\system32\fxssvc.exe
11:12:26.0780 0x0654 Fax - ok
11:12:26.0796 0x0654 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\drivers\fdc.sys
11:12:26.0798 0x0654 fdc - ok
11:12:26.0832 0x0654 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll
11:12:26.0853 0x0654 fdPHost - ok
11:12:26.0960 0x0654 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll
11:12:26.0964 0x0654 FDResPub - ok
11:12:27.0027 0x0654 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys
11:12:27.0029 0x0654 FileInfo - ok
11:12:27.0043 0x0654 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys
11:12:27.0045 0x0654 Filetrace - ok
11:12:27.0063 0x0654 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\drivers\flpydisk.sys
11:12:27.0070 0x0654 flpydisk - ok
11:12:27.0108 0x0654 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
11:12:27.0118 0x0654 FltMgr - ok
11:12:27.0223 0x0654 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\windows\system32\FntCache.dll
11:12:27.0249 0x0654 FontCache - ok
11:12:27.0315 0x0654 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:12:27.0317 0x0654 FontCache3.0.0.0 - ok
11:12:27.0373 0x0654 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys
11:12:27.0374 0x0654 FsDepends - ok
11:12:27.0392 0x0654 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
11:12:27.0394 0x0654 Fs_Rec - ok
11:12:27.0436 0x0654 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
11:12:27.0446 0x0654 fvevol - ok
11:12:27.0474 0x0654 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
11:12:27.0477 0x0654 gagp30kx - ok
11:12:27.0531 0x0654 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
11:12:27.0541 0x0654 GamesAppService - ok
11:12:27.0577 0x0654 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
11:12:27.0579 0x0654 GEARAspiWDM - ok
11:12:27.0613 0x0654 [ FA07EC01952729DDDDC5BF4BAE06B09E, EAD6B6C4D0C2F27C91D3494DD71B549C47104733CD8C8AF77104D4F7F41C18E5 ] GFNEXSrv C:\Windows\System32\GFNEXSrv.exe
11:12:27.0623 0x0654 GFNEXSrv - ok
11:12:27.0669 0x0654 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\windows\System32\gpsvc.dll
11:12:27.0688 0x0654 gpsvc - ok
11:12:27.0722 0x0654 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:12:27.0725 0x0654 gupdate - ok
11:12:27.0730 0x0654 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:12:27.0732 0x0654 gupdatem - ok
11:12:27.0751 0x0654 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
11:12:27.0755 0x0654 gusvc - ok
11:12:27.0792 0x0654 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
11:12:27.0794 0x0654 hcw85cir - ok
11:12:27.0841 0x0654 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
11:12:27.0846 0x0654 HdAudAddService - ok
11:12:27.0868 0x0654 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
11:12:27.0872 0x0654 HDAudBus - ok
11:12:27.0893 0x0654 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\drivers\HidBatt.sys
11:12:27.0895 0x0654 HidBatt - ok
11:12:27.0940 0x0654 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\drivers\hidbth.sys
11:12:27.0943 0x0654 HidBth - ok
11:12:27.0964 0x0654 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\drivers\hidir.sys
11:12:27.0967 0x0654 HidIr - ok
11:12:28.0029 0x0654 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\System32\hidserv.dll
11:12:28.0033 0x0654 hidserv - ok
11:12:28.0104 0x0654 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
11:12:28.0105 0x0654 HidUsb - ok
11:12:28.0165 0x0654 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\windows\system32\kmsvc.dll
11:12:28.0172 0x0654 hkmsvc - ok
11:12:28.0203 0x0654 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
11:12:28.0210 0x0654 HomeGroupListener - ok
11:12:28.0262 0x0654 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
11:12:28.0275 0x0654 HomeGroupProvider - ok
11:12:28.0313 0x0654 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
11:12:28.0317 0x0654 HpSAMD - ok
11:12:28.0389 0x0654 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\windows\system32\drivers\HTTP.sys
11:12:28.0421 0x0654 HTTP - ok
11:12:28.0449 0x0654 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
11:12:28.0451 0x0654 hwpolicy - ok
11:12:28.0477 0x0654 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
11:12:28.0481 0x0654 i8042prt - ok
11:12:28.0593 0x0654 [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
11:12:28.0607 0x0654 iaStor - ok
11:12:28.0640 0x0654 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
11:12:28.0649 0x0654 iaStorV - ok
11:12:28.0747 0x0654 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:12:28.0771 0x0654 idsvc - ok
11:12:28.0775 0x0654 IEEtwCollectorService - ok
11:12:29.0176 0x0654 [ 9AA61DC7AA32C1D1260C4267FF07E0C1, 34FEE032C2585600E612A6CFEE33AD4C0C140B04ADB0B08825F2FC5505480366 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
11:12:29.0560 0x0654 igfx - ok
11:12:29.0610 0x0654 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\drivers\iirsp.sys
11:12:29.0612 0x0654 iirsp - ok
11:12:29.0721 0x0654 [ EDCCC8C13B1EB882F77BA0ABB84566E7, DB299C1D2CFC197CF2FE69358F5EEDE94DCC4C919AF5D2CDFFF0DE476612C988 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
11:12:29.0729 0x0654 IJPLMSVC - ok
11:12:29.0789 0x0654 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\windows\System32\ikeext.dll
11:12:29.0816 0x0654 IKEEXT - ok
11:12:29.0989 0x0654 [ 7C49C45A86CC0CD59C36701FB2A91E77, 389B67CB7EF69A3789FDE6DC6C8A75847B3731BAD2E8A57A54719DA833FA7E0A ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
11:12:30.0049 0x0654 IntcAzAudAddService - ok
11:12:30.0093 0x0654 [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
11:12:30.0098 0x0654 IntcDAud - ok
11:12:30.0295 0x0654 [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:12:30.0321 0x0654 Intel® Capability Licensing Service Interface - ok
11:12:30.0389 0x0654 [ 896AA2F1D79662B17D5DBBE588E24E30, 834257B3C247ECA0130A55FB8E5F906F54B94A124FBB842DB7D679C030BD439B ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
11:12:30.0396 0x0654 Intel® ME Service - ok
11:12:30.0435 0x0654 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\drivers\intelide.sys
11:12:30.0437 0x0654 intelide - ok
11:12:30.0492 0x0654 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
11:12:30.0497 0x0654 intelppm - ok
11:12:30.0532 0x0654 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll
11:12:30.0541 0x0654 IPBusEnum - ok
11:12:30.0559 0x0654 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
11:12:30.0563 0x0654 IpFilterDriver - ok
11:12:30.0632 0x0654 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\windows\System32\iphlpsvc.dll
11:12:30.0711 0x0654 iphlpsvc - ok
11:12:30.0738 0x0654 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
11:12:30.0742 0x0654 IPMIDRV - ok
11:12:30.0787 0x0654 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys
11:12:30.0792 0x0654 IPNAT - ok
11:12:30.0956 0x0654 [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:12:30.0987 0x0654 iPod Service - ok
11:12:31.0007 0x0654 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys
11:12:31.0008 0x0654 IRENUM - ok
11:12:31.0027 0x0654 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\windows\system32\drivers\isapnp.sys
11:12:31.0029 0x0654 isapnp - ok
11:12:31.0078 0x0654 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
11:12:31.0086 0x0654 iScsiPrt - ok
11:12:31.0133 0x0654 [ 8E4577C6E0D3114170509159DE658907, 2FC7F96766537716503AB1BAD7EBDB2F16F3CE1584AF4261D57C6A4E00E1A417 ] iusb3hcs C:\windows\system32\DRIVERS\iusb3hcs.sys
11:12:31.0134 0x0654 iusb3hcs - ok
11:12:31.0173 0x0654 [ FE76346E9B57DA575BD1B3BD0CCAD7FF, 8961A08326F66E9FDF63912797C605FEEC23F9B0453D132AB6897DA98BC9AEAB ] iusb3hub C:\windows\system32\DRIVERS\iusb3hub.sys
11:12:31.0186 0x0654 iusb3hub - ok
11:12:31.0243 0x0654 [ 1008CD90DA2198FFD250298DEB9DF160, 2CBA5FF2369861E8F8A55799AFFFC8E5B331A8BD17B559641E87A4C6C0D70206 ] iusb3xhc C:\windows\system32\DRIVERS\iusb3xhc.sys
11:12:31.0270 0x0654 iusb3xhc - ok
11:12:31.0333 0x0654 [ 3C6630473DD42FFC57D9F5564F533127, 1B2BBB8CF7AD5BF3F99565DA49F51B1E15D4B35698C105C0597DDBEB2DA61A83 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
11:12:31.0338 0x0654 jhi_service - ok
11:12:31.0363 0x0654 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
11:12:31.0364 0x0654 kbdclass - ok
11:12:31.0384 0x0654 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
11:12:31.0386 0x0654 kbdhid - ok
11:12:31.0407 0x0654 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\windows\system32\lsass.exe
11:12:31.0410 0x0654 KeyIso - ok
11:12:31.0477 0x0654 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
11:12:31.0479 0x0654 KSecDD - ok
11:12:31.0501 0x0654 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
11:12:31.0505 0x0654 KSecPkg - ok
11:12:31.0532 0x0654 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys
11:12:31.0533 0x0654 ksthunk - ok
11:12:31.0571 0x0654 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll
11:12:31.0590 0x0654 KtmRm - ok
11:12:31.0625 0x0654 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\windows\System32\srvsvc.dll
11:12:31.0638 0x0654 LanmanServer - ok
11:12:31.0665 0x0654 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
11:12:31.0676 0x0654 LanmanWorkstation - ok
11:12:31.0689 0x0654 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
11:12:31.0693 0x0654 lltdio - ok
11:12:31.0740 0x0654 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll
11:12:31.0756 0x0654 lltdsvc - ok
11:12:31.0780 0x0654 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll
11:12:31.0786 0x0654 lmhosts - ok
11:12:31.0853 0x0654 [ 2B23FAA39D8F949ED5EEE03ECA50BCD5, 7CEF2455D21A355542B290F4F18EDBC444F3704A31E569652D96A0A3E6799826 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:12:31.0861 0x0654 LMS - ok
11:12:31.0893 0x0654 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
11:12:31.0897 0x0654 LSI_FC - ok
11:12:31.0963 0x0654 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
11:12:31.0968 0x0654 LSI_SAS - ok
11:12:31.0978 0x0654 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
11:12:31.0981 0x0654 LSI_SAS2 - ok
11:12:31.0991 0x0654 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
11:12:31.0996 0x0654 LSI_SCSI - ok
11:12:32.0015 0x0654 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\windows\system32\drivers\luafv.sys
11:12:32.0022 0x0654 luafv - ok
11:12:32.0054 0x0654 [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam C:\windows\system32\DRIVERS\mcvidrv_x64.sys
11:12:32.0057 0x0654 ManyCam - ok
11:12:32.0074 0x0654 [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple C:\windows\system32\drivers\mcaudrv_x64.sys
11:12:32.0077 0x0654 mcaudrv_simple - ok
11:12:32.0116 0x0654 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
11:12:32.0125 0x0654 Mcx2Svc - ok
11:12:32.0158 0x0654 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\drivers\megasas.sys
11:12:32.0160 0x0654 megasas - ok
11:12:32.0176 0x0654 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
11:12:32.0185 0x0654 MegaSR - ok
11:12:32.0222 0x0654 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
11:12:32.0225 0x0654 MEIx64 - ok
11:12:32.0252 0x0654 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll
11:12:32.0259 0x0654 MMCSS - ok
11:12:32.0275 0x0654 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys
11:12:32.0278 0x0654 Modem - ok
11:12:32.0310 0x0654 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys
11:12:32.0313 0x0654 monitor - ok
11:12:32.0332 0x0654 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
11:12:32.0336 0x0654 mouclass - ok
11:12:32.0341 0x0654 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
11:12:32.0343 0x0654 mouhid - ok
11:12:32.0352 0x0654 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
11:12:32.0357 0x0654 mountmgr - ok
11:12:32.0366 0x0654 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\windows\system32\drivers\mpio.sys
11:12:32.0373 0x0654 mpio - ok
11:12:32.0380 0x0654 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
11:12:32.0383 0x0654 mpsdrv - ok
11:12:32.0441 0x0654 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\windows\system32\mpssvc.dll
11:12:32.0477 0x0654 MpsSvc - ok
11:12:32.0499 0x0654 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
11:12:32.0502 0x0654 MRxDAV - ok
11:12:32.0526 0x0654 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
11:12:32.0530 0x0654 mrxsmb - ok
11:12:32.0539 0x0654 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
11:12:32.0546 0x0654 mrxsmb10 - ok
11:12:32.0552 0x0654 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
11:12:32.0555 0x0654 mrxsmb20 - ok
11:12:32.0574 0x0654 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\windows\system32\drivers\msahci.sys
11:12:32.0575 0x0654 msahci - ok
11:12:32.0615 0x0654 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\windows\system32\drivers\msdsm.sys
11:12:32.0625 0x0654 msdsm - ok
11:12:32.0642 0x0654 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe
11:12:32.0650 0x0654 MSDTC - ok
11:12:32.0673 0x0654 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys
11:12:32.0675 0x0654 Msfs - ok
11:12:32.0687 0x0654 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
11:12:32.0688 0x0654 mshidkmdf - ok
11:12:32.0701 0x0654 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
11:12:32.0702 0x0654 msisadrv - ok
11:12:32.0728 0x0654 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll
11:12:32.0733 0x0654 MSiSCSI - ok
11:12:32.0735 0x0654 msiserver - ok
11:12:32.0761 0x0654 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
11:12:32.0762 0x0654 MSKSSRV - ok
11:12:32.0764 0x0654 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
11:12:32.0765 0x0654 MSPCLOCK - ok
11:12:32.0768 0x0654 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys
11:12:32.0770 0x0654 MSPQM - ok
11:12:32.0804 0x0654 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
11:12:32.0822 0x0654 MsRPC - ok
11:12:32.0843 0x0654 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
11:12:32.0847 0x0654 mssmbios - ok
11:12:32.0851 0x0654 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys
11:12:32.0853 0x0654 MSTEE - ok
11:12:32.0881 0x0654 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\drivers\MTConfig.sys
11:12:32.0883 0x0654 MTConfig - ok
11:12:32.0901 0x0654 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys
11:12:32.0905 0x0654 Mup - ok
11:12:32.0943 0x0654 MySQL55 - ok
11:12:32.0983 0x0654 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\windows\system32\qagentRT.dll
11:12:33.0007 0x0654 napagent - ok
11:12:33.0043 0x0654 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
11:12:33.0055 0x0654 NativeWifiP - ok
11:12:33.0147 0x0654 [ DFE14D63F0F649EE94A9E3442B7C8F2C, D4DA9DFF92F0E9DD14192AC77ABA1556C01DB27085731CEA3425F613FD317050 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
11:12:33.0175 0x0654 NAUpdate - ok
11:12:33.0190 0x0654 [ DACA803A8D732FE5EEAA024EC342F81D, 2DDEA48CD417EDD657D487BADA7C31C05F35DA328AAC5AA63A99FDFD44F2BF02 ] NBVol C:\windows\system32\DRIVERS\NBVol.sys
11:12:33.0194 0x0654 NBVol - ok
11:12:33.0219 0x0654 [ 6208F622E9E35860DFB0753DFF56F0C0, AF7730B4AB642E0E45C05AE1429C7B3D90B0889CF94B21AC7869790D4DB6FDBE ] NBVolUp C:\windows\system32\DRIVERS\NBVolUp.sys
11:12:33.0220 0x0654 NBVolUp - ok
11:12:33.0291 0x0654 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\windows\system32\drivers\ndis.sys
11:12:33.0317 0x0654 NDIS - ok
11:12:33.0337 0x0654 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
11:12:33.0339 0x0654 NdisCap - ok
11:12:33.0356 0x0654 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
11:12:33.0357 0x0654 NdisTapi - ok
11:12:33.0362 0x0654 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
11:12:33.0364 0x0654 Ndisuio - ok
11:12:33.0370 0x0654 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
11:12:33.0374 0x0654 NdisWan - ok
11:12:33.0379 0x0654 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
11:12:33.0381 0x0654 NDProxy - ok
11:12:33.0385 0x0654 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
11:12:33.0386 0x0654 NetBIOS - ok
11:12:33.0395 0x0654 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
11:12:33.0401 0x0654 NetBT - ok
11:12:33.0418 0x0654 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\windows\system32\lsass.exe
11:12:33.0421 0x0654 Netlogon - ok
11:12:33.0471 0x0654 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll
11:12:33.0490 0x0654 Netman - ok
11:12:33.0618 0x0654 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:12:33.0625 0x0654 NetMsmqActivator - ok
11:12:33.0634 0x0654 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:12:33.0641 0x0654 NetPipeActivator - ok
11:12:33.0689 0x0654 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll
11:12:33.0709 0x0654 netprofm - ok
11:12:33.0741 0x0654 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:12:33.0747 0x0654 NetTcpActivator - ok
11:12:33.0757 0x0654 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:12:33.0763 0x0654 NetTcpPortSharing - ok
11:12:33.0805 0x0654 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
11:12:33.0809 0x0654 nfrd960 - ok
11:12:33.0852 0x0654 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\windows\System32\nlasvc.dll
11:12:33.0867 0x0654 NlaSvc - ok
11:12:33.0897 0x0654 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys
11:12:33.0900 0x0654 Npfs - ok
11:12:33.0918 0x0654 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\windows\system32\nsisvc.dll
11:12:33.0924 0x0654 nsi - ok
11:12:33.0929 0x0654 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
11:12:33.0931 0x0654 nsiproxy - ok
11:12:34.0025 0x0654 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\windows\system32\drivers\Ntfs.sys
11:12:34.0081 0x0654 Ntfs - ok
11:12:34.0099 0x0654 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys
11:12:34.0101 0x0654 Null - ok
11:12:34.0124 0x0654 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\windows\system32\drivers\nvraid.sys
11:12:34.0130 0x0654 nvraid - ok
11:12:34.0141 0x0654 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\windows\system32\drivers\nvstor.sys
11:12:34.0147 0x0654 nvstor - ok
11:12:34.0156 0x0654 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\windows\system32\drivers\nv_agp.sys
11:12:34.0161 0x0654 nv_agp - ok
11:12:34.0423 0x0654 [ 25FFB1C1E5BD27B9757EACF40B2B0F7B, 41B4236F580B4653C65E3F16DD3FF91E924716FDD2DCBA89A5F416563C5F0076 ] OfficeSvc C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
11:12:34.0486 0x0654 OfficeSvc - ok
11:12:34.0507 0x0654 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
11:12:34.0511 0x0654 ohci1394 - ok
11:12:34.0569 0x0654 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:12:34.0574 0x0654 ose - ok
11:12:34.0860 0x0654 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:12:34.0959 0x0654 osppsvc - ok
11:12:34.0999 0x0654 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
11:12:35.0009 0x0654 p2pimsvc - ok
11:12:35.0038 0x0654 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\windows\system32\p2psvc.dll
11:12:35.0049 0x0654 p2psvc - ok
11:12:35.0081 0x0654 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\windows\system32\drivers\parport.sys
11:12:35.0085 0x0654 Parport - ok
11:12:35.0123 0x0654 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\windows\system32\drivers\partmgr.sys
11:12:35.0127 0x0654 partmgr - ok
11:12:35.0168 0x0654 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\windows\System32\pcasvc.dll
11:12:35.0177 0x0654 PcaSvc - ok
11:12:35.0207 0x0654 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\windows\system32\drivers\pci.sys
11:12:35.0213 0x0654 pci - ok
11:12:35.0233 0x0654 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\windows\system32\drivers\pciide.sys
11:12:35.0235 0x0654 pciide - ok
11:12:35.0272 0x0654 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\windows\system32\drivers\pcmcia.sys
11:12:35.0279 0x0654 pcmcia - ok
11:12:35.0304 0x0654 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\windows\system32\drivers\pcw.sys
11:12:35.0308 0x0654 pcw - ok
11:12:35.0375 0x0654 [ 7CADB4ABAE72390951886CF259791F5F, 9A0F4113F4E09911A44843F31E8C7047EEA39611AB490A4CF16FAE9D95310076 ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
11:12:35.0381 0x0654 PDFProFiltSrvPP - ok
11:12:35.0428 0x0654 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\windows\system32\drivers\peauth.sys
11:12:35.0448 0x0654 PEAUTH - ok
11:12:35.0627 0x0654 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\windows\SysWow64\perfhost.exe
11:12:35.0632 0x0654 PerfHost - ok
11:12:35.0676 0x0654 [ 91111CEBBDE8015E822C46120ED9537C, 255B85FEF663C2E0652CECF3F9B67B12B576F924A34415DEE13F0F5137E1E7F7 ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
11:12:35.0679 0x0654 PGEffect - ok
11:12:35.0868 0x0654 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\windows\system32\pla.dll
11:12:35.0899 0x0654 pla - ok
11:12:35.0938 0x0654 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\windows\system32\umpnpmgr.dll
11:12:35.0968 0x0654 PlugPlay - ok
11:12:35.0991 0x0654 PnkBstrA - ok
11:12:35.0994 0x0654 PnkBstrB - ok
11:12:36.0040 0x0654 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
11:12:36.0047 0x0654 PNRPAutoReg - ok
11:12:36.0081 0x0654 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
11:12:36.0097 0x0654 PNRPsvc - ok
11:12:36.0130 0x0654 [ 34A8FAE065249F85A67A3215FF5ECB34, 913297755C1046BA004E79660B7DA5BBE5E92B96AAA83D78AE3FF379371950D5 ] Point64 C:\windows\system32\DRIVERS\point64.sys
11:12:36.0133 0x0654 Point64 - ok
11:12:36.0191 0x0654 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
11:12:36.0214 0x0654 PolicyAgent - ok
11:12:36.0243 0x0654 [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\windows\system32\umpo.dll
11:12:36.0255 0x0654 Power - ok
11:12:36.0286 0x0654 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
11:12:36.0291 0x0654 PptpMiniport - ok
11:12:36.0315 0x0654 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\windows\system32\drivers\processr.sys
11:12:36.0318 0x0654 Processor - ok
11:12:36.0359 0x0654 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\windows\system32\profsvc.dll
11:12:36.0373 0x0654 ProfSvc - ok
11:12:36.0396 0x0654 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\windows\system32\lsass.exe
11:12:36.0402 0x0654 ProtectedStorage - ok
11:12:36.0427 0x0654 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\windows\system32\DRIVERS\pacer.sys
11:12:36.0433 0x0654 Psched - ok
11:12:36.0522 0x0654 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\windows\system32\drivers\ql2300.sys
11:12:36.0556 0x0654 ql2300 - ok
11:12:36.0562 0x0654 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\windows\system32\drivers\ql40xx.sys
11:12:36.0565 0x0654 ql40xx - ok
11:12:36.0594 0x0654 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\windows\system32\qwave.dll
11:12:36.0602 0x0654 QWAVE - ok
11:12:36.0634 0x0654 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
11:12:36.0636 0x0654 QWAVEdrv - ok
11:12:36.0641 0x0654 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
11:12:36.0642 0x0654 RasAcd - ok
11:12:36.0662 0x0654 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
11:12:36.0663 0x0654 RasAgileVpn - ok
11:12:36.0698 0x0654 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\windows\System32\rasauto.dll
11:12:36.0703 0x0654 RasAuto - ok
11:12:36.0727 0x0654 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
11:12:36.0730 0x0654 Rasl2tp - ok
11:12:36.0769 0x0654 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\windows\System32\rasmans.dll
11:12:36.0779 0x0654 RasMan - ok
11:12:36.0784 0x0654 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
11:12:36.0786 0x0654 RasPppoe - ok
11:12:36.0792 0x0654 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
11:12:36.0794 0x0654 RasSstp - ok
11:12:36.0804 0x0654 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
11:12:36.0816 0x0654 rdbss - ok
11:12:36.0848 0x0654 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\windows\system32\drivers\rdpbus.sys
11:12:36.0849 0x0654 rdpbus - ok
11:12:36.0867 0x0654 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
11:12:36.0868 0x0654 RDPCDD - ok
11:12:36.0878 0x0654 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
11:12:36.0879 0x0654 RDPENCDD - ok
11:12:36.0890 0x0654 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
11:12:36.0893 0x0654 RDPREFMP - ok
11:12:36.0928 0x0654 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
11:12:36.0929 0x0654 RdpVideoMiniport - ok
11:12:36.0964 0x0654 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
11:12:36.0968 0x0654 RDPWD - ok
11:12:36.0994 0x0654 [ A115F49BEA840A5F049BC6310F35F776, 3A4D681959A493ECC24C4B0925F5F4FD336F93C317198C210907E466D3F704CA ] rdyboost C:\windows\system32\drivers\rdyboost.sys
11:12:36.0997 0x0654 rdyboost - ok
11:12:37.0052 0x0654 [ A0FF419B61AE47E26ADF3BB15DB4F2FE, 974FF9751D123E212BD3CE8DAE70D4BCCC988A01431A1BD91A532849E492BBD8 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
11:12:37.0054 0x0654 RealNetworks Downloader Resolver Service - ok
11:12:37.0092 0x0654 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\windows\System32\mprdim.dll
11:12:37.0097 0x0654 RemoteAccess - ok
11:12:37.0129 0x0654 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\windows\system32\regsvc.dll
11:12:37.0135 0x0654 RemoteRegistry - ok
11:12:37.0159 0x0654 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
11:12:37.0163 0x0654 RFCOMM - ok
11:12:37.0191 0x0654 [ 7B04C9843921AB1F695FB395422C5360, C9B02BE0384357FD242613C2A12029B45322AF9A795CD69F33500CA7530899A7 ] RimUsb C:\windows\system32\Drivers\RimUsb_AMD64.sys
11:12:37.0193 0x0654 RimUsb - ok
11:12:37.0221 0x0654 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
11:12:37.0225 0x0654 RpcEptMapper - ok
11:12:37.0252 0x0654 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\windows\system32\locator.exe
11:12:37.0254 0x0654 RpcLocator - ok
11:12:37.0290 0x0654 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\windows\System32\rpcss.dll
11:12:37.0301 0x0654 RpcSs - ok
11:12:37.0325 0x0654 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
11:12:37.0327 0x0654 rspndr - ok
11:12:37.0348 0x0654 [ BB1C3DF1D6CC0972E9C7268A19E62D2E, C362BA0CB2B8CC0CBBD44A76DBC8FD2B44546B027CD794DC64E24D50BEA4FAC6 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
11:12:37.0354 0x0654 RSUSBSTOR - ok
11:12:37.0380 0x0654 [ B708BBAB80C60EE613DEE52A1A0A8538, F12624F865A6DD60602BFE3A8E587E4D2CD93774AC30E42917C52E3B382B0CB5 ] RtkBtFilter C:\windows\system32\DRIVERS\RtkBtfilter.sys
11:12:37.0381 0x0654 RtkBtFilter - ok
11:12:37.0412 0x0654 [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
11:12:37.0421 0x0654 RTL8167 - ok
11:12:37.0474 0x0654 [ 8328468053CEDFD7198BEE178C501989, 618E0C01DAD398BA3F121C1A05EC1A6831A19B02D82BF8031202ABA34F20987C ] RTL8192Ce C:\windows\system32\DRIVERS\rtwlane.sys
11:12:37.0491 0x0654 RTL8192Ce - ok
11:12:37.0506 0x0654 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\windows\system32\lsass.exe
11:12:37.0510 0x0654 SamSs - ok
11:12:37.0527 0x0654 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
11:12:37.0529 0x0654 sbp2port - ok
11:12:37.0566 0x0654 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\windows\System32\SCardSvr.dll
11:12:37.0575 0x0654 SCardSvr - ok
11:12:37.0604 0x0654 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
11:12:37.0606 0x0654 scfilter - ok
11:12:37.0661 0x0654 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\windows\system32\schedsvc.dll
11:12:37.0685 0x0654 Schedule - ok
11:12:37.0712 0x0654 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\windows\System32\certprop.dll
11:12:37.0714 0x0654 SCPolicySvc - ok
11:12:37.0743 0x0654 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\windows\System32\SDRSVC.dll
11:12:37.0749 0x0654 SDRSVC - ok
11:12:37.0769 0x0654 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
11:12:37.0770 0x0654 secdrv - ok
11:12:37.0855 0x0654 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\windows\system32\seclogon.dll
11:12:37.0859 0x0654 seclogon - ok
11:12:37.0879 0x0654 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\windows\system32\sens.dll
11:12:37.0883 0x0654 SENS - ok
11:12:37.0899 0x0654 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\windows\system32\sensrsvc.dll
11:12:37.0902 0x0654 SensrSvc - ok
11:12:37.0910 0x0654 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\windows\system32\drivers\serenum.sys
11:12:37.0911 0x0654 Serenum - ok
11:12:37.0930 0x0654 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\windows\system32\drivers\serial.sys
11:12:37.0933 0x0654 Serial - ok
11:12:37.0936 0x0654 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\windows\system32\drivers\sermouse.sys
11:12:37.0937 0x0654 sermouse - ok
11:12:37.0969 0x0654 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\windows\system32\sessenv.dll
11:12:37.0974 0x0654 SessionEnv - ok
11:12:37.0990 0x0654 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\windows\system32\drivers\sffdisk.sys
11:12:37.0991 0x0654 sffdisk - ok
11:12:37.0994 0x0654 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
11:12:37.0995 0x0654 sffp_mmc - ok
11:12:38.0007 0x0654 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
11:12:38.0008 0x0654 sffp_sd - ok
11:12:38.0011 0x0654 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
11:12:38.0012 0x0654 sfloppy - ok
11:12:38.0052 0x0654 [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
11:12:38.0064 0x0654 Sftfs - ok
11:12:38.0123 0x0654 [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
11:12:38.0133 0x0654 sftlist - ok
11:12:38.0172 0x0654 [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
11:12:38.0183 0x0654 Sftplay - ok
11:12:38.0201 0x0654 [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
11:12:38.0203 0x0654 Sftredir - ok
11:12:38.0229 0x0654 [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
11:12:38.0231 0x0654 Sftvol - ok
11:12:38.0259 0x0654 [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
11:12:38.0268 0x0654 sftvsa - ok
11:12:38.0317 0x0654 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\windows\System32\ipnathlp.dll
11:12:38.0334 0x0654 SharedAccess - ok
11:12:38.0373 0x0654 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
11:12:38.0392 0x0654 ShellHWDetection - ok
11:12:38.0427 0x0654 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
11:12:38.0430 0x0654 SiSRaid2 - ok
11:12:38.0437 0x0654 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
11:12:38.0441 0x0654 SiSRaid4 - ok
11:12:38.0511 0x0654 [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:12:38.0519 0x0654 SkypeUpdate - ok
11:12:38.0553 0x0654 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\windows\system32\DRIVERS\smb.sys
11:12:38.0557 0x0654 Smb - ok
11:12:38.0593 0x0654 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\windows\System32\snmptrap.exe
11:12:38.0600 0x0654 SNMPTRAP - ok
11:12:38.0614 0x0654 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\windows\system32\drivers\spldr.sys
11:12:38.0616 0x0654 spldr - ok
11:12:38.0671 0x0654 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\windows\System32\spoolsv.exe
11:12:38.0696 0x0654 Spooler - ok
11:12:38.0874 0x0654 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\windows\system32\sppsvc.exe
11:12:39.0042 0x0654 sppsvc - ok
11:12:39.0067 0x0654 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\windows\system32\sppuinotify.dll
11:12:39.0074 0x0654 sppuinotify - ok
11:12:39.0127 0x0654 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\windows\system32\DRIVERS\srv.sys
11:12:39.0143 0x0654 srv - ok
11:12:39.0164 0x0654 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
11:12:39.0178 0x0654 srv2 - ok
11:12:39.0191 0x0654 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
11:12:39.0197 0x0654 srvnet - ok
11:12:39.0227 0x0654 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
11:12:39.0239 0x0654 SSDPSRV - ok
11:12:39.0255 0x0654 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\windows\system32\sstpsvc.dll
11:12:39.0263 0x0654 SstpSvc - ok
11:12:39.0315 0x0654 [ 2F3B5A3567FFB343D8867C3D34C687F1, D01971412506746B2EA1CBB0ACF9472889ABBC23318C1332BEC9C8256011183E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:12:39.0337 0x0654 Steam Client Service - ok
11:12:39.0360 0x0654 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\windows\system32\drivers\stexstor.sys
11:12:39.0362 0x0654 stexstor - ok
11:12:39.0393 0x0654 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
11:12:39.0396 0x0654 StillCam - ok
11:12:39.0445 0x0654 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\windows\System32\wiaservc.dll
11:12:39.0472 0x0654 stisvc - ok
11:12:39.0507 0x0654 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\windows\system32\DRIVERS\swenum.sys
11:12:39.0509 0x0654 swenum - ok
11:12:39.0554 0x0654 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\windows\System32\swprv.dll
11:12:39.0578 0x0654 swprv - ok
11:12:39.0623 0x0654 [ B868E292FBA5B62B9FC71572A5FAEF5C, 423AAFBEC27310520DCC4EACF0ADCCCBF5D7339412930F4B42FB5A48FECEE542 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
11:12:39.0637 0x0654 SynTP - ok
11:12:39.0734 0x0654 [ 7BE4CDEA6BC7832BFE3112A350D8B9EA, B51BD5A02D20C1CD8F7B4326114C2FA57ABD8D75133D6CE906CB65E97AAB7F70 ] SysMain C:\windows\system32\sysmain.dll
11:12:39.0799 0x0654 SysMain - ok
11:12:39.0830 0x0654 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
11:12:39.0837 0x0654 TabletInputService - ok
11:12:39.0861 0x0654 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\windows\System32\tapisrv.dll
11:12:39.0870 0x0654 TapiSrv - ok
11:12:39.0891 0x0654 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\windows\System32\tbssvc.dll
11:12:39.0896 0x0654 TBS - ok
11:12:40.0104 0x0654 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\windows\system32\drivers\tcpip.sys
11:12:40.0169 0x0654 Tcpip - ok
11:12:40.0237 0x0654 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
11:12:40.0264 0x0654 TCPIP6 - ok
11:12:40.0282 0x0654 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
11:12:40.0283 0x0654 tcpipreg - ok
11:12:40.0309 0x0654 [ FD542B661BD22FA69CA789AD0AC58C29, 75FFAF1834B1E22DF37608ED451F161052FF1FE3C681B4E20A68DCA92CC7FD8C ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
11:12:40.0311 0x0654 tdcmdpst - ok
11:12:40.0331 0x0654 TDEIO - ok
11:12:40.0357 0x0654 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
11:12:40.0360 0x0654 TDPIPE - ok
11:12:40.0366 0x0654 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
11:12:40.0369 0x0654 TDTCP - ok
11:12:40.0389 0x0654 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\windows\system32\DRIVERS\tdx.sys
11:12:40.0394 0x0654 tdx - ok
11:12:40.0574 0x0654 [ 9F3E7CABE86BBDECA009DE291DB6D9E2, C85176BA98382C82178D682C5F91B5590201BF8C7335DF7ABCAB469367701106 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
11:12:40.0684 0x0654 TeamViewer8 - ok
11:12:40.0727 0x0654 [ 1B709733A04DCC41A63F9CD1F76A4EBE, 3973F7BA3CC5395040F68B60950A836D729B487BF7F732D31915064F7DA4C838 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
11:12:40.0731 0x0654 TemproMonitoringService - ok
11:12:40.0754 0x0654 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\windows\system32\DRIVERS\termdd.sys
11:12:40.0756 0x0654 TermDD - ok
11:12:40.0794 0x0654 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\windows\System32\termsrv.dll
11:12:40.0811 0x0654 TermService - ok
11:12:40.0855 0x0654 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\windows\system32\themeservice.dll
11:12:40.0860 0x0654 Themes - ok
11:12:40.0885 0x0654 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\windows\system32\mmcss.dll
11:12:40.0888 0x0654 THREADORDER - ok
11:12:40.0920 0x0654 [ 519CB7D7F697F4BA47DE05845C20F158, F4B40014CB5047463FC40C28D9CFF0DA5E8592A2A9ED8E938A0A9D43DBD0A516 ] TlntSvr C:\windows\System32\tlntsvr.exe
11:12:40.0926 0x0654 TlntSvr - ok
11:12:41.0001 0x0654 [ 71C321649B28638EE80A2EEB164C1DC8, D75D296B506DCC38A4DED82C71141388AEB60B065785DCC5BC2F4B3B77ACEDC7 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
11:12:41.0006 0x0654 TMachInfo - ok
11:12:41.0035 0x0654 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19, CFE8A69E3F2A42C3BA2B38EC9233076D0AD32C441500E6407219F2E866905D9B ] TODDSrv C:\windows\system32\TODDSrv.exe
11:12:41.0044 0x0654 TODDSrv - ok
11:12:41.0144 0x0654 [ 4AE80C5F7772C4FB2A762F70AD4A111E, C86F4878D497BD998639A3A01C26F46E5A31F4BBC35FA4B7E9BF66F7799D2511 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
11:12:41.0165 0x0654 TosCoSrv - ok
11:12:41.0219 0x0654 [ A22DEB5EC05FEBFDCA1D3FF70FA1FF46, 3D3F68DC994C99436E31B72AEE15F4F46437AC3F2C2CD1D477C738E16397CB50 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
11:12:41.0228 0x0654 TOSHIBA Bluetooth Service - ok
11:12:41.0280 0x0654 [ 6E2330FB032ED3EBEFC1349AD7081A98, 14009203935221FED275288E2B9801FBA4401854C2566E4F5B4003EB28DE97E6 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
11:12:41.0291 0x0654 TOSHIBA eco Utility Service - ok
11:12:41.0337 0x0654 [ 9338C2DEB14CA2804BCB3276CB7EB4FD, 4204B49D3BE2777E10A442C45A8677E559AF9DF03CB96A9C2FDE5D21A0538623 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
11:12:41.0344 0x0654 TOSHIBA HDD SSD Alert Service - ok
11:12:41.0381 0x0654 [ B9FA0498F6CC596FFA5CF47A04CD1785, E5AF5A1E31416C7917321082A2A34EDA557E6928A74D6B17AB51ED5549A4B6C8 ] tosrfbd C:\windows\system32\DRIVERS\tosrfbd.sys
11:12:41.0392 0x0654 tosrfbd - ok
11:12:41.0396 0x0654 Tosrfcom - ok
11:12:41.0404 0x0654 [ F5E3AC4CBCD154EE80849B21887FD0B0, 7D68AF88F1B01BCA6456FBAEB91580419A49A77D31EFC0BA6A1C50301899BA03 ] tosrfec C:\windows\system32\DRIVERS\tosrfec.sys
11:12:41.0406 0x0654 tosrfec - ok
11:12:41.0425 0x0654 [ 7D2467D3EB9BAA4B69AE4A28C83DE57A, 38D2C64559EF4598025474643EC0D506F0107822AC6205E8C4D26B76EB28177D ] Tosrfhid C:\windows\system32\DRIVERS\Tosrfhid.sys
11:12:41.0429 0x0654 Tosrfhid - ok
11:12:41.0458 0x0654 [ AF8A0D2E2A41043A77CA77CCBDB8D9C2, B215C6357E30A0E669FD0D4B9BB9D84B1D30B2177B6ED626B3C70D96C8FF4497 ] Tosrfusb C:\windows\system32\DRIVERS\tosrfusb.sys
11:12:41.0462 0x0654 Tosrfusb - ok
11:12:41.0509 0x0654 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8, 0D2CC72B7E02B92C9A1D6B76300B75A39427046903326642B9D511A51A795027 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
11:12:41.0528 0x0654 tos_sps64 - ok
11:12:41.0593 0x0654 [ 36CDD894395BEC46EFB14F49D77D3D82, A285DBF83605756B52E09548B78C67C00A814E6FDF8BA761701FA520EF9D94BF ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
11:12:41.0616 0x0654 TPCHSrv - ok
11:12:41.0649 0x0654 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\windows\System32\trkwks.dll
11:12:41.0655 0x0654 TrkWks - ok
11:12:41.0697 0x0654 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
11:12:41.0702 0x0654 TrustedInstaller - ok
11:12:41.0724 0x0654 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
11:12:41.0726 0x0654 tssecsrv - ok
11:12:41.0749 0x0654 [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
11:12:41.0751 0x0654 TsUsbFlt - ok
11:12:41.0789 0x0654 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
11:12:41.0792 0x0654 TsUsbGD - ok
11:12:41.0847 0x0654 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
11:12:41.0855 0x0654 tunnel - ok
11:12:41.0877 0x0654 [ 550B567F9364D8F7684C3FB3EA665A72, A214BBBBAB9F0DD525FA5A818CEB8E9294B4A96676317255D7ACF6049049C933 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
11:12:41.0880 0x0654 TVALZ - ok
11:12:41.0905 0x0654 [ 9C7191F4B2E49BFF47A6C1144B5923FA, DF4E663499946F4E68B7528CA399574D1EB69797FF81F681943B84F3E5E6A40E ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
11:12:41.0906 0x0654 TVALZFL - ok
11:12:41.0924 0x0654 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\windows\system32\drivers\uagp35.sys
11:12:41.0927 0x0654 uagp35 - ok
11:12:41.0963 0x0654 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\windows\system32\DRIVERS\udfs.sys
11:12:41.0975 0x0654 udfs - ok
11:12:41.0998 0x0654 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\windows\system32\UI0Detect.exe
11:12:42.0004 0x0654 UI0Detect - ok
11:12:42.0011 0x0654 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
11:12:42.0014 0x0654 uliagpkx - ok
11:12:42.0034 0x0654 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\windows\system32\DRIVERS\umbus.sys
11:12:42.0037 0x0654 umbus - ok
11:12:42.0042 0x0654 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\windows\system32\drivers\umpass.sys
11:12:42.0043 0x0654 UmPass - ok
11:12:42.0133 0x0654 [ 3C5405EF78576E8E4D791EB18F6856A8, 18FD6A5C0ACD045B324F46C7C596D537D52F43B7F2896F0D54CEBEFF4886CAEC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:12:42.0148 0x0654 UNS - ok
11:12:42.0192 0x0654 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\windows\System32\upnphost.dll
11:12:42.0210 0x0654 upnphost - ok
11:12:42.0244 0x0654 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
11:12:42.0248 0x0654 USBAAPL64 - ok
11:12:42.0288 0x0654 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\windows\system32\drivers\usbaudio.sys
11:12:42.0292 0x0654 usbaudio - ok
11:12:42.0342 0x0654 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\windows\system32\drivers\usbccgp.sys
11:12:42.0347 0x0654 usbccgp - ok
11:12:42.0379 0x0654 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\windows\system32\drivers\usbcir.sys
11:12:42.0383 0x0654 usbcir - ok
11:12:42.0423 0x0654 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\windows\system32\drivers\usbehci.sys
11:12:42.0426 0x0654 usbehci - ok
11:12:42.0467 0x0654 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
11:12:42.0481 0x0654 usbhub - ok
11:12:42.0518 0x0654 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\windows\system32\drivers\usbohci.sys
11:12:42.0520 0x0654 usbohci - ok
11:12:42.0554 0x0654 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\windows\system32\drivers\usbprint.sys
11:12:42.0557 0x0654 usbprint - ok
11:12:42.0578 0x0654 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
11:12:42.0582 0x0654 USBSTOR - ok
11:12:42.0623 0x0654 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
11:12:42.0626 0x0654 usbuhci - ok
11:12:42.0657 0x0654 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
11:12:42.0665 0x0654 usbvideo - ok
11:12:42.0697 0x0654 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\windows\System32\uxsms.dll
11:12:42.0705 0x0654 UxSms - ok
11:12:42.0740 0x0654 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\windows\system32\lsass.exe
11:12:42.0745 0x0654 VaultSvc - ok
11:12:42.0779 0x0654 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
11:12:42.0781 0x0654 vdrvroot - ok
11:12:42.0833 0x0654 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\windows\System32\vds.exe
11:12:42.0858 0x0654 vds - ok
11:12:42.0876 0x0654 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
11:12:42.0879 0x0654 vga - ok
11:12:42.0920 0x0654 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\windows\System32\drivers\vga.sys
11:12:42.0923 0x0654 VgaSave - ok
11:12:42.0948 0x0654 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\windows\system32\drivers\vhdmp.sys
11:12:42.0957 0x0654 vhdmp - ok
11:12:42.0978 0x0654 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\windows\system32\drivers\viaide.sys
11:12:42.0981 0x0654 viaide - ok
11:12:43.0003 0x0654 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\windows\system32\drivers\volmgr.sys
11:12:43.0007 0x0654 volmgr - ok
11:12:43.0026 0x0654 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\windows\system32\drivers\volmgrx.sys
11:12:43.0041 0x0654 volmgrx - ok
11:12:43.0058 0x0654 [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap C:\windows\system32\drivers\volsnap.sys
11:12:43.0069 0x0654 volsnap - ok
11:12:43.0103 0x0654 [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus C:\windows\system32\DRIVERS\vpchbus.sys
11:12:43.0111 0x0654 vpcbus - ok
11:12:43.0147 0x0654 [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr C:\windows\system32\DRIVERS\vpcnfltr.sys
11:12:43.0150 0x0654 vpcnfltr - ok
11:12:43.0183 0x0654 [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb C:\windows\system32\DRIVERS\vpcusb.sys
11:12:43.0189 0x0654 vpcusb - ok
11:12:43.0238 0x0654 [ 207B6539799CC1C112661A9B620DD233, 6B915CC7F77C867516D94865D7BF2E5C815402EF0A4488C3EB2FEF7CFA6C98F6 ] vpcvmm C:\windows\system32\drivers\vpcvmm.sys
11:12:43.0254 0x0654 vpcvmm - ok
11:12:43.0294 0x0654 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\windows\system32\drivers\vsmraid.sys
11:12:43.0300 0x0654 vsmraid - ok
11:12:43.0402 0x0654 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\windows\system32\vssvc.exe
11:12:43.0467 0x0654 VSS - ok
11:12:43.0487 0x0654 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
11:12:43.0489 0x0654 vwifibus - ok
11:12:43.0496 0x0654 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
11:12:43.0500 0x0654 vwififlt - ok
11:12:43.0534 0x0654 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
11:12:43.0536 0x0654 vwifimp - ok
11:12:43.0564 0x0654 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\windows\system32\w32time.dll
11:12:43.0585 0x0654 W32Time - ok
11:12:43.0594 0x0654 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\windows\system32\drivers\wacompen.sys
11:12:43.0596 0x0654 WacomPen - ok
11:12:43.0624 0x0654 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
11:12:43.0628 0x0654 WANARP - ok
11:12:43.0636 0x0654 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
11:12:43.0640 0x0654 Wanarpv6 - ok
11:12:43.0744 0x0654 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
11:12:43.0795 0x0654 WatAdminSvc - ok
11:12:43.0934 0x0654 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\windows\system32\wbengine.exe
11:12:43.0975 0x0654 wbengine - ok
11:12:43.0987 0x0654 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\windows\System32\wbiosrvc.dll
11:12:43.0997 0x0654 WbioSrvc - ok
11:12:44.0011 0x0654 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\windows\System32\wcncsvc.dll
11:12:44.0025 0x0654 wcncsvc - ok
11:12:44.0041 0x0654 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
11:12:44.0046 0x0654 WcsPlugInService - ok
11:12:44.0077 0x0654 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\windows\system32\drivers\wd.sys
11:12:44.0080 0x0654 Wd - ok
11:12:44.0163 0x0654 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
11:12:44.0183 0x0654 Wdf01000 - ok
11:12:44.0204 0x0654 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\windows\system32\wdi.dll
11:12:44.0210 0x0654 WdiServiceHost - ok
11:12:44.0216 0x0654 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\windows\system32\wdi.dll
11:12:44.0222 0x0654 WdiSystemHost - ok
11:12:44.0245 0x0654 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\windows\System32\webclnt.dll
11:12:44.0256 0x0654 WebClient - ok
11:12:44.0288 0x0654 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\windows\system32\wecsvc.dll
11:12:44.0298 0x0654 Wecsvc - ok
11:12:44.0313 0x0654 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\windows\System32\wercplsupport.dll
11:12:44.0319 0x0654 wercplsupport - ok
11:12:44.0326 0x0654 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\windows\System32\WerSvc.dll
11:12:44.0332 0x0654 WerSvc - ok
11:12:44.0344 0x0654 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
11:12:44.0345 0x0654 WfpLwf - ok
11:12:44.0378 0x0654 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\windows\system32\drivers\wimmount.sys
11:12:44.0381 0x0654 WIMMount - ok
11:12:44.0408 0x0654 WinDefend - ok
11:12:44.0416 0x0654 WinHttpAutoProxySvc - ok
11:12:44.0468 0x0654 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
11:12:44.0476 0x0654 Winmgmt - ok
11:12:44.0597 0x0654 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\windows\system32\WsmSvc.dll
11:12:44.0651 0x0654 WinRM - ok
11:12:44.0686 0x0654 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
11:12:44.0689 0x0654 WinUsb - ok
11:12:44.0738 0x0654 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\windows\System32\wlansvc.dll
11:12:44.0762 0x0654 Wlansvc - ok
11:12:44.0885 0x0654 [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:12:44.0929 0x0654 wlidsvc - ok
11:12:44.0947 0x0654 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
11:12:44.0949 0x0654 WmiAcpi - ok
11:12:44.0971 0x0654 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
11:12:44.0976 0x0654 wmiApSrv - ok
11:12:44.0998 0x0654 WMPNetworkSvc - ok
11:12:45.0023 0x0654 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\windows\System32\wpcsvc.dll
11:12:45.0027 0x0654 WPCSvc - ok
11:12:45.0049 0x0654 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
11:12:45.0055 0x0654 WPDBusEnum - ok
11:12:45.0090 0x0654 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
11:12:45.0092 0x0654 ws2ifsl - ok
11:12:45.0130 0x0654 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\windows\system32\wscsvc.dll
11:12:45.0142 0x0654 wscsvc - ok
11:12:45.0153 0x0654 WSearch - ok
11:12:45.0286 0x0654 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\windows\system32\wuaueng.dll
11:12:45.0361 0x0654 wuauserv - ok
11:12:45.0386 0x0654 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
11:12:45.0389 0x0654 WudfPf - ok
11:12:45.0397 0x0654 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
11:12:45.0402 0x0654 WUDFRd - ok
11:12:45.0420 0x0654 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll
11:12:45.0426 0x0654 wudfsvc - ok
11:12:45.0465 0x0654 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\windows\System32\wwansvc.dll
11:12:45.0474 0x0654 WwanSvc - ok
11:12:45.0487 0x0654 ================ Scan global ===============================
11:12:45.0535 0x0654 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
11:12:45.0592 0x0654 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
11:12:45.0614 0x0654 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
11:12:45.0646 0x0654 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
11:12:45.0678 0x0654 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
11:12:45.0693 0x0654 [ Global ] - ok
11:12:45.0694 0x0654 ================ Scan MBR ==================================
11:12:45.0703 0x0654 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
11:12:46.0216 0x0654 \Device\Harddisk0\DR0 - ok
11:12:46.0220 0x0654 ================ Scan VBR ==================================
11:12:46.0245 0x0654 [ 99DF709393706E1F739D22F0BCCB9B59 ] \Device\Harddisk0\DR0\Partition1
11:12:46.0247 0x0654 \Device\Harddisk0\DR0\Partition1 - ok
11:12:46.0268 0x0654 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 8.0.1489.300 ), 0x41000 ( enabled : updated )
11:12:46.0276 0x0654 Win FW state via NFP2: enabled
11:12:48.0997 0x0654 ============================================================
11:12:48.0997 0x0654 Scan finished
11:12:48.0997 0x0654 ============================================================
11:12:49.0010 0x06c4 Detected object count: 0
11:12:49.0010 0x06c4 Actual detected object count: 0

Edited by Bismillah, 14 March 2014 - 05:21 AM.

  • 0

Advertisements

#2
JSntgRvr
Posted 16 March 2014 - 05:11 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Welcome. :)

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that under Optional Scans, there is a checkmark on Addition.txt and Shortcut.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another two logs (Addition.txt and Shortcut.txt). Please attach these to your reply.

  • 0

#3
Bismillah
Posted 16 March 2014 - 05:45 PM

Bismillah

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 514 posts
Hi JSntgRvr!


Thanks for your help - Here are the FRST logs.


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Dan (administrator) on BISMILLAH on 16-03-2014 23:28:29
Running from C:\Users\Dan\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Windows\System32\GFNEXSrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
() C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
() C:\windows\SysWOW64\PnkBstrA.exe
() C:\windows\SysWOW64\PnkBstrB.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(TOSHIBA Corporation) C:\windows\system32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Google Inc.) C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\MusicManager.exe
(Google Inc.) C:\Users\Dan\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Dan\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(ManyCam LLC) C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Microsoft Corporation) C:\Users\Dan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Insight Software Solutions, Inc.) C:\Program Files (x86)\ShortKeys 3\shortkey.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Toshiba) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
() C:\Program Files (x86)\FAHClient\FAHClient.exe
() C:\Users\Dan\Desktop\texter.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Robot Entertainment, Inc.) C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die 2\build\game\OrcsMustDie2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Microsoft Corporation) C:\windows\system32\taskmgr.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-16] (Realtek Semiconductor)
HKLM\...\Run: [SRS Premium Sound HD] - C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe [2165120 2012-03-22] (SRS Labs, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2866960 2011-12-19] (Synaptics Incorporated)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [590256 2011-09-23] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [989056 2011-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [Teco] - C:\Program Files\TOSHIBA\TECO\Teco.exe [1548208 2011-11-24] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [712096 2011-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [710560 2011-11-26] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] - C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] - C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720 2011-02-10] (Toshiba Europe GmbH)
HKLM\...\Run: [Toshiba Registration] - C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [150992 2012-05-11] (Toshiba Europe GmbH)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ITSecMng] - C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [80840 2011-04-02] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-05] (Intel Corporation)
HKLM-x32\...\Run: [ToshibaServiceStation] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1298816 2011-07-12] (TOSHIBA Corporation)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [IndexSearch] - C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46952 2011-08-02] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] - C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [30568 2011-08-02] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] - C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
HKLM-x32\...\Run: [CanonQuickMenu] - C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] - C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [449168 2012-03-26] (CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [QuickTime Task] - "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\Run: [TOPI.EXE] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [TOPI.EXE] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-05-11] (Google Inc.)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1821888 2014-02-25] (Valve Corporation)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [Google Update] - C:\Users\Dan\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-15] (Google Inc.)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [MusicManager] - C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7382528 2014-03-03] (Google Inc.)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [Media Finder] - "C:\Program Files (x86)\Media Finder\Media Finder.exe" /opentotray
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [ManyCam] - C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe [5399888 2013-06-10] (ManyCam LLC)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [SkyDrive] - C:\Users\Dan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-02-20] (Microsoft Corporation)
HKU\S-1-5-21-269794971-2251558941-1448437433-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
Startup: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\[email protected]
ShortcutTarget: [email protected] -> C:\Program Files (x86)\FAHClient\HideConsole.exe ()
Startup: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Texter.lnk
ShortcutTarget: Texter.lnk -> C:\Users\Dan\Desktop\texter.exe ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=TEUA&bmod=TEUA
SearchScopes: HKLM - DefaultScope {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64} URL = http://www.google.co...g}&rlz=1I7TEUA;
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64} URL = http://www.google.co...g}&rlz=1I7TEUA;
SearchScopes: HKLM-x32 - DefaultScope {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64} URL = http://www.google.co...g}&rlz=1I7TEUA;
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64} URL = http://www.google.co...g}&rlz=1I7TEUA;
SearchScopes: HKCU - DefaultScope {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64} URL = http://www.google.co...UA_enGB516GB517
SearchScopes: HKCU - {1AEAB112-D45F-4C13-BAD6-EE71ED7B8B64} URL = http://www.google.co...UA_enGB516GB517
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 194.168.4.100 194.168.8.100

Chrome:
=======
CHR HomePage: hxxp://www.google.com/ig/redirectdomain?brand=TEUA&bmod=TEUA
CHR DefaultSearchKeyword: google.co.uk
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java™ Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No File
CHR Extension: (General Crawler) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel [2013-05-11]
CHR Extension: (avast! Online Security) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-08-01]
CHR Extension: (RealDownloader) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-01-12]
CHR Extension: (Skype Click to Call) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-01-27]
CHR Extension: (Google Wallet) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR HKLM-x32\...\Chrome\Extension: [dednnpigldgdbpgcdpfppmlcnnbjciel] - C:\Users\Dan\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx [2013-05-10]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR HKLM-x32\...\Chrome\Extension: [lpmkgpnbiojfaoklbkpfneikocaobfai] - C:\Users\Dan\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx [2014-03-03]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 GFNEXSrv; C:\Windows\System32\GFNEXSrv.exe [162824 2010-09-10] ()
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation)
R2 MySQL55; C:\ProgramData\MySQL\MySQL Server 5.5\my.ini [9515 2013-01-03] ()
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc.)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [66872 2014-02-22] ()
R2 PnkBstrB; C:\windows\SysWOW64\PnkBstrB.exe [107832 2014-02-22] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
R2 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-10] (Toshiba Europe GmbH)
S4 TlntSvr; C:\Windows\System32\tlntsvr.exe [81920 2009-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2011-03-01] (Microsoft Corporation)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-31] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-31] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-31] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [21096 2012-01-05] (Realtek Microelectronics)
R3 RTL8192Ce; C:\Windows\System32\DRIVERS\rtwlane.sys [1082472 2012-01-17] (Realtek Semiconductor Corporation )
S3 Tosrfcom; No ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 TDEIO; \??\C:\Windows\SysWOW64\sysprep\BOOTPRIO\tdeio64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-16 23:28 - 2014-03-16 23:29 - 00027774 _____ () C:\Users\Dan\Downloads\FRST.txt
2014-03-16 23:28 - 2014-03-16 23:28 - 00000000 ____D () C:\FRST
2014-03-16 23:27 - 2014-03-16 23:27 - 02157056 _____ (Farbar) C:\Users\Dan\Downloads\FRST64.exe
2014-03-16 23:27 - 2014-03-16 23:27 - 01145856 _____ (Farbar) C:\Users\Dan\Downloads\FRST.exe
2014-03-16 20:57 - 2014-03-16 20:57 - 00013390 _____ () C:\Users\Dan\Downloads\Prison Architect.CT
2014-03-16 20:57 - 2014-03-16 20:57 - 00013390 _____ () C:\Users\Dan\Desktop\Prison Architect.CT
2014-03-16 12:38 - 2014-03-16 12:38 - 04110135 _____ () C:\Users\Dan\Downloads\tdsskiller (1).zip
2014-03-16 12:37 - 2014-03-16 12:37 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Dan\Downloads\tdsskiller (2).exe
2014-03-14 21:19 - 2014-03-14 21:19 - 00549744 _____ (ROBLOX Corporation) C:\Users\Dan\Downloads\RobloxPlayerLauncher (1).exe
2014-03-14 11:29 - 2014-03-14 11:29 - 00000013 _____ () C:\Users\Dan\Desktop\dbs chec.txt
2014-03-14 11:06 - 2014-03-14 11:07 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\Dan\Downloads\tdsskiller (1).exe
2014-03-14 11:05 - 2014-03-14 11:05 - 00002633 _____ () C:\Users\Dan\Desktop\aswMBR.txt
2014-03-14 11:05 - 2014-03-14 11:05 - 00000512 _____ () C:\Users\Dan\Desktop\MBR.dat
2014-03-14 10:57 - 2014-03-14 10:57 - 00241908 _____ () C:\Users\Dan\AppData\Roaming\mbam.context.scan
2014-03-14 10:25 - 2014-03-14 10:25 - 00130148 _____ () C:\Users\Dan\Downloads\OTL.Txt
2014-03-14 10:03 - 2014-03-14 10:02 - 04745728 _____ (AVAST Software) C:\Users\Dan\Desktop\aswmbr (1).exe
2014-03-14 10:02 - 2014-03-14 10:02 - 04745728 _____ (AVAST Software) C:\Users\Dan\Downloads\aswmbr (1).exe
2014-03-14 09:59 - 2014-03-14 09:59 - 00602112 _____ (OldTimer Tools) C:\Users\Dan\Downloads\OTL (1).exe
2014-03-13 22:59 - 2014-03-14 18:31 - 00003338 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-269794971-2251558941-1448437433-1000
2014-03-13 06:53 - 2014-03-01 05:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-03-13 06:53 - 2014-03-01 05:16 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-03-13 06:53 - 2014-03-01 04:58 - 02765824 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-03-13 06:53 - 2014-03-01 04:52 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-03-13 06:53 - 2014-03-01 04:51 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-03-13 06:53 - 2014-03-01 04:42 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-03-13 06:53 - 2014-03-01 04:40 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-03-13 06:53 - 2014-03-01 04:37 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-03-13 06:53 - 2014-03-01 04:33 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-03-13 06:53 - 2014-03-01 04:33 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-03-13 06:53 - 2014-03-01 04:32 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-03-13 06:53 - 2014-03-01 04:30 - 17074688 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-03-13 06:53 - 2014-03-01 04:23 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-03-13 06:53 - 2014-03-01 04:17 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-03-13 06:53 - 2014-03-01 04:11 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-03-13 06:53 - 2014-03-01 04:02 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-03-13 06:53 - 2014-03-01 03:54 - 05768704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-03-13 06:53 - 2014-03-01 03:52 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-03-13 06:53 - 2014-03-01 03:51 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-03-13 06:53 - 2014-03-01 03:47 - 02168320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-03-13 06:53 - 2014-03-01 03:43 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-03-13 06:53 - 2014-03-01 03:43 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-03-13 06:53 - 2014-03-01 03:42 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-03-13 06:53 - 2014-03-01 03:40 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-03-13 06:53 - 2014-03-01 03:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-03-13 06:53 - 2014-03-01 03:37 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-03-13 06:53 - 2014-03-01 03:35 - 02041856 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-03-13 06:53 - 2014-03-01 03:18 - 13051904 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-03-13 06:53 - 2014-03-01 03:16 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-03-13 06:53 - 2014-03-01 03:14 - 04244480 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-03-13 06:53 - 2014-03-01 03:10 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-03-13 06:53 - 2014-03-01 03:03 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-03-13 06:53 - 2014-03-01 03:00 - 01964032 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-03-13 06:53 - 2014-03-01 02:57 - 11266048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-03-13 06:53 - 2014-03-01 02:38 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-03-13 06:53 - 2014-03-01 02:32 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-03-13 06:53 - 2014-03-01 02:27 - 01156096 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-03-13 06:53 - 2014-03-01 02:25 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-03-13 06:53 - 2014-03-01 02:25 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-03-13 06:53 - 2014-02-07 01:23 - 03156480 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-03-13 06:53 - 2014-01-29 02:32 - 00484864 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2014-03-13 06:53 - 2014-01-29 02:06 - 00381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2014-03-13 06:53 - 2014-01-28 02:32 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2014-03-13 06:52 - 2014-03-01 06:05 - 23133696 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-03-13 06:52 - 2014-02-04 02:32 - 01424384 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-03-13 06:52 - 2014-02-04 02:32 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-03-13 06:52 - 2014-02-04 02:04 - 01230336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2014-03-13 06:52 - 2014-02-04 02:04 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-03-13 06:49 - 2014-03-14 18:31 - 00003200 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-269794971-2251558941-1448437433-1000
2014-03-12 00:22 - 2014-03-12 00:22 - 05777288 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2014-03-10 21:24 - 2014-03-10 21:25 - 02785486 _____ () C:\Users\Dan\Downloads\Pregnancy and maternal health.pptx
2014-03-10 21:23 - 2014-03-10 21:23 - 01874464 _____ () C:\Users\Dan\Downloads\Holism (1).pptx
2014-03-10 21:22 - 2014-03-10 21:22 - 01874464 _____ () C:\Users\Dan\Downloads\Holism.pptx
2014-03-10 21:17 - 2014-03-10 21:17 - 00993280 _____ () C:\Users\Dan\Downloads\First Aid For All PNP 2014.ppt
2014-03-09 22:54 - 2014-03-09 22:54 - 07513600 _____ () C:\Users\Dan\Downloads\Yr 11 Stand out from the crowd Brune Park.ppt
2014-03-09 22:54 - 2014-03-09 22:54 - 07513600 _____ () C:\Users\Dan\Downloads\Yr 11 Stand out from the crowd Brune Park (1).ppt
2014-03-08 23:49 - 2014-03-08 23:49 - 00003288 _____ () C:\windows\System32\Tasks\{AC94EFDD-A455-41FF-A9C1-EE196ADC45AE}
2014-03-07 15:11 - 2014-03-09 22:52 - 00000008 _____ () C:\Users\Dan\Desktop\sussed password.txt
2014-03-05 00:03 - 2014-03-05 00:05 - 140938820 _____ () C:\Users\Dan\Downloads\Unconfirmed 931092.crdownload
2014-03-03 12:13 - 2014-03-03 12:13 - 00001794 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-03-03 12:11 - 2014-03-03 12:13 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-03 12:11 - 2014-03-03 12:13 - 00000000 ____D () C:\Program Files\iTunes
2014-03-03 12:11 - 2014-03-03 12:13 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-03 12:11 - 2014-03-03 12:11 - 00000000 ____D () C:\Program Files\iPod
2014-03-01 17:44 - 2014-03-01 17:44 - 00000000 ____D () C:\Users\Dan\AppData\Local\Skype
2014-02-26 23:37 - 2014-02-27 00:11 - 63728260 _____ () C:\Users\Dan\Downloads\Video.wmv
2014-02-24 20:07 - 2014-02-24 20:07 - 00000000 ____D () C:\Users\Dan\AppData\Local\Uber Entertainment
2014-02-22 18:44 - 2014-02-22 18:44 - 00107832 _____ () C:\windows\SysWOW64\PnkBstrB.exe
2014-02-22 18:43 - 2014-02-22 18:43 - 02337865 _____ () C:\windows\SysWOW64\pbsvc.exe
2014-02-22 18:43 - 2014-02-22 18:43 - 00066872 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2014-02-20 16:47 - 2014-02-20 16:47 - 00002123 _____ () C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-02-20 16:47 - 2014-02-20 16:47 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-02-16 22:01 - 2014-02-16 22:01 - 00000000 ____D () C:\Users\Dan\Extinction1
2014-02-16 21:51 - 2014-02-16 21:52 - 476179064 _____ () C:\Users\Dan\Downloads\Extinctionv2 Release.rar
2014-02-16 21:51 - 2014-02-16 21:52 - 00000000 ____D () C:\Users\Dan\Desktop\New folder
2014-02-16 20:00 - 2014-02-16 22:09 - 00000000 ____D () C:\Users\Dan\Desktop\mbar
2014-02-16 20:00 - 2014-02-16 22:09 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-16 20:00 - 2014-02-16 20:00 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-02-16 19:59 - 2014-02-16 19:59 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Dan\Downloads\mbar-1.07.0.1009.exe
2014-02-15 18:00 - 2013-12-21 09:53 - 00548864 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-02-15 18:00 - 2013-12-21 08:56 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll

==================== One Month Modified Files and Folders =======

2014-03-16 23:29 - 2014-03-16 23:28 - 00027774 _____ () C:\Users\Dan\Downloads\FRST.txt
2014-03-16 23:28 - 2014-03-16 23:28 - 00000000 ____D () C:\FRST
2014-03-16 23:27 - 2014-03-16 23:27 - 02157056 _____ (Farbar) C:\Users\Dan\Downloads\FRST64.exe
2014-03-16 23:27 - 2014-03-16 23:27 - 01145856 _____ (Farbar) C:\Users\Dan\Downloads\FRST.exe
2014-03-16 23:27 - 2012-12-27 23:20 - 00000000 ____D () C:\Users\Dan\AppData\Roaming\Skype
2014-03-16 23:22 - 2012-05-11 18:47 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-03-16 23:05 - 2014-01-27 11:37 - 00000434 _____ () C:\Users\Dan\Desktop\texter.ini
2014-03-16 23:04 - 2012-05-11 18:52 - 00000912 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-16 22:54 - 2013-02-15 20:03 - 00000900 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000UA.job
2014-03-16 22:54 - 2013-02-15 20:03 - 00000848 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000Core.job
2014-03-16 22:15 - 2012-05-31 07:19 - 01382213 _____ () C:\windows\WindowsUpdate.log
2014-03-16 22:10 - 2012-12-27 15:13 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-16 21:21 - 2009-07-14 03:20 - 00000000 ____D () C:\windows\system32\NDF
2014-03-16 20:57 - 2014-03-16 20:57 - 00013390 _____ () C:\Users\Dan\Downloads\Prison Architect.CT
2014-03-16 20:57 - 2014-03-16 20:57 - 00013390 _____ () C:\Users\Dan\Desktop\Prison Architect.CT
2014-03-16 17:04 - 2012-05-11 18:52 - 00000908 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-16 13:50 - 2013-08-20 14:48 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-03-16 12:38 - 2014-03-16 12:38 - 04110135 _____ () C:\Users\Dan\Downloads\tdsskiller (1).zip
2014-03-16 12:37 - 2014-03-16 12:37 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Dan\Downloads\tdsskiller (2).exe
2014-03-16 12:07 - 2014-02-01 20:02 - 00000000 ____D () C:\Users\Dan\AppData\Local\Octodad Dadliest Catch
2014-03-16 11:59 - 2012-12-27 15:10 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-03-15 17:59 - 2009-07-14 04:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-15 17:59 - 2009-07-14 04:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-15 17:52 - 2013-10-14 22:37 - 00004970 _____ () C:\windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Bismillah-Dan Bismillah
2014-03-15 17:50 - 2013-11-07 21:02 - 00000000 ____D () C:\Users\Dan\AppData\Roaming\FAHClient
2014-03-15 17:50 - 2013-04-29 19:06 - 00000000 ___RD () C:\Users\Dan\SkyDrive
2014-03-15 17:48 - 2012-05-31 07:22 - 00000828 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-03-15 17:47 - 2009-07-14 05:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-03-15 17:47 - 2009-07-14 04:51 - 00107766 _____ () C:\windows\setupact.log
2014-03-14 21:20 - 2013-02-09 00:02 - 00001319 _____ () C:\Users\Dan\Desktop\ROBLOX Player.lnk
2014-03-14 21:20 - 2013-02-09 00:01 - 00001138 _____ () C:\Users\Dan\Desktop\ROBLOX Studio 2013.lnk
2014-03-14 21:20 - 2013-02-09 00:01 - 00000000 ____D () C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-03-14 21:19 - 2014-03-14 21:19 - 00549744 _____ (ROBLOX Corporation) C:\Users\Dan\Downloads\RobloxPlayerLauncher (1).exe
2014-03-14 18:31 - 2014-03-13 22:59 - 00003338 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-269794971-2251558941-1448437433-1000
2014-03-14 18:31 - 2014-03-13 06:49 - 00003200 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-269794971-2251558941-1448437433-1000
2014-03-14 11:29 - 2014-03-14 11:29 - 00000013 _____ () C:\Users\Dan\Desktop\dbs chec.txt
2014-03-14 11:07 - 2014-03-14 11:06 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\Dan\Downloads\tdsskiller (1).exe
2014-03-14 11:05 - 2014-03-14 11:05 - 00002633 _____ () C:\Users\Dan\Desktop\aswMBR.txt
2014-03-14 11:05 - 2014-03-14 11:05 - 00000512 _____ () C:\Users\Dan\Desktop\MBR.dat
2014-03-14 10:57 - 2014-03-14 10:57 - 00241908 _____ () C:\Users\Dan\AppData\Roaming\mbam.context.scan
2014-03-14 10:25 - 2014-03-14 10:25 - 00130148 _____ () C:\Users\Dan\Downloads\OTL.Txt
2014-03-14 10:02 - 2014-03-14 10:03 - 04745728 _____ (AVAST Software) C:\Users\Dan\Desktop\aswmbr (1).exe
2014-03-14 10:02 - 2014-03-14 10:02 - 04745728 _____ (AVAST Software) C:\Users\Dan\Downloads\aswmbr (1).exe
2014-03-14 09:59 - 2014-03-14 09:59 - 00602112 _____ (OldTimer Tools) C:\Users\Dan\Downloads\OTL (1).exe
2014-03-14 09:46 - 2013-01-26 20:25 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-13 22:54 - 2009-07-14 04:45 - 00443712 _____ () C:\windows\system32\FNTCACHE.DAT
2014-03-13 22:52 - 2013-03-14 01:28 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-13 22:52 - 2013-03-14 01:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-13 06:56 - 2011-02-11 15:27 - 00488900 _____ () C:\windows\system32\perfh00B.dat
2014-03-13 06:56 - 2011-02-11 15:27 - 00107486 _____ () C:\windows\system32\perfc00B.dat
2014-03-13 06:56 - 2011-02-11 15:18 - 00501912 _____ () C:\windows\system32\perfh014.dat
2014-03-13 06:56 - 2011-02-11 15:18 - 00101370 _____ () C:\windows\system32\perfc014.dat
2014-03-13 06:56 - 2011-02-11 15:10 - 00671118 _____ () C:\windows\system32\perfh01D.dat
2014-03-13 06:56 - 2011-02-11 15:10 - 00148440 _____ () C:\windows\system32\perfc01D.dat
2014-03-13 06:56 - 2009-07-14 05:13 - 02735678 _____ () C:\windows\system32\PerfStringBackup.INI
2014-03-13 00:23 - 2013-08-20 16:30 - 00000000 ____D () C:\Users\Dan\Documents\Southampton University
2014-03-12 00:22 - 2014-03-12 00:22 - 05777288 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2014-03-12 00:22 - 2012-05-11 18:48 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 00:22 - 2012-05-11 18:47 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 00:22 - 2012-05-11 18:47 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-11 23:16 - 2009-07-14 05:08 - 00032608 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-03-10 21:25 - 2014-03-10 21:24 - 02785486 _____ () C:\Users\Dan\Downloads\Pregnancy and maternal health.pptx
2014-03-10 21:23 - 2014-03-10 21:23 - 01874464 _____ () C:\Users\Dan\Downloads\Holism (1).pptx
2014-03-10 21:22 - 2014-03-10 21:22 - 01874464 _____ () C:\Users\Dan\Downloads\Holism.pptx
2014-03-10 21:17 - 2014-03-10 21:17 - 00993280 _____ () C:\Users\Dan\Downloads\First Aid For All PNP 2014.ppt
2014-03-09 22:54 - 2014-03-09 22:54 - 07513600 _____ () C:\Users\Dan\Downloads\Yr 11 Stand out from the crowd Brune Park.ppt
2014-03-09 22:54 - 2014-03-09 22:54 - 07513600 _____ () C:\Users\Dan\Downloads\Yr 11 Stand out from the crowd Brune Park (1).ppt
2014-03-09 22:52 - 2014-03-07 15:11 - 00000008 _____ () C:\Users\Dan\Desktop\sussed password.txt
2014-03-08 23:49 - 2014-03-08 23:49 - 00003288 _____ () C:\windows\System32\Tasks\{AC94EFDD-A455-41FF-A9C1-EE196ADC45AE}
2014-03-08 23:48 - 2012-05-11 18:47 - 00000000 ____D () C:\windows\SysWOW64\Macromed
2014-03-07 15:53 - 2014-01-27 11:37 - 00000000 ____D () C:\Users\Dan\Desktop\resources
2014-03-07 15:53 - 2009-07-14 03:20 - 00000000 ____D () C:\windows\registration
2014-03-07 08:03 - 2012-12-27 15:10 - 00001933 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-03-07 08:03 - 2012-12-27 15:10 - 00000000 _____ () C:\windows\SysWOW64\config.nt
2014-03-07 07:56 - 2012-12-27 14:49 - 00000000 ____D () C:\Users\Dan
2014-03-05 00:05 - 2014-03-05 00:03 - 140938820 _____ () C:\Users\Dan\Downloads\Unconfirmed 931092.crdownload
2014-03-04 00:22 - 2013-03-30 17:12 - 05186474 _____ (Swearware) C:\Users\Dan\Downloads\ComboFix.exe
2014-03-03 12:13 - 2014-03-03 12:13 - 00001794 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-03-03 12:13 - 2014-03-03 12:11 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-03 12:13 - 2014-03-03 12:11 - 00000000 ____D () C:\Program Files\iTunes
2014-03-03 12:13 - 2014-03-03 12:11 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-03 12:11 - 2014-03-03 12:11 - 00000000 ____D () C:\Program Files\iPod
2014-03-03 12:06 - 2013-02-15 19:55 - 00000000 ____D () C:\ProgramData\Apple
2014-03-01 17:44 - 2014-03-01 17:44 - 00000000 ____D () C:\Users\Dan\AppData\Local\Skype
2014-03-01 17:44 - 2012-05-11 18:35 - 00000000 ____D () C:\ProgramData\Skype
2014-03-01 06:05 - 2014-03-13 06:52 - 23133696 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-03-01 05:17 - 2014-03-13 06:53 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-03-01 05:16 - 2014-03-13 06:53 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-03-01 04:58 - 2014-03-13 06:53 - 02765824 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-03-01 04:52 - 2014-03-13 06:53 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-03-01 04:51 - 2014-03-13 06:53 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-03-01 04:42 - 2014-03-13 06:53 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-03-01 04:40 - 2014-03-13 06:53 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-03-01 04:37 - 2014-03-13 06:53 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-03-01 04:33 - 2014-03-13 06:53 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-03-01 04:33 - 2014-03-13 06:53 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-03-01 04:32 - 2014-03-13 06:53 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-03-01 04:30 - 2014-03-13 06:53 - 17074688 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-03-01 04:23 - 2014-03-13 06:53 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-03-01 04:17 - 2014-03-13 06:53 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-03-01 04:11 - 2014-03-13 06:53 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-03-01 04:02 - 2014-03-13 06:53 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-03-01 03:54 - 2014-03-13 06:53 - 05768704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-03-01 03:52 - 2014-03-13 06:53 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-03-01 03:51 - 2014-03-13 06:53 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-03-01 03:47 - 2014-03-13 06:53 - 02168320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-03-01 03:43 - 2014-03-13 06:53 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-03-01 03:43 - 2014-03-13 06:53 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-03-01 03:42 - 2014-03-13 06:53 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-03-01 03:40 - 2014-03-13 06:53 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-03-01 03:38 - 2014-03-13 06:53 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-03-01 03:37 - 2014-03-13 06:53 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-03-01 03:35 - 2014-03-13 06:53 - 02041856 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-03-01 03:18 - 2014-03-13 06:53 - 13051904 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-03-01 03:16 - 2014-03-13 06:53 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-03-01 03:14 - 2014-03-13 06:53 - 04244480 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-03-01 03:10 - 2014-03-13 06:53 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-03-01 03:03 - 2014-03-13 06:53 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-03-01 03:00 - 2014-03-13 06:53 - 01964032 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-03-01 02:57 - 2014-03-13 06:53 - 11266048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-03-01 02:38 - 2014-03-13 06:53 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-03-01 02:32 - 2014-03-13 06:53 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-03-01 02:27 - 2014-03-13 06:53 - 01156096 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-03-01 02:25 - 2014-03-13 06:53 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-03-01 02:25 - 2014-03-13 06:53 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-02-27 00:24 - 2013-01-05 21:09 - 02673230 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-02-27 00:11 - 2014-02-26 23:37 - 63728260 _____ () C:\Users\Dan\Downloads\2612aspphyx_07.wmv
2014-02-26 17:46 - 2010-11-21 03:47 - 00326472 _____ () C:\windows\PFRO.log
2014-02-24 20:07 - 2014-02-24 20:07 - 00000000 ____D () C:\Users\Dan\AppData\Local\Uber Entertainment
2014-02-23 00:53 - 2014-02-03 23:30 - 00000000 ____D () C:\Users\Dan\AppData\Roaming\PrimoPDF
2014-02-23 00:47 - 2014-02-03 23:26 - 00032999 ____H () C:\Users\Dan\Documents\~WRL0005.tmp
2014-02-22 20:37 - 2012-12-27 16:17 - 00000000 ____D () C:\Users\Dan\Documents\My Games
2014-02-22 18:44 - 2014-02-22 18:44 - 00107832 _____ () C:\windows\SysWOW64\PnkBstrB.exe
2014-02-22 18:43 - 2014-02-22 18:43 - 02337865 _____ () C:\windows\SysWOW64\pbsvc.exe
2014-02-22 18:43 - 2014-02-22 18:43 - 00066872 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2014-02-21 23:33 - 2012-05-31 07:41 - 00525436 _____ () C:\windows\DirectX.log
2014-02-20 16:59 - 2012-05-11 18:52 - 00003908 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-20 16:59 - 2012-05-11 18:52 - 00003656 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-20 16:47 - 2014-02-20 16:47 - 00002123 _____ () C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-02-20 16:47 - 2014-02-20 16:47 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-02-16 22:09 - 2014-02-16 20:00 - 00000000 ____D () C:\Users\Dan\Desktop\mbar
2014-02-16 22:09 - 2014-02-16 20:00 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-16 22:01 - 2014-02-16 22:01 - 00000000 ____D () C:\Users\Dan\Extinction1
2014-02-16 21:52 - 2014-02-16 21:51 - 476179064 _____ () C:\Users\Dan\Downloads\Extinctionv2 Release.rar
2014-02-16 21:52 - 2014-02-16 21:51 - 00000000 ____D () C:\Users\Dan\Desktop\New folder
2014-02-16 20:00 - 2014-02-16 20:00 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-02-16 19:59 - 2014-02-16 19:59 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Dan\Downloads\mbar-1.07.0.1009.exe
2014-02-15 23:47 - 2013-07-26 13:13 - 00000000 ____D () C:\windows\system32\MRT
2014-02-15 23:45 - 2012-12-29 19:10 - 88567024 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-02-15 22:49 - 2013-02-15 20:03 - 00003866 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000UA
2014-02-15 22:49 - 2013-02-15 20:03 - 00003470 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000Core

Files to move or delete:
====================
C:\ProgramData\hash.dat
C:\Users\Dan\jagex_cl_loginapplet_LIVE.dat
C:\Users\Dan\jagex_cl_runescape_LIVE.dat
C:\Users\Dan\jagex_cl_runescape_LIVE1.dat
C:\Users\Dan\random.dat


Some content of TEMP:
====================
C:\Users\Dan\AppData\Local\Temp\drm_dyndata_7370014.dll
C:\Users\Dan\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Dan\AppData\Local\Temp\jansi-32-git-Bukkit-1.4.7-R1.0-72-g261cacf-b2714jnks.dll
C:\Users\Dan\AppData\Local\Temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll
C:\Users\Dan\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Dan\AppData\Local\Temp\Offercast2802_MYC_.exe
C:\Users\Dan\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Dan\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Dan\AppData\Local\Temp\_is3F6.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-04 21:30

==================== End Of Log ============================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Dan at 2014-03-16 23:30:23
Running from C:\Users\Dan\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

8BitMMO (HKLM-x32\...\Steam App 250420) (Version: - Archive Entertainment)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (HKLM-x32\...\{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}) (Version: 15.4.5722.2 - Microsoft Corporation)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.6.0.6090 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.6.0.6090 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{70F8B183-99EB-4304-BA35-080E2DFFD2A3}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires Online (HKLM-x32\...\GFWL_{4D530FA3-9B89-4186-98B7-F51000008100}) (Version: 1.0.0000.129 - Microsoft Studios)
Age of Empires Online (HKLM-x32\...\Steam App 105430) (Version: - Microsoft)
Age of Empires Online (x32 Version: 1.0.0000.129 - Microsoft Studios) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Anomaly 2 (HKLM-x32\...\Steam App 236730) (Version: - 11 bit studios)
Antichamber (HKLM-x32\...\Steam App 219890) (Version: - )
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 8.0.1489.0 - AVAST Software)
AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.)
Batch Picture Resizer 5.1 (HKLM-x32\...\Batch Picture Resizer_is1) (Version: 5.1 - SoftOrbits)
BBC iPlayer Desktop (HKLM-x32\...\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1) (Version: 3.2.7 - British Broadcasting Corp.)
BBC iPlayer Desktop (x32 Version: 3.2.7 - British Broadcasting Corp.) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Blueline 1.1.1 (HKLM-x32\...\Blueline_is1) (Version: - )
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v9.00.00(T) - TOSHIBA CORPORATION)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version: - Gearbox Software)
Borderlands 2: Premiere Club (HKLM-x32\...\Steam App 213231) (Version: - GearBox Software )
Brother MFL-Pro Suite DCP-J4110DW (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Bullzip PDF Printer 9.3.0.1516 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.3.0.1516 - Bullzip)
Cake Mania (x32 Version: 2.2.0.98 - WildTangent) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.3.5.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon MG5400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5400_series) (Version: 1.00 - Canon Inc.)
Canon MG5400 series On-screen Manual (HKLM-x32\...\Canon MG5400 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon MG5400 series User Registration (HKLM-x32\...\Canon MG5400 series User Registration) (Version: - Canon Inc.‎)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.0.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version: - Dark Byte)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
CorsixTH 0.20 (HKLM-x32\...\CorsixTH) (Version: 0.20 - CorsixTH Team)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - )
Dota 2 Test (HKLM-x32\...\Steam App 205790) (Version: - )
Dream (HKLM-x32\...\Steam App 229580) (Version: - HyperSloth)
Empire: Total War (HKLM-x32\...\Steam App 10500) (Version: - The Creative Assembly)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Evoland (HKLM-x32\...\Steam App 233470) (Version: - Shiro Games)
Faerie Solitaire (HKLM-x32\...\Steam App 38600) (Version: - Subsoap)
FAHClient (HKLM-x32\...\FAHClient) (Version: 7.3.6 - Stanford University)
Free YouTube Downloader 3.5.134 (HKLM-x32\...\{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1) (Version: - HOW Inc.)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version: - Subset Games)
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version: - Greenheart Games)
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Team Garry)
GlassFish Server Open Source Edition 3.0.1 (HKLM-x32\...\nbi-glassfish-mod-3.0.1.22.0) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4805.320 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version: - Rockstar)
Half-Life Dedicated Server Update Tool (HKLM-x32\...\Half-Life Dedicated Server Update Tool) (Version: - )
High-Definition Video Playback (x32 Version: 11.1.10500.2.65 - Nero AG) Hidden
HijackThis 2.0.2 (HKLM-x32\...\HijackThis) (Version: 2.0.2 - TrendMicro)
Hospital Tycoon (HKLM-x32\...\Steam App 11590) (Version: - Deep Red Limited)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden
inSSIDer (HKLM-x32\...\{65A5E87D-7A3F-4819-807D-B86990D5F369}) (Version: 2.1.6 - MetaGeek)
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 9 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217009F0}) (Version: 7.0.90 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java SE Development Kit 7 Update 10 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170100}) (Version: 1.7.0.100 - Oracle)
Java SE Development Kit 7 Update 11 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170110}) (Version: 1.7.0.110 - Oracle)
Java™ 6 Update 39 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216039FF}) (Version: 6.0.390 - Oracle)
Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version: - Squad)
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
ManyCam 3.1.57 (HKLM-x32\...\ManyCam) (Version: 3.1.57 - ManyCam LLC)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.1.177.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.1.177.0 - Microsoft Corporation) Hidden
Microsoft Office 365 Home Premium - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4551.1011 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Music Manager (HKCU\...\MusicManager) (Version: - Google, Inc.)
My Game Long Name (HKLM\...\UDK-3531519b-ca54-4c4e-8864-5ac89628ba53) (Version: - Epic Games, Inc.)
MySQL Installer (HKLM-x32\...\{236FF571-7197-40E9-921D-D5FDC752C697}) (Version: 1.1.5.0 - Oracle Corporation)
MySQL Server 5.5 (HKLM\...\{6150345A-1382-4713-B38B-482388DC7E7B}) (Version: 5.5.29 - Oracle Corporation)
MySQL Workbench 5.2 CE (HKLM-x32\...\{FF0815E9-0ECC-48B5-AF2C-47F3601CEC2E}) (Version: 5.2.45 - Oracle Corporation)
Mystery P.I. - The London Caper (x32 Version: 2.2.0.95 - WildTangent) Hidden
Nero 11 Essentials (HKLM-x32\...\{F8635CF8-B797-4EFD-80BC-DE2D26C65D4F}) (Version: 11.0.00300 - Nero AG)
Nero 11 Kwik Themes Basic (x32 Version: 11.0.11200.12.0 - Nero AG) Hidden
Nero BackItUp 11 (x32 Version: 6.0.18000.19.100 - Nero AG) Hidden
Nero BackItUp 11 Help (CHM) (x32 Version: 11.0.10200 - Nero AG) Hidden
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG)
Nero BurnRights 11 (x32 Version: 5.0.10300.4.100 - Nero AG) Hidden
Nero BurnRights 11 Help (CHM) (x32 Version: 11.0.10100 - Nero AG) Hidden
Nero ControlCenter 11 (x32 Version: 11.0.12700.0.27 - Nero AG) Hidden
Nero ControlCenter 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden
Nero Core Components 11 (x32 Version: 11.0.15500.1.16 - Nero AG) Hidden
Nero Express 11 (x32 Version: 11.0.11900.24.100 - Nero AG) Hidden
Nero Express 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden
Nero Kwik Media (x32 Version: 1.10.24800.146.100 - Nero AG) Hidden
Nero Kwik Media Help (CHM) (x32 Version: 11.0.10200 - Nero AG) Hidden
Nero RescueAgent 11 (x32 Version: 4.0.10600.10.100 - Nero AG) Hidden
Nero RescueAgent 11 Help (CHM) (x32 Version: 11.0.10400 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11400.27.0 - Nero AG) Hidden
nero.prerequisites.msi (x32 Version: 11.0.20008 - Nero AG) Hidden
NetBeans IDE 6.9.1 (HKLM-x32\...\nbi-nb-base-6.9.1.0.0) (Version: 6.9.1 - NetBeans.org)
NetBeans IDE 7.2.1 (HKLM-x32\...\nbi-nb-base-7.2.1.0.201210100934) (Version: 7.2.1 - NetBeans.org)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.2.3 - )
Nuance PaperPort 12 (HKLM-x32\...\{88B5FBDC-967D-4B1F-B291-39284AE12201}) (Version: 12.1.0005 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Octodad: Dadliest Catch (HKLM-x32\...\Steam App 224480) (Version: - Young Horses)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.8 - Pando Networks Inc.)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version: - 3909)
PC Remote (HKLM-x32\...\{5CDB70CD-C4F4-4A2F-A676-36F4C8FAE377}) (Version: 3.46 - PC Remote)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r4600) (Version: - )
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version: - Ndemic Creations)
Planetary Annihilation (HKLM-x32\...\Steam App 233250) (Version: - Uber Entertainment)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Pocket Tanks v1.6 (HKLM-x32\...\Pocket Tanks_is1) (Version: 1.6 - Blitwise Productions, LLC)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Premium Sound HD (HKLM\...\{3007FF9F-5B2C-41FF-8BFC-08BF25DB2681}) (Version: 1.12.1800 - SRS Labs, Inc.)
PrimoPDF -- brought to you by Nitro PDF Software (HKLM-x32\...\PrimoPDF) (Version: 5 - Nitro PDF Software)
Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RealDownloader (x32 Version: 1.3.0 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.0 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6597 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.30130 - Realtek Semiconductor Corp.)
Realtek WLAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173001290E16}) (Version: 2.00.0016 - REALTEK Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
ROBLOX Player for Dan (HKCU\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROBLOX Studio 2013 for Dan (HKCU\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
RtkClassFilter (HKLM-x32\...\InstallShield_{8220FCF2-A57F-4236-BFCC-C6C2268E851E}) (Version: 1.2.1.4 - REALTEK Semiconductor Corp)
RtkClassFilter (x32 Version: 1.2.1.4 - REALTEK Semiconductor Corp) Hidden
RuneScape Launcher 1.2.3 (HKLM-x32\...\{FAE99C85-0732-4C58-9C6B-10B5B12FA2E9}) (Version: 1.2.3 - Jagex Ltd)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version: - Deep Silver Volition)
Saints Row IV Inauguration Station (HKLM-x32\...\Steam App 242590) (Version: - )
Scansoft PDF Professional (x32 Version: - ) Hidden
ShortKeys 3 (HKLM-x32\...\ShortKeys 3) (Version: 3.4.0.1 - Insight Software Solutions, Inc.)
ShortKeys Lite (HKLM-x32\...\ShortKeys Lite) (Version: 2.3.2.1 - Insight Software Solutions, Inc.)
Sid Meier's Civilization III: Complete (HKLM-x32\...\Steam App 3910) (Version: - Firaxis)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
Sid Meier's Railroads! (HKLM-x32\...\Steam App 7600) (Version: - Firaxis Games)
Signs of Life (HKLM-x32\...\Steam App 263200) (Version: - Sweet Dog Studios)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.1.15383.6004 - Microsoft Corporation)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Smashmuck Champions (HKLM-x32\...\Steam App 218330) (Version: - Kiz Studios)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version: - Three Rings)
Spore (HKLM-x32\...\Steam App 17390) (Version: - Maxis)
Star Wars - Battlefront II (HKLM-x32\...\Steam App 6060) (Version: - Pandemic Studios)
Star Wars: Empire at War Gold (HKLM-x32\...\Steam App 32470) (Version: - )
Star Wars: Knights of the Old Republic (HKLM-x32\...\Steam App 32370) (Version: - BioWare)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold (HKLM-x32\...\Steam App 40950) (Version: - Firefly Studios)
Stronghold 2 (HKLM-x32\...\Steam App 40960) (Version: - Firefly Studios)
Stronghold 3 (HKLM-x32\...\Steam App 47400) (Version: - Firefly Studios)
Stronghold Crusader + Extreme (HKLM-x32\...\Steam App 40970) (Version: - Firefly Studios)
Stronghold Legends (HKLM-x32\...\Steam App 40980) (Version: - Firefly Studios)
Surgeon Simulator 2013 (HKLM-x32\...\Steam App 233720) (Version: - Bossa Studios)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.38.2 - Synaptics Incorporated)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.16642 - TeamViewer)
The Elder Scrolls IV: Oblivion (HKLM-x32\...\Steam App 22330) (Version: - Bethesda Game Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Ship (HKLM-x32\...\Steam App 2400) (Version: - Outerlight)
The Ship Dedicated Server (HKLM-x32\...\Steam App 2403) (Version: - Outerlight)
The Ship Single Player (HKLM-x32\...\Steam App 2420) (Version: - Outerlight)
The Ship Tutorial (HKLM-x32\...\Steam App 2430) (Version: - Outerlight)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version: - Galactic Cafe)
Theme Park World (HKLM-x32\...\Theme Park World) (Version: - )
Tom Clancy's Rainbow Six: Vegas 2 (HKLM-x32\...\Steam App 15120) (Version: - Ubisoft Montreal)
TOSHIBA Assist (HKLM-x32\...\{C2A276E3-154E-44DC-AAF1-FFDD7FD30E35}) (Version: 4.2.3.0 - TOSHIBA CORPORATION)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.11 for x64 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM\...\{2C486987-D447-4E36-8D61-86E48E24199C}) (Version: 1.3.10.64 - TOSHIBA Corporation)
TOSHIBA Hardware Setup (HKLM-x32\...\{2FD5D2C5-A7A1-4065-89BA-90542BF7CCD3}) (Version: 2.00.0020 - TOSHIBA)
TOSHIBA HDD/SSD Alert (HKLM\...\{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.11 - TOSHIBA Corporation)
Toshiba Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.04 - TOSHIBA)
TOSHIBA Media Controller (HKLM-x32\...\{C7A4F26F-F9B0-41B2-8659-99181108CDE3}) (Version: 1.0.87.5 - TOSHIBA CORPORATION)
TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.7.7 - TOSHIBA CORPORATION)
TOSHIBA Online Product Information (HKLM-x32\...\{2290A680-4083-410A-ADCC-7092C67FC052}) (Version: 4.01.0000 - TOSHIBA)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.7.15.64 - TOSHIBA Corporation)
TOSHIBA Places Icon Utility (HKLM-x32\...\{461F6F0D-7173-4902-9604-AB1A29108AF2}) (Version: 1.1.1.4 - TOSHIBA Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.6.52020009 - TOSHIBA CORPORATION)
TOSHIBA Recovery Media Creator Reminder (HKLM-x32\...\InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}) (Version: 1.00.0019 - TOSHIBA)
TOSHIBA Recovery Media Creator Reminder (x32 Version: 1.00.0019 - TOSHIBA) Hidden
TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.1.2004 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.2.13 - TOSHIBA)
TOSHIBA Supervisor Password (HKLM-x32\...\{119826A8-4EF6-4BE5-A88B-D2D81FA7CEE2}) (Version: 2.00.0009 - TOSHIBA)
TOSHIBA TEMPRO (HKLM-x32\...\{F082CB11-4794-4259-99A1-D91BA762AD15}) (Version: 3.35 - Toshiba Europe GmbH)
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.6.0021.640203 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.6.0021.640203 - TOSHIBA Corporation) Hidden
TOSHIBA Value Added Package (x32 Version: 1.6.0021.640203 - TOSHIBA Corporation) Hidden
TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.3.33 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (x32 Version: 2.0.3.33 - TOSHIBA Corporation) Hidden
Towns (HKLM-x32\...\Steam App 221020) (Version: - )
Train Simulator 2013 (HKLM-x32\...\Steam App 24010) (Version: - RailSimulator.com)
Tropico 3: Absolute Power (HKLM-x32\...\Tropico3) (Version: 2.01 - Kalypso Media)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version: - Neil Jedrzejewski & Ryan Gregg)
welcome (x32 Version: 11.0.22500.0.0 - Nero AG) Hidden
WildTangent Games (HKLM-x32\...\WildTangent toshiba Master Uninstall) (Version: 1.0.2.5 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.10.5 - WildTangent) Hidden
Windows Driver Package - Realtek Semiconductor Corp. RtkBtFilter Bluetooth (12/02/2011 2.3.8.1) (HKLM\...\EA90D42054890B3938D0BEF1E8A316D20C6D6003) (Version: 12/02/2011 2.3.8.1 - Realtek Semiconductor Corp.)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (HKLM-x32\...\{09B7C7EB-3140-4B5E-842F-9C79A7137139}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (HKLM-x32\...\{4CF6F287-5121-483C-A5A2-07BDE19D8B4E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16432 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: 5.3.0.17128 - Blizzard Entertainment)

==================== Restore Points =========================

04-03-2014 08:00:32 Windows Update
07-03-2014 08:59:46 Windows Update
13-03-2014 06:42:44 Windows Update
13-03-2014 06:53:51 Windows Update

==================== Hosts content: ==========================

2009-07-14 02:34 - 2013-03-30 17:38 - 00000027 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0C4ABC39-F894-4C42-A6B4-D81160070595} - System32\Tasks\{E1068C8C-9DBC-44FD-BBFB-B17D92A23466} => C:\Users\Dan\Documents\Theme Park World\tp.exe [2000-06-28] ()
Task: {1C11566C-0D02-4F6D-A021-1C031B0E69D4} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-01-29] (Microsoft Corporation)
Task: {1F4FD139-45AD-4C56-BBFC-332778BFD38F} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {2050C713-45CB-46BD-B882-CDD43785F8B7} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-269794971-2251558941-1448437433-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {23894463-BCE2-47B8-8710-8A6184A264AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-11] (Google Inc.)
Task: {448A53A7-1F12-43FA-A334-2D4CA3188D83} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000UA => C:\Users\Dan\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-15] (Google Inc.)
Task: {4DB8BD1F-2521-499A-A5A2-FBE23796289C} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2013-12-11] (Microsoft Corporation)
Task: {5B98E938-B932-4741-A99B-CB50EFE0AA05} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-01-29] (Microsoft)
Task: {776A9BB9-C1E1-41D9-9ABD-129E401200B3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {786E8923-C0E3-422F-9DD3-EA58FE042DD4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {7F330A56-4E1F-4445-8B4F-C00D211652EC} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-11-02] (Microsoft Corporation)
Task: {82F2B949-E35E-43D9-BD0A-9120A8A6D40F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000Core => C:\Users\Dan\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-15] (Google Inc.)
Task: {9401758D-3BC4-470D-9D0D-2DD8E9BFDEB3} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-01-29] (Microsoft Corporation)
Task: {9A41340D-6D65-4071-8BEA-E8B98CF78133} - System32\Tasks\{4091B24A-512A-44CF-A2D3-A792E7E41BB8} => C:\Users\Dan\Documents\Theme Park World\tp.exe [2000-06-28] ()
Task: {9A42EA5B-A5C8-4911-A7D2-5EBDF4521C00} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-01-29] (Microsoft Corporation)
Task: {9B7A71DF-459C-4F43-8E99-A584F43F9B84} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {9C3C3E90-C015-4495-BE83-A603C0382F4B} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Bismillah-Dan Bismillah => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2013-12-11] (Microsoft Corporation)
Task: {A978BDCC-7158-4AB2-A680-161816F6CE69} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-01-29] (Microsoft Corporation)
Task: {B2BB7F44-49F9-4EBF-9DE2-DB09D59C31B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-11] (Google Inc.)
Task: {BD872084-20FC-4215-BE48-112F2CB917E2} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-269794971-2251558941-1448437433-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {E3B7BA93-CEC8-4CF7-9173-6D1C6A729C14} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F3726DDF-93E3-47C3-8932-D6CF7E36683F} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000Core.job => C:\Users\Dan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-269794971-2251558941-1448437433-1000UA.job => C:\Users\Dan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe

==================== Loaded Modules (whitelisted) =============

2012-05-31 07:38 - 2010-09-10 00:26 - 00162824 _____ () C:\Windows\System32\GFNEXSrv.exe
2014-02-03 23:29 - 2011-02-28 22:37 - 00095008 _____ () C:\windows\System32\Primomonnt.dll
2013-11-13 23:11 - 2013-11-13 23:11 - 08866472 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-05-12 16:00 - 2011-01-25 13:48 - 00132608 _____ () C:\Program Files (x86)\Batch Picture Resizer\DLLReg-x64.dll
2012-06-18 15:24 - 2012-06-18 15:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2013-08-20 14:49 - 2012-03-28 12:49 - 00140456 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2012-05-31 07:21 - 2012-02-21 19:29 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
2012-12-10 07:24 - 2012-12-10 07:24 - 09723392 _____ () C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
2013-04-29 18:48 - 2013-11-02 00:49 - 00377000 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll
2013-04-29 18:48 - 2013-11-02 00:48 - 00520872 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll
2013-04-29 18:48 - 2013-11-02 00:49 - 00618152 _____ () C:\Program Files\Microsoft Office 15\ClientX64\StreamServer.dll
2014-02-22 18:43 - 2014-02-22 18:43 - 00066872 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2014-02-22 18:44 - 2014-02-22 18:44 - 00107832 _____ () C:\windows\SysWOW64\PnkBstrB.exe
2012-11-29 20:31 - 2012-11-29 20:31 - 00038608 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2013-04-02 19:04 - 2005-04-22 04:36 - 00143360 ____R () C:\windows\system32\BrSNMP64.dll
2011-08-22 22:19 - 2011-08-22 22:19 - 11204992 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
2010-12-15 22:19 - 2010-12-15 22:19 - 00124320 _____ () C:\Program Files\TOSHIBA\TECO\MUIHelp.dll
2012-03-27 00:33 - 2012-03-27 00:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-05-11 18:45 - 2011-02-22 10:06 - 00563576 _____ () C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\en\Humphrey.resources.dll
2012-05-11 18:36 - 2011-12-15 13:55 - 00063360 _____ () C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIInternal.XmlSerializers.dll
2013-02-18 23:28 - 2013-02-18 23:28 - 14800896 _____ () C:\Program Files (x86)\FAHClient\FAHClient.exe
2014-01-27 11:37 - 2007-11-06 23:20 - 00377303 _____ () C:\Users\Dan\Desktop\texter.exe
2011-11-26 01:51 - 2011-11-26 01:51 - 00079784 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
2014-03-16 11:59 - 2014-03-16 09:27 - 02283008 _____ () C:\Program Files\AVAST Software\Avast\defs\14031600\algo.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-10 21:06 - 2013-12-10 21:06 - 10683392 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtWebKit4.dll
2013-12-10 21:06 - 2013-12-10 21:06 - 07741952 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtGui4.dll
2013-12-10 21:06 - 2013-12-10 21:06 - 02248192 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtCore4.dll
2013-12-10 21:06 - 2013-12-10 21:06 - 01681408 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\QtNetwork4.dll
2014-03-03 18:13 - 2014-03-03 18:13 - 00117248 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libaacdec.dll
2014-03-03 18:13 - 2014-03-03 18:13 - 00231936 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libmpgdec.dll
2014-03-03 18:14 - 2014-03-03 18:14 - 00253440 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libid3tag.dll
2014-03-03 18:13 - 2014-03-03 18:13 - 00344064 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\libaudioenc.dll
2013-12-10 21:06 - 2013-12-10 21:06 - 00026624 _____ () C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\imageformats\qgif4.dll
2013-06-10 09:55 - 2013-06-10 09:55 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
2013-06-10 09:55 - 2013-06-10 09:55 - 01241088 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
2013-06-10 09:55 - 2013-06-10 09:55 - 00201216 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_video220.dll
2013-06-10 09:55 - 2013-06-10 09:55 - 00241152 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_objdetect220.dll
2013-06-10 09:55 - 2013-06-10 09:55 - 00775680 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_highgui220.dll
2014-03-15 17:51 - 2014-03-15 17:51 - 00033792 _____ () C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAAA3DD.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM9C2F.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00033792 _____ () C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAAB8D6.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00056320 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMB964.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00033792 _____ () C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAAD4F1.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00033792 _____ () C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA\TAAD60E.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00055296 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMD58F.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00068608 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMD759.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMD799.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMDA98.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMDEAF.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00056832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEME4E8.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEME5A5.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEME5C6.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEME5E8.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00056320 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMF812.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM1B5.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00075776 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM3D9.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00053760 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEMF50.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00064000 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM211D.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00053760 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM2219.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00057344 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM27C6.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00072192 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM2C88.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00072704 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM2D65.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00072192 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM3006.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00072192 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM30E2.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM319F.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM352B.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM380A.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM3B47.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM3E17.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4144.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM42DB.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM43C7.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4540.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM464B.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM4AFE.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5260.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5520.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM583E.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5AEE.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5C47.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM5FF1.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM62B1.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM636E.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM63CE.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00120832 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM645C.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00086016 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM65C7.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00086016 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM674F.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00086016 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM6780.tmp
2014-03-15 17:51 - 2014-03-15 17:51 - 00086016 _____ () C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE\DEM6946.tmp
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-01-26 21:37 - 2009-12-07 11:09 - 00055296 _____ () C:\Program Files (x86)\ShortKeys 3\SSCE32.DLL
2013-11-13 23:11 - 2013-11-13 23:11 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2013-12-11 23:10 - 2013-12-11 23:10 - 00359592 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\c2r32.dll
2013-04-02 19:02 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2014-03-04 07:51 - 2014-03-02 02:35 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2014-03-04 07:51 - 2014-03-02 02:35 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libglesv2.dll
2014-03-04 07:51 - 2014-03-02 02:35 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libegl.dll
2014-03-04 07:51 - 2014-03-02 02:35 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll
2014-03-04 07:51 - 2014-03-02 02:35 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
2014-03-04 07:51 - 2014-03-02 02:35 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll
2014-01-08 22:41 - 2013-12-12 22:19 - 00142848 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-01-08 22:41 - 2013-11-05 01:12 - 00890592 _____ () C:\Program Files (x86)\Steam\libavutil-52.dll
2013-03-12 17:10 - 2014-02-11 02:34 - 00751616 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2013-12-12 17:49 - 2014-02-25 21:57 - 01135296 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2013-12-04 23:00 - 2014-01-10 23:33 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2012-12-27 15:15 - 2013-06-14 23:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-12-27 15:15 - 2013-06-14 23:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-12-27 15:15 - 2013-06-14 23:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2014-03-12 00:22 - 2014-03-12 00:22 - 16276872 _____ () C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
2012-12-27 15:15 - 2014-02-25 21:57 - 00119488 _____ () C:\Program Files (x86)\Steam\bin\audio.dll
2012-12-27 15:15 - 2013-06-14 23:49 - 00071680 _____ () C:\Program Files (x86)\Steam\bin\mssmp3.asi
2012-12-27 15:15 - 2013-06-14 23:49 - 00153088 _____ () C:\Program Files (x86)\Steam\bin\mssvoice.asi
2014-03-04 07:51 - 2014-03-02 02:35 - 13632840 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll
2012-05-31 07:21 - 2012-02-21 19:09 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2013-07-24 21:23 - 2013-07-24 21:24 - 00420864 _____ () C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die 2\build\game\vPhysX.vplugin
2013-07-24 21:23 - 2013-07-24 21:24 - 01410560 _____ () C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die 2\build\game\VisionEnginePlugin.vPlugin
2013-07-24 21:23 - 2013-07-24 21:23 - 00154624 _____ () C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die 2\build\game\lua90.dll
2013-07-24 21:23 - 2013-07-24 21:23 - 00104960 _____ () C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die 2\build\game\SoundEnginePlugin.vPlugin
2012-12-27 15:15 - 2014-02-25 21:57 - 00335552 _____ () C:\Program Files (x86)\Steam\steam.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^Dan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^BBC iPlayer Desktop.lnk => C:\windows\pss\BBC iPlayer Desktop.lnk.Startup
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: MusicManager => "C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\MusicManager.exe"
MSCONFIG\startupreg: NBAgent => "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: PDF5 Registry Controller => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe
MSCONFIG\startupreg: PDFHook => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe
MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/16/2014 09:34:45 PM) (Source: Application Error) (User: )
Description: Faulting application name: PlagueIncEvolved.exe, version: 4.3.1.28294, time stamp: 0x52938f4b
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc000041d
Fault offset: 0x000222d2
Faulting process id: 0x3968
Faulting application start time: 0xPlagueIncEvolved.exe0
Faulting application path: PlagueIncEvolved.exe1
Faulting module path: PlagueIncEvolved.exe2
Report Id: PlagueIncEvolved.exe3

Error: (03/15/2014 07:18:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9157

Error: (03/15/2014 07:18:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9157

Error: (03/15/2014 07:18:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/15/2014 07:17:58 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6443

Error: (03/15/2014 07:17:58 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6443

Error: (03/15/2014 07:17:58 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/15/2014 07:17:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5319

Error: (03/15/2014 07:17:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5319

Error: (03/15/2014 07:17:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (03/15/2014 05:51:35 PM) (Source: DCOM) (User: )
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/15/2014 01:35:11 PM) (Source: DCOM) (User: )
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/14/2014 06:35:34 PM) (Source: DCOM) (User: )
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/14/2014 09:50:36 AM) (Source: DCOM) (User: )
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/13/2014 11:00:58 PM) (Source: DCOM) (User: )
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/13/2014 06:53:45 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (03/13/2014 06:50:25 AM) (Source: DCOM) (User: )
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/12/2014 11:02:46 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (03/12/2014 11:01:50 PM) (Source: DCOM) (User: )
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (03/11/2014 11:24:23 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.


Microsoft Office Sessions:
=========================
Error: (03/16/2014 09:34:45 PM) (Source: Application Error)(User: )
Description: PlagueIncEvolved.exe4.3.1.2829452938f4bntdll.dll6.1.7601.18247521ea8e7c000041d000222d2396801cf415f2b74284eC:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exeC:\windows\SysWOW64\ntdll.dllca7c84f8-ad52-11e3-bb53-4c72b90bc5ee

Error: (03/15/2014 07:18:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9157

Error: (03/15/2014 07:18:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9157

Error: (03/15/2014 07:18:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/15/2014 07:17:58 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6443

Error: (03/15/2014 07:17:58 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6443

Error: (03/15/2014 07:17:58 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/15/2014 07:17:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5319

Error: (03/15/2014 07:17:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5319

Error: (03/15/2014 07:17:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
Date: 2013-03-30 17:37:31.974
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-30 17:37:31.888
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 77%
Total physical RAM: 6035.8 MB
Available physical RAM: 1345.33 MB
Total Pagefile: 12069.78 MB
Available Pagefile: 5586.93 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (TI30875400C) (Fixed) (Total:578.98 GB) (Free:186.78 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596 GB) (Disk ID: B0DE4F87)

Partition: GPT Partition Type.

==================== End Of Log ============================

Users shortcut scan result (x64) Version: 13-03-2014
Ran by Dan at 2014-03-16 23:33:48
Running from C:\Users\Dan\Downloads
Boot Mode: Normal
==================== Shortcuts =============================

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk -> C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Acresso Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BBC iPlayer Desktop.lnk -> C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk -> C:\Windows\ehome\ehshell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk -> C:\Windows\Installer\{95140000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShortKeys 3.lnk -> C:\Program Files (x86)\ShortKeys 3\shortkey.exe (Insight Software Solutions, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 8.lnk -> C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (TeamViewer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\Windows\System32\WindowsAnytimeUpgradeui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk -> C:\Program Files\DVD Maker\DVDMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\SIGNINOPTIONS.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft\Account Billing.lnk -> C:\Program Files (x86)\World of Warcraft\Data\enGB\AccountBilling.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft\Blizzard Technical Support.lnk -> C:\Program Files (x86)\World of Warcraft\Data\enGB\TechSupport.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft\World of Warcraft - Uninstall.lnk -> C:\Program Files (x86)\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft\World of Warcraft.lnk -> C:\Program Files (x86)\World of Warcraft\World of Warcraft Launcher.exe (Blizzard Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC\Virtual Machines.lnk -> C:\Windows\System32\VMWindow.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTFEdit\Uninstall VTFEdit.lnk -> C:\Program Files (x86)\VTFEdit\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTFEdit\VTFEdit.lnk -> C:\Program Files (x86)\VTFEdit\VTFEdit.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\TOSHIBA Online Product Information.lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe (TOSHIBA)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Toshiba TEMPRO.lnk -> C:\Program Files (x86)\Toshiba TEMPRO\Tempro.exe (Toshiba Europe GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Toshiba Warranty Registration.lnk -> C:\Program Files (x86)\Toshiba\Registration\ToshibaRegistration.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Utilities\Accessibility.lnk -> C:\Program Files\TOSHIBA\Utilities\TACSPROP.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Utilities\eco Utility.lnk -> C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Utilities\Flash Cards.lnk -> C:\Program Files\TOSHIBA\FlashCards\TfcConf.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Utilities\HWSetup.lnk -> C:\Program Files\TOSHIBA\Utilities\HWSetup.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Utilities\HyperSpeedStart.lnk -> C:\Program Files\TOSHIBA\Power Saver\THyboot.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Utilities\HyperSpeedStartSettings.lnk -> C:\Program Files\TOSHIBA\Power Saver\THybootSet.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Toshiba Places Icons\Toshiba Places Icon Utility Help.lnk -> C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\Help\Help.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Toshiba Places Icons\Toshiba Places Icon Utility.lnk -> C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe (Toshiba)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Support\HDD SSD Alert.lnk -> C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSSDAlert.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Support\PC Diagnostic Tool.lnk -> C:\Program Files (x86)\TOSHIBA\PCDiag\PCDiag.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Support\PC Health Monitor.lnk -> C:\Program Files\TOSHIBA\TPHM\TPCHViewer.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Support\Recovery Media Creator.lnk -> C:\Program Files\TOSHIBA\TOSHIBA Recovery Media Creator\TRMCLcher.exe (Toshiba Information Equipment(Hangzhou)Co.,LTD)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Support\Service Station.lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Support\TOSHIBA Assist.lnk -> C:\Program Files\TOSHIBA\TOSHIBA Assist\TInTouch.exe (TOSHIBA)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Networking\Bluetooth\Bluetooth Assistant.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BtAssist1.exe (TOSHIBA CORPORATION.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Networking\Bluetooth\Bluetooth Information Exchanger.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc1.exe (TOSHIBA CORPORATION.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Networking\Bluetooth\Bluetooth Settings.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ECCenter1.exe (TOSHIBA CORPORATION.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Networking\Bluetooth\Bluetooth User Guide.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\UsrGuide.exe (TOSHIBA CORPORATION)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Networking\Bluetooth\Remote Camera.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\BIP_Camera1.exe (TOSHIBA CORPORATION.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Networking\Bluetooth\Wireless File Transfer.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\WirelessFTP1.exe (TOSHIBA CORPORATION.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Multimedia\Disc Creator.lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\ToDisc.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Multimedia\DVD-RAM Utility.lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\TosRamUtil.exe (TOSHIBA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Multimedia\TOSHIBA Resolution+ for Windows Media Player Help.lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Resolution+ Plug-in for Windows Media Player\Help\index.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Multimedia\Web Camera Application.lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe (TOSHIBA CORPORATION.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Multimedia\TOSHIBA Media Controller\EULA.lnk -> C:\Program Files\TOSHIBA\Media Controller\Help\EULA.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Multimedia\TOSHIBA Media Controller\TOSHIBA Media Controller Plug-in Help.lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\Help\index.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Multimedia\TOSHIBA Media Controller\TOSHIBA Media Controller.lnk -> C:\Program Files\TOSHIBA\Media Controller\MediaController.exe (Toshiba Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.lnk -> C:\Windows\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C92.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ShortKeys 3.lnk -> C:\Program Files (x86)\ShortKeys 3\shortkey.exe (Insight Software Solutions, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Toshiba Places Icon Utility.lnk -> C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe (Toshiba)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\Read Me.lnk -> C:\Program Files (x86)\Origin Games\SimCity\Support\readme\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\SimCity™ End User License Agreement.lnk -> C:\Program Files (x86)\Origin Games\SimCity\Support\eula\en_US_eula.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\SimCity™ Recovery.lnk -> C:\Program Files (x86)\Origin Games\SimCity\SimCityRecovery\SimCityRecovery.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\SimCity™.lnk -> C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\Technical Support.lnk -> C:\Program Files (x86)\Origin Games\SimCity\Support\EA Help\Technical Support.en_US.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealDownloader.lnk -> C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe (RealNetworks, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealPlayer Converter.lnk -> C:\Program Files (x86)\Real\RealPlayer\realconverter.exe (RealNetworks, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealPlayer Trimmer.lnk -> C:\Program Files (x86)\Real\RealPlayer\realtrimmer.exe (RealNetworks, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\About QuickTime.lnk -> C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\RichText.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\PictureViewer.lnk -> C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\PictureViewer.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk -> C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\QTPlayer.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF\Online User Guide.lnk -> C:\Program Files (x86)\Nitro PDF\PrimoPDF\Online_UG.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF\PrimoPDF Settings.lnk -> C:\Program Files (x86)\Nitro PDF\PrimoPDF\PrimoPDF.exe (Nitro PDF)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF\Uninstall.lnk -> C:\Program Files (x86)\Nitro PDF\PrimoPDF\uninstaller.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pocket Tanks\Pocket Tanks Home Page.lnk -> C:\Program Files (x86)\Pocket Tanks\pockettanks.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pocket Tanks\Pocket Tanks.lnk -> C:\Program Files (x86)\Pocket Tanks\ptloader.exe (Blitwise Productions, LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pocket Tanks\Readme.lnk -> C:\Program Files (x86)\Pocket Tanks\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pocket Tanks\Technical Support.lnk -> C:\Program Files (x86)\Pocket Tanks\techsupport.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pocket Tanks\Uninstall Pocket Tanks.lnk -> C:\Program Files (x86)\Pocket Tanks\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2\Frequently Asked Questions 0.9.8.lnk -> C:\Program Files (x86)\PCSX2 0.9.8\Docs\PCSX2_FAQ_0.9.8.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2\PCSX2 0.9.8 (r4600).lnk -> C:\Program Files (x86)\PCSX2 0.9.8\pcsx2-r4600.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2\Readme 0.9.8.lnk -> C:\Program Files (x86)\PCSX2 0.9.8\Docs\PCSX2_Readme_0.9.8.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2\Uninstall PCSX2 0.9.8 (r4600).lnk -> C:\Program Files (x86)\PCSX2 0.9.8\Uninst-pcsx2-r4600.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Uninstall Origin.lnk -> C:\Program Files (x86)\Origin\OriginUninstall.exe (Electronic Arts, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\ImageViewer.lnk -> C:\Program Files (x86)\Nuance\PaperPort\pppagevw.exe (Nuance Communications, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\PaperPort.lnk -> C:\Program Files (x86)\Nuance\PaperPort\PaprPort.exe (Nuance Communications, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\PDF Viewer Plus.lnk -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\bin\PDFPlus.exe (Nuance Communications, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++\Notepad++.lnk -> C:\Program Files (x86)\Notepad++\notepad++.exe (Don HO [email protected])
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans\NetBeans IDE 6.9.1.lnk -> C:\Program Files (x86)\NetBeans 6.9.1\bin\netbeans.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans\NetBeans IDE 7.2.1.lnk -> C:\Program Files (x86)\NetBeans 7.2.1\bin\netbeans.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero Kwik Media.lnk -> C:\Program Files (x86)\Nero\KM\KwikMedia.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 11\Nero BackItUp.lnk -> C:\Windows\Installer\{AB2BBC64-8AC8-4E66-BBF3-E22D5EACEECA}\BackItUp._6DE631547FD24BC5962A4E5F07A1BE20.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 11\Nero BurnRights.lnk -> C:\Program Files (x86)\Nero\Nero 11\Nero BurnRights\NeroBurnRights.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 11\Nero ControlCenter.lnk -> C:\Windows\Installer\{11D3EF85-63E1-4AE4-A7C1-9241BDB16B51}\ScControlCenterSta_FC2653898C5047A6A872CAF6433C43A8.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 11\Nero Express.lnk -> C:\Windows\Installer\{E10AAE4A-98B8-420A-BD93-E0520C23D624}\NeroExpress.exe_81A8FD91A6494AD5B4998149EAAC7E7C.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 11\Nero RescueAgent.lnk -> C:\Windows\Installer\{034DCAF9-96E7-4936-9A07-712F80B5181E}\NeroRescueAgent.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 11\Welcome to Nero 11.lnk -> C:\Windows\Installer\{CCE210DF-7EEF-4A76-A63C-3EB091FDB992}\NewShortcut1_424DC20E837745D1ACA9F2C02A4DFBD9.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL\MySQL Workbench 5.2 CE.lnk -> C:\Program Files (x86)\MySQL\MySQL Workbench 5.2 CE\MySQLWorkbench.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\MSACCESS.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\EXCEL.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTE.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\POWERPNT.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\MSPUB.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Send to OneNote 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Office 2013 Language Preferences.lnk -> C:\Program Files\Microsoft Office 15\root\office15\SETLANG.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Office 2013 Upload Center.lnk -> C:\Program Files\Microsoft Office 15\root\office15\MSOUC.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center\Microsoft Mouse and Keyboard Center.lnk -> C:\Windows\Installer\{24F93B56-61F5-415F-85B9-AA444DA34AFC}\DeviceCenter.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace\Games for Windows Marketplace.lnk -> C:\Program Files (x86)\Microsoft Games for Windows - LIVE\Client\GFWLive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam\ManyCam.lnk -> C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe (ManyCam LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam\Uninstall ManyCam.lnk -> C:\Program Files (x86)\ManyCam\uninstall.exe (ManyCam LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam\User Guide.lnk -> C:\Program Files (x86)\ManyCam\Help\UserGuide.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Uninstall Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit\Java Mission Control.lnk -> C:\Program Files (x86)\Java\jdk1.7.0_11\bin\jmc.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files (x86)\Java\jre7\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\About iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.Resources\en_GB.lproj\About iTunes.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud Photos.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreamsShortcut.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk -> C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe (Trend Micro Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy Arcade.lnk -> C:\Program Files (x86)\GameSpy Arcade\Aphex.exe (IGN Entertainment, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\Uninstall GameSpy Arcade.lnk -> C:\Program Files (x86)\GameSpy Arcade\UNWISE.EXE ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free YouTube Downloader\Free YouTube Downloader.lnk -> C:\Program Files (x86)\Free YouTube Downloader\YouTubeDownloader.exe (HOW Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\BioWare\Star Wars - The Old Republic\Star Wars - The Old Republic.lnk -> C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe (BioWare)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\BioWare\Star Wars - The Old Republic\SWTOR Customer Support.lnk -> C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\SWTOR Customer Support.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\BioWare\Star Wars - The Old Republic\Uninstall Star Wars - The Old Republic.lnk -> C:\Program Files (x86)\Common Files\BioWare\Uninstall Star Wars - The Old Republic.exe (BioWare, LucasArts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\BioWare\Star Wars - The Old Republic\View License.lnk -> C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\EUALAs\EUALA_en.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\BioWare\Star Wars - The Old Republic\View Readme.lnk -> C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\readmes\readme_en.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space 3\Dead Space 3 End User License Agreement.lnk -> C:\Program Files (x86)\Origin Games\Dead Space 3\Support\eula\en_US_eula.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space 3\Dead Space 3.lnk -> C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe (Electronic Arts Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space 3\Read Me.lnk -> C:\Program Files (x86)\Origin Games\Dead Space 3\Support\readme\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space 3\Technical Support.lnk -> C:\Program Files (x86)\Origin Games\Dead Space 3\Support\EA Help\Technical Support.en_US.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Cheat Engine 6.3 (32-bit).lnk -> C:\Program Files (x86)\Cheat Engine 6.3\cheatengine-i386.exe (Cheat Engine)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Cheat Engine 6.3 (64-bit).lnk -> C:\Program Files (x86)\Cheat Engine 6.3\cheatengine-x86_64.exe (Cheat Engine)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Cheat Engine 6.3.lnk -> C:\Program Files (x86)\Cheat Engine 6.3\Cheat Engine.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Cheat Engine help.lnk -> C:\Program Files (x86)\Cheat Engine 6.3\CheatEngine.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Cheat Engine tutorial.lnk -> C:\Program Files (x86)\Cheat Engine 6.3\Tutorial-i386.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Reset settings.lnk -> C:\Program Files (x86)\Cheat Engine 6.3\ceregreset.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Uninstall Cheat Engine.lnk -> C:\Program Files (x86)\Cheat Engine 6.3\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\Kernel stuff\Unload kernel module.lnk -> C:\Program Files (x86)\Cheat Engine 6.3\Kernelmoduleunloader.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Cheat Engine 6.2 (32-bit).lnk -> C:\Program Files (x86)\Cheat Engine 6.2\cheatengine-i386.exe (Cheat Engine)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Cheat Engine 6.2 (64-bit).lnk -> C:\Program Files (x86)\Cheat Engine 6.2\cheatengine-x86_64.exe (Cheat Engine)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Cheat Engine 6.2.lnk -> C:\Program Files (x86)\Cheat Engine 6.2\Cheat Engine.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Cheat Engine help.lnk -> C:\Program Files (x86)\Cheat Engine 6.2\CheatEngine.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Cheat Engine tutorial.lnk -> C:\Program Files (x86)\Cheat Engine 6.2\Tutorial-i386.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Reset settings.lnk -> C:\Program Files (x86)\Cheat Engine 6.2\ceregreset.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Uninstall Cheat Engine.lnk -> C:\Program Files (x86)\Cheat Engine 6.2\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\Kernel stuff\Unload kernel module.lnk -> C:\Program Files (x86)\Cheat Engine 6.2\Kernelmoduleunloader.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Quick Menu\Quick Menu.lnk -> C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Image Garden\My Image Garden.lnk -> C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Scan Utility\IJ Scan Utility.lnk -> C:\Program Files (x86)\Canon\IJ Scan Utility\SCANUTILITY.exe (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Network Tool\IJ Network Tool.lnk -> C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.EXE (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Network Scanner Selector EX\IJ Network Scanner Selector EX.lnk -> C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5400 series User Registration\User Registration.LNK -> C:\Program Files (x86)\Canon\IJEREG\MG5400 series\IJEREG.exe (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5400 series\Readme XPS.lnk -> C:\Program Files\CanonBJ\IJPrinter\Canon MG5400 series\readme_English_xps.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5400 series\Readme.lnk -> C:\Program Files\CanonBJ\IJPrinter\Canon MG5400 series\readme_English.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip\PDF Printer\Documentation.lnk -> C:\Program Files\Bullzip\PDF Printer\doc.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip\PDF Printer\Home Page.lnk -> C:\Program Files\Bullzip\PDF Printer\website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip\PDF Printer\Options.lnk -> C:\Program Files\Bullzip\PDF Printer\gui.exe (Bullzip)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip\PDF Printer\Debug\Bug Radar.lnk -> C:\Program Files\Bullzip\PDF Printer\Debug\BugRadar.exe (Bullzip)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip\PDF Printer\Debug\Installation Log.lnk -> C:\Program Files\Bullzip\PDF Printer\Debug\install.log ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullfrog\Theme Park World\Theme Park World.lnk -> C:\Program Files (x86)\Bullfrog\Theme Park World\tp.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Read Me.lnk -> C:\Program Files (x86)\Brother\Brmfl12b\readmeeng.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Status Monitor.lnk -> C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\User's Guides.lnk -> C:\Program Files (x86)\Brother\Brmfl12b\DCP-J4110DW\top.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Scanner Settings\Read Me.lnk -> C:\Program Files (x86)\Brother\Brmfl12b\ScanRead.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Scanner Settings\Scanner Utility.lnk -> C:\Program Files (x86)\Brother\Brmfl12b\BrScUtil.exe (Brother Industries Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batch Picture Resizer\Batch Picture Resizer Help.lnk -> C:\Program Files (x86)\Batch Picture Resizer\PicResizer.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batch Picture Resizer\Batch Picture Resizer.lnk -> C:\Program Files (x86)\Batch Picture Resizer\PicResizer.exe (SoftOrbits)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batch Picture Resizer\Uninstall.lnk -> C:\Program Files (x86)\Batch Picture Resizer\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\AVS Update Manager.lnk -> C:\Program Files (x86)\AVS4YOU\AVSUpdateManager\AVSUpdateManager.exe (Online Media Technologies Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\AVS4YOU Software Navigator.lnk -> C:\Program Files (x86)\AVS4YOU\AVSSoftwareNavigator\AVS4YOUSoftwareNavigator.exe (Online Media Technologies Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus\avast! Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Bluetooth File Transfer Wizard.lnk -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\DisplaySwitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{FCD08036-9AA9-4914-AFC3-49613265480A}\PlayTasks\0\Launch.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Stronghold\Stronghold.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{D551AC29-FFA3-493A-B9CF-6B3551D04843}\PlayTasks\0\Age of Empires III.lnk -> C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe (Ensemble Studios)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{BA9BC0AA-8B28-4D23-A3D0-4DC864A2E409}\PlayTasks\0\Launch.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe (Sony DADC Austria AG)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{A38063EE-5BBE-4D1E-8F83-54B67EC8F351}\PlayTasks\0\Launch.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{69D455BE-3DCE-4AF3-BC85-435FF9D7F6C7}\PlayTasks\0\Launch.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe (The Creative Assembly Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{21C35C68-A6C5-4A75-8FFD-DB503CE6F67B}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\World of Warcraft\World of Warcraft Launcher.exe (Blizzard Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{040103CE-98A0-4550-90DE-88AF2C937E1D}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Kalypso\Tropico 3\tropico3.exe (Haemimont Games)
Shortcut: C:\Users\Dan\Links\Desktop.lnk -> C:\Users\Dan\Desktop ()
Shortcut: C:\Users\Dan\Links\Downloads.lnk -> C:\Users\Dan\Downloads ()
Shortcut: C:\Users\Dan\Links\OneDrive.lnk -> C:\Users\Dan\SkyDrive ()
Shortcut: C:\Users\Dan\Documents\Old Laptop\Pictures\Sample Pictures.lnk -> C:\Users\Public\Pictures\Sample Pictures ()
Shortcut: C:\Users\Dan\Documents\Old Laptop\Phone photos\Prom photos\Adobe Reader X.lnk -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Dan\Documents\Old Laptop\Computing coursework\Computing folder\Notepad++\Notepad++.lnk -> C:\Users\Dan\Desktop\Computing folder\Notepad++\notepad++.exe (No File)
Shortcut: C:\Users\Dan\Documents\Old Laptop\Computing coursework\Computing folder\NetBeans 7.0.1\NetBeans IDE 7.0.1.lnk -> C:\Users\Dan\Desktop\Computing folder\NetBeans 7.0.1\bin\netbeans.exe (No File)
Shortcut: C:\Users\Dan\Desktop\Cheat Engine.lnk -> C:\Program Files (x86)\Cheat Engine 6.3\Cheat Engine.exe ()
Shortcut: C:\Users\Dan\Desktop\GameSpy Arcade.lnk -> C:\Program Files (x86)\GameSpy Arcade\Aphex.exe (IGN Entertainment, Inc.)
Shortcut: C:\Users\Dan\Desktop\New Text Document - Shortcut.lnk -> C:\Users\Dan\Desktop\New Text Document.txt (No File)
Shortcut: C:\Users\Dan\Desktop\Pocket Tanks.lnk -> C:\Program Files (x86)\Pocket Tanks\ptloader.exe (Blitwise Productions, LLC)
Shortcut: C:\Users\Dan\Desktop\VTFEdit.lnk -> C:\Program Files (x86)\VTFEdit\VTFEdit.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk -> C:\Users\Dan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Texter.lnk -> C:\Users\Dan\Desktop\texter.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape\License.lnk -> C:\Users\Dan\jagexcache\jagexlauncher\LICENSE.txt ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Remote\PC Remote Server.lnk -> C:\Program Files (x86)\PC Remote\PC Remote\PCRemote.exe (PC Remote)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MySQL\MySQL Installer\MySQL Installer.lnk -> C:\Program Files (x86)\MySQL\MySQL Installer\MySQLInstaller.exe (Oracle Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager\Music Manager.lnk -> C:\Users\Dan\AppData\Local\Programs\Google\MusicManager\MusicManager.exe (Google Inc.)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaGeek\inSSIDer.lnk -> C:\Users\Dan\AppData\Roaming\Microsoft\Installer\{65A5E87D-7A3F-4819-807D-B86990D5F369}\_747764F8CEB43B54CEA72B.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient\About [email protected] -> C:\Program Files (x86)\FAHClient\About [email protected] ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient\Data Directory.lnk -> C:\Users\Dan\AppData\Roaming\FAHClient ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient\FAHControl.lnk -> C:\Program Files (x86)\FAHClient\FAHControl.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient\FAHViewer.lnk -> C:\Program Files (x86)\FAHClient\FAHViewer.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient\Uninstall.lnk -> C:\Program Files (x86)\FAHClient\Uninstall.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient\Web Control.lnk -> C:\Program Files (x86)\FAHClient\FAHWebClient.url ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CorsixTH\CorsixTH AppData Folder.lnk -> C:\Users\Dan\AppData\Roaming\CorsixTH ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CorsixTH\CorsixTH_DirectX.lnk -> C:\Program Files\CorsixTH\CorsixTH_DirectX.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CorsixTH\CorsixTH_OpenGL.lnk -> C:\Program Files\CorsixTH\CorsixTH_OpenGL.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CorsixTH\CorsixTH_SDL.lnk -> C:\Program Files\CorsixTH\CorsixTH_SDL.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CorsixTH\Map Editor.lnk -> C:\Program Files\CorsixTH\MapEdit.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CorsixTH\Uninstall.lnk -> C:\Program Files\CorsixTH\Uninstall.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth File Transfer.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GameSpy Arcade.lnk -> C:\Program Files (x86)\GameSpy Arcade\Aphex.exe (IGN Entertainment, Inc.)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ManyCam.lnk -> C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe (ManyCam LLC)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\CorsixTH_SDL.lnk -> C:\Program Files\CorsixTH\CorsixTH_SDL.exe ()
Shortcut: C:\Users\Dan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{F884A902-5F6F-4AD3-BCF5-6020C88E7837}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe (© 2001-2004 Atari Inc.)
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{F3B65583-E989-465E-9F6F-FB1F1A72C6D1}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Oblivion\Oblivion.exe (Bethesda Softworks)
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{8E9B1DBD-C7CF-4D68-9BE8-4791DC247F59}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Railroads\RailRoads.exe (Firaxis Games, Inc)
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{8AA02283-581C-4DB6-914D-963B21B25748}\PlayTasks\0\Play.lnk -> C:\Users\Dan\Documents\Theme Park World\tp.exe ()
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{4533C22E-01EE-40A7-B212-95574114C298}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\Stronghold 2\Stronghold2.exe (Firefly Studios)
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{18E61436-C340-4ED6-806C-1B4CFFB305D7}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Bullfrog\Theme Park World\tp.exe ()
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{1536107C-8FD0-4120-9063-A0B50774E7FC}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\The Ship\ship.exe ()
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\GFWLive\Logs\InstallLog.lnk -> C:\Users\Dan\AppData\Local\Microsoft\GFWLive\Install\Logs ()
Shortcut: C:\Users\Dan\AppData\Local\Microsoft\GFWLive\Install\Logs\ClientLog.lnk -> C:\Users\Dan\AppData\Local\Microsoft\GFWLive\Logs ()
Shortcut: C:\Users\Default\Links\SkyDrive.lnk -> C:\Program Files (x86)\Microsoft SkyDrive\SkyDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk -> C:\Program Files (x86)\Microsoft SkyDrive\SkyDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Reader X.lnk -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\avast! Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
Shortcut: C:\Users\Public\Desktop\BBC iPlayer Desktop.lnk -> C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe ()
Shortcut: C:\Users\Public\Desktop\Canon Quick Menu.lnk -> C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
Shortcut: C:\Users\Public\Desktop\Dead Space 3.lnk -> C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe (Electronic Arts Inc.)
Shortcut: C:\Users\Public\Desktop\iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Public\Desktop\ManyCam.lnk -> C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe (ManyCam LLC)
Shortcut: C:\Users\Public\Desktop\NetBeans IDE 6.9.1.lnk -> C:\Program Files (x86)\NetBeans 6.9.1\bin\netbeans.exe ()
Shortcut: C:\Users\Public\Desktop\NetBeans IDE 7.2.1.lnk -> C:\Program Files (x86)\NetBeans 7.2.1\bin\netbeans.exe (Oracle Corporation)
Shortcut: C:\Users\Public\Desktop\PrimoPDF - Drop Files Here to Convert!.lnk -> C:\Program Files (x86)\Nitro PDF\PrimoPDF\PrimoPDF.exe (Nitro PDF)
Shortcut: C:\Users\Public\Desktop\QuickTime Player.lnk -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe (No File)
Shortcut: C:\Users\Public\Desktop\SimCity™.lnk -> C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts Inc.)
Shortcut: C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk -> C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe (BioWare)
Shortcut: C:\Users\Public\Desktop\Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\Public\Desktop\Theme Park World.lnk -> C:\Program Files (x86)\Bullfrog\Theme Park World\tp.exe ()
Shortcut: C:\Users\Public\Desktop\World of Warcraft.lnk -> C:\Program Files (x86)\World of Warcraft\World of Warcraft Launcher.exe (Blizzard Entertainment)




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation) -> startmenu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC\Virtual Windows XP.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\VMCPropertyHandler.dll,LaunchDefaultVM
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Manual.lnk -> C:\Program Files (x86)\TOSHIBA\Manuals\TREXLauncher.exe (TOSHIBA) -> Manual
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Recovery Media Reminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe) -> MANUAL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA\Networking\Bluetooth\Add New Connection.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ECCenter1.exe (TOSHIBA CORPORATION.) -> W /AUTOMODE
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRS Labs\SRS Premium Sound HD.lnk -> C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.) -> /f=SRS_Premium_Sound_HD.zip
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealPlayer.lnk -> C:\Program Files (x86)\Real\RealPlayer\realplay.exe (RealNetworks, Inc.) -> /launch:start_menu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\Uninstall QuickTime.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i {B67BAFBA-4C9F-48FA-9496-933E3B255044} /qf
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pocket Tanks\Safe Mode.lnk -> C:\Program Files (x86)\Pocket Tanks\ptloader.exe (Blitwise Productions, LLC) -> windowed
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\Scanner Setup Wizard.lnk -> C:\Program Files (x86)\Nuance\PaperPort\ScannerWizardU.exe (Nuance Communications, Inc.) -> /A [PaperPort 12.1] /L [eng]
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL\MySQL Server 5.5\MySQL 5.5 Command Line Client.lnk -> C:\Program Files\MySQL\MySQL Server 5.5\bin\mysql.exe () -> "--defaults-file=C:\ProgramData\MySQL\MySQL Server 5.5\my.ini" "-uroot" "-p"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)\Microsoft Excel Starter 2010.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Excel Starter 2010 9014006604090000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)\Microsoft Word Starter 2010.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Word Starter 2010 9014006604090000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)\Microsoft Office 2010 Tools\Microsoft Clip Organizer.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Clip Organizer 9014006604090000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)\Microsoft Office 2010 Tools\Microsoft Office 2010 Upload Center.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office 2010 Upload Center 9014006604090000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)\Microsoft Office 2010 Tools\Microsoft Office Picture Manager.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Picture Manager 9014006604090000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)\Microsoft Office 2010 Tools\Microsoft Office Starter To-Go Device Manager 2010.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Starter To-Go Device Manager 2010 9014006604090000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk -> C:\Program Files (x86)\Java\jre7\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk -> C:\Program Files (x86)\Java\jre7\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Updates\Intel® ME FW Recovery Agent.lnk -> C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe (Intel Corporation) -> --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller consumer
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Calendar.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> calendar
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Contacts.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> contacts
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Find My iPhone.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> find
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Mail.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> mail
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Notes.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> notes
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Reminders.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> reminders
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Agatha Christie - Death on the Nile.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Agatha Christie - Death on the Nile\Agatha Christie - Death on the Nile-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\All Casual Games.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=000d96f5-8034-4b74-a429-b6f0b04c75f4 /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\All Enthusiast Games.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=26352374-af55-4b53-b07b-6b0288ed97df /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\All Family Games.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=d58eecb0-0816-11de-8c30-0800200c9a66 /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\All Kids Games.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=3eda1e54-8889-41f5-a649-5a306789b7ef /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\All MMO Games.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=c3c636e0-1b04-11de-8c30-0800200c9a66 /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Aloha TriPeaks.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Aloha TriPeaks\alohatripeaks-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Bejeweled 3.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Bejeweled 3\bejeweled3-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Cake Mania.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Cake Mania\Cake Mania-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chuzzle Deluxe.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Chuzzle Deluxe\Chuzzle Deluxe-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Insaniquarium Deluxe.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Insaniquarium Deluxe\Insaniquarium Deluxe-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Jewel Quest Solitaire 2.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Jewel Quest Solitaire 2\jewelquestsolitaire2-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\More Games - WildTangent.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - main\provider.exe (WildTangent) -> /id=977b5905-4d14-47f1-bbbf-7b92f596695d /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mystery P.I. - The London Caper.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Mystery PI - The London Caper\Mystery P.I. - The London Caper-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Plants vs. Zombies - Game of the Year.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Plants vs Zombies - Game of the Year\plantsvszombies-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Polar Bowler.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Polar Bowler\Polar-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Virtual Villagers 4 - The Tree of Life.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Virtual Villagers 4 - The Tree of Life\virtualvillagers4thetreeoflife-WT.exe" /launchgc /src gamesmenuoem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\WildTangent Games App - toshiba.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe" /src gamesmenuoem /dp toshibaemea
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3\main.lua.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) -> C:\Program Files (x86)\Cheat Engine 6.3\main.lua
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2\main.lua.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) -> C:\Program Files (x86)\Cheat Engine 6.2\main.lua
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Printer\My Printer.lnk -> C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.) -> /mn
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5400 series Manual\Canon MG5400 series On-screen Manual.lnk -> C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe (CANON INC.) -> "C:\PROGRAM FILES (X86)\Canon\IJ Manual\CANON MG5400 SERIES\English\Info.egv"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5400 series\View Print History XPS.lnk -> C:\Windows\System32\spool\drivers\x64\3\CNMXPVBB.EXE (CANON INC.) -> "Canon MG5400 series Printer XPS"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\ControlCenter4.lnk -> C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe (Brother Industries, Ltd.) -> /model="DCP-J4110DW LAN"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Installation Diagnostics.lnk -> C:\Program Files (x86)\Brother\Brmfl12b\Brinstck.exe (Brother Industries, Ltd.) -> -R DCP-J4110DW LAN
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Network PhotoCapture Centre.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "ftp://BRWA417316DC476"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\On-Line Registration.lnk -> C:\Program Files (x86)\Brother\Brmfl12b\Brolink\Brolink0.exe (Brother Industories, Ltd.) -> OLR_URL /mDCP-J4110DW
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\UnInstall.lnk -> C:\Program Files (x86)\InstallShield Installation Information\{DD98C438-D769-4677-AA87-3481FA32D20C}\setup.exe (Macrovision Corporation) -> -runfromtemp -l0x0009 UNINSTALL Reg=BHS13,Brother DCP-J4110DW,LAN
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Scanner Settings\Scanners and Cameras.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ScannersAndCameras
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) -> /open
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{fb65380e-3812-44f7-bbec-128e82369adf}\PlayTasks\0\Jewel Quest Solitaire 2.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Jewel Quest Solitaire 2\jewelquestsolitaire2-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{f45679ee-0afc-4fce-93cd-897d5590286b}\PlayTasks\0\Mystery P.I. - The London Caper.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Mystery PI - The London Caper\Mystery P.I. - The London Caper-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{d8addf57-a369-460f-8a5c-2f240d8e33b7}\PlayTasks\0\Virtual Villagers 4 - The Tree of Life.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Virtual Villagers 4 - The Tree of Life\virtualvillagers4thetreeoflife-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{d58eecb0-0816-11de-8c30-0800200c9a66}\PlayTasks\0\provider.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=d58eecb0-0816-11de-8c30-0800200c9a66 /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{D551AC29-FFA3-493A-B9CF-6B3551D04843}\PlayTasks\2\Age of Empires III (no sound).lnk -> C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe (Ensemble Studios) -> +noSound
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{D551AC29-FFA3-493A-B9CF-6B3551D04843}\PlayTasks\1\Age of Empires III (no video).lnk -> C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe (Ensemble Studios) -> +noIntroCinematics
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{c3c636e0-1b04-11de-8c30-0800200c9a66}\PlayTasks\0\provider.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=c3c636e0-1b04-11de-8c30-0800200c9a66 /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{b87f2bde-5d44-4e86-bd37-a71616b35ea6}\PlayTasks\0\Bejeweled 3.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Bejeweled 3\bejeweled3-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{af7a9bad-f0f1-4fe3-87a1-676657bed867}\PlayTasks\0\Cake Mania.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Cake Mania\Cake Mania-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{A4B598D2-9BFF-456F-A667-D3B8A0849286}\PlayTasks\0\Insaniquarium Deluxe.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Insaniquarium Deluxe\Insaniquarium Deluxe-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{977b5905-4d14-47f1-bbbf-7b92f596695d}\PlayTasks\0\provider.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - main\provider.exe (WildTangent) -> /id=977b5905-4d14-47f1-bbbf-7b92f596695d /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{951226E3-26FC-40BC-8085-3677B1128F59}\PlayTasks\0\Polar Bowler.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Polar Bowler\Polar-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{6E7DD52D-205E-4D6D-AF6A-0C34703DFA61}\PlayTasks\0\Chuzzle Deluxe.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Chuzzle Deluxe\Chuzzle Deluxe-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{5ae0d760-ddcf-4247-85df-eacefd518e86}\PlayTasks\0\Plants vs. Zombies - Game of the Year.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Plants vs Zombies - Game of the Year\plantsvszombies-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{3eda1e54-8889-41f5-a649-5a306789b7ef}\PlayTasks\0\provider.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=3eda1e54-8889-41f5-a649-5a306789b7ef /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{26352374-af55-4b53-b07b-6b0288ed97df}\PlayTasks\0\provider.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=26352374-af55-4b53-b07b-6b0288ed97df /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{1447c6c0-8a7b-4b3f-a3b2-cbc9cb3ff16d}\PlayTasks\0\Aloha TriPeaks.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Aloha TriPeaks\alohatripeaks-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{0f8ade68-df58-4eae-a24a-e238d634bf55}\PlayTasks\0\Agatha Christie - Death on the Nile.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Agatha Christie - Death on the Nile\Agatha Christie - Death on the Nile-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\GameExplorer\{000d96f5-8034-4b74-a429-b6f0b04c75f4}\PlayTasks\0\provider.lnk -> C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\provider.exe (WildTangent) -> /id=000d96f5-8034-4b74-a429-b6f0b04c75f4 /src gameexploreroem
ShortcutWithArgument: C:\Users\Dan\Desktop\ROBLOX Player.lnk -> C:\Users\Dan\AppData\Local\Roblox\Versions\version-79a62ec00b324436\RobloxPlayerLauncher.exe (ROBLOX Corporation) -> -browser
ShortcutWithArgument: C:\Users\Dan\Desktop\ROBLOX Studio 2013.lnk -> C:\Users\Dan\AppData\Local\Roblox\Versions\RobloxStudioLauncherBeta.exe (ROBLOX Corporation) -> -ide
ShortcutWithArgument: C:\Users\Dan\Desktop\RuneScape.lnk -> C:\Users\Dan\jagexcache\jagexlauncher\bin\JagexLauncher.exe () -> runescape
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk -> C:\Users\Dan\jagexcache\jagexlauncher\bin\JagexLauncher.exe () -> runescape
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\[email protected] -> C:\Program Files (x86)\FAHClient\HideConsole.exe () -> C:\Program Files (x86)\FAHClient\FAHClient.exe
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape\RuneScape.lnk -> C:\Users\Dan\jagexcache\jagexlauncher\bin\JagexLauncher.exe () -> runescape
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox\ROBLOX Player.lnk -> C:\Users\Dan\AppData\Local\Roblox\Versions\version-79a62ec00b324436\RobloxPlayerLauncher.exe (ROBLOX Corporation) -> -browser
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox\ROBLOX Studio 2013.lnk -> C:\Users\Dan\AppData\Local\Roblox\Versions\RobloxStudioLauncherBeta.exe (ROBLOX Corporation) -> -ide
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient\[email protected] -> C:\Program Files (x86)\FAHClient\HideConsole.exe () -> "C:\Program Files (x86)\FAHClient\FAHClient.exe" --open-web-control
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\SendTo\TOSHIBA Disc Creator(Audio).lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\ToDisc.exe (TOSHIBA Corporation) -> /SendTo:AD
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\SendTo\TOSHIBA Disc Creator(Data).lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\ToDisc.exe (TOSHIBA Corporation) -> /SendTo:DD
ShortcutWithArgument: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\SendTo\TOSHIBA Disc Creator(Image).lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\ToDisc.exe (TOSHIBA Corporation) -> /SendTo:ITD
ShortcutWithArgument: C:\Users\Dan\AppData\Local\Microsoft\Windows\GameExplorer\{d8addf57-a369-460f-8a5c-2f240d8e33b7}\PlayTasks\0\Virtual Villagers 4 - The Tree of Life.lnk -> C:\Program Files (x86)\TOSHIBA Games\onplay\onplay.exe () -> "C:\Program Files (x86)\TOSHIBA Games\Virtual Villagers 4 - The Tree of Life\virtualvillagers4thetreeoflife-WT.exe" /launchgc /src gameexploreroem
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TOSHIBA Disc Creator(Audio).lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\ToDisc.exe (TOSHIBA Corporation) -> /SendTo:AD
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TOSHIBA Disc Creator(Data).lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\ToDisc.exe (TOSHIBA Corporation) -> /SendTo:DD
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TOSHIBA Disc Creator(Image).lnk -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Disc Creator\ToDisc.exe (TOSHIBA Corporation) -> /SendTo:ITD
ShortcutWithArgument: C:\Users\Public\Desktop\Canon MG5400 series On-screen Manual.lnk -> C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe (CANON INC.) -> "C:\PROGRAM FILES (X86)\Canon\IJ Manual\CANON MG5400 SERIES\English\Info.egv"
ShortcutWithArgument: C:\Users\Public\Desktop\RealPlayer.lnk -> C:\Program Files (x86)\Real\RealPlayer\realplay.exe (RealNetworks, Inc.) -> /launch:desktop


InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder\Get the Media Finder License.URL -> hxxp://mediafinderonline.com/get.php?popup=TFrmMain&custom1=&page=1
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullfrog\Theme Park World\Visit Web Site.url -> www.themeparkworld.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Brother Creative Center.url -> "hxxp://www.brother.com/creativecenter/?WT.mc_id=AF"
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\Brother Web Connect.url -> "https://moi.bwc.brot...=en&mdl=mfc387"
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\DCP-J4110DW LAN\On-line help and FAQ's.url -> hxxp://solutions.brother.com/cgi-bin/solutions.cgi?MDL=mfc387&LNG=en&SRC=FAQ
InternetURL: C:\Users\Dan\Favorites\Amazon.co.uk Books.url -> hxxp://www.amazon.co.uk/b?node=266239&tag=tochibauk-win7-ie-books-bro-21
InternetURL: C:\Users\Dan\Favorites\Amazon.co.uk Homepage.url -> hxxp://www.amazon.co.uk/?tag=tochibauk-win7-ie-portal-bro-21
InternetURL: C:\Users\Dan\Favorites\eBay - Daily Deals on eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut2
InternetURL: C:\Users\Dan\Favorites\eBay - My eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut3
InternetURL: C:\Users\Dan\Favorites\eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut1
InternetURL: C:\Users\Dan\Favorites\Javari.co.uk.url -> hxxp://www.javari.co.uk/?tag=tochibauk-javariuk-bro-21
InternetURL: C:\Users\Dan\Favorites\WildTangent Games.url -> hxxp://toshiba.wildgames.com?mc=iefav&dp=toshibaemea
InternetURL: C:\Users\Dan\Favorites\Toshiba Websites\Toshiba Partners.url -> hxxp://eu.computers.toshiba-europe.com/innovation/generic/partners-eu
InternetURL: C:\Users\Dan\Favorites\Toshiba Websites\Toshiba Portal.url -> hxxp://www.toshiba.co.uk/
InternetURL: C:\Users\Dan\Favorites\Toshiba Websites\Toshiba Services.url -> hxxp://www.services.toshibaplaces.com?campaign=browser-bookmark
InternetURL: C:\Users\Dan\Favorites\Toshiba Websites\Toshiba Support Community.url -> hxxp://forums.computers.toshiba-europe.com/forums/index.jspa
InternetURL: C:\Users\Dan\Favorites\Toshiba Websites\Toshiba Support.url -> hxxp://pc-support.toshiba-europe.com
InternetURL: C:\Users\Dan\Favorites\Links for United Kingdom\Business Link - the site for business.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129728
InternetURL: C:\Users\Dan\Favorites\Links for United Kingdom\Directgov - the nation's official website.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129698
InternetURL: C:\Users\Dan\Favorites\Links for United Kingdom\NHS Choices - for health and social care.url -> hxxp://go.microsoft.com/fwlink/?LinkId=143271
InternetURL: C:\Users\Dan\Favorites\Links\Amazon.url -> hxxp://www.amazon.co.uk/?tag=tochibauk-win7-ie-portal-bro-21
InternetURL: C:\Users\Dan\Favorites\Links\eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut1
InternetURL: C:\Users\Dan\Favorites\Links\Suggested Sites.url -> https://ieonline.mic...ft.com/#ieslice
InternetURL: C:\Users\Dan\Favorites\Links\Toshiba Places.url -> hxxp://Toshiba.eu/places?campaign=FavIE_v1
InternetURL: C:\Users\Dan\Favorites\Links\Web Slice Gallery.url -> hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\Users\Dan\Desktop\Antichamber.url -> steam://rungameid/219890
InternetURL: C:\Users\Dan\Desktop\Borderlands 2.url -> steam://rungameid/49520
InternetURL: C:\Users\Dan\Desktop\Dota 2 Test.url -> steam://rungameid/205790
InternetURL: C:\Users\Dan\Desktop\Dota 2.url -> steam://rungameid/570
InternetURL: C:\Users\Dan\Desktop\Faerie Solitaire.url -> steam://rungameid/38600
InternetURL: C:\Users\Dan\Desktop\FTL Faster Than Light.url -> steam://rungameid/212680
InternetURL: C:\Users\Dan\Desktop\Garry's Mod.url -> steam://rungameid/4000
InternetURL: C:\Users\Dan\Desktop\Hospital Tycoon.url -> steam://rungameid/11590
InternetURL: C:\Users\Dan\Desktop\Kerbal Space Program.url -> steam://rungameid/220200
InternetURL: C:\Users\Dan\Desktop\Orcs Must Die! 2.url -> steam://rungameid/201790
InternetURL: C:\Users\Dan\Desktop\Sid Meier's Civilization III Complete.url -> steam://rungameid/3910
InternetURL: C:\Users\Dan\Desktop\Sid Meier's Civilization V.url -> steam://rungameid/8930
InternetURL: C:\Users\Dan\Desktop\Spore.url -> steam://rungameid/17390
InternetURL: C:\Users\Dan\Desktop\Star Wars - Battlefront II.url -> steam://rungameid/6060
InternetURL: C:\Users\Dan\Desktop\Star Wars Empire at War Gold.url -> steam://rungameid/32470
InternetURL: C:\Users\Dan\Desktop\Stronghold 2.url -> steam://rungameid/40960
InternetURL: C:\Users\Dan\Desktop\Stronghold 3.url -> steam://rungameid/47400
InternetURL: C:\Users\Dan\Desktop\Stronghold Crusader + Extreme.url -> steam://rungameid/40970
InternetURL: C:\Users\Dan\Desktop\Stronghold Legends.url -> steam://rungameid/40980
InternetURL: C:\Users\Dan\Desktop\Stronghold.url -> steam://rungameid/40950
InternetURL: C:\Users\Dan\Desktop\Surgeon Simulator 2013.url -> steam://rungameid/233720
InternetURL: C:\Users\Dan\Desktop\Team Fortress 2.url -> steam://rungameid/440
InternetURL: C:\Users\Dan\Desktop\The Ship Single Player.url -> steam://rungameid/2420
InternetURL: C:\Users\Dan\Desktop\The Ship Tutorial.url -> steam://rungameid/2430
InternetURL: C:\Users\Dan\Desktop\The Ship.url -> steam://rungameid/2400
InternetURL: C:\Users\Dan\Desktop\Towns.url -> steam://rungameid/221020
InternetURL: C:\Users\Dan\Desktop\Train Simulator 2013.url -> steam://rungameid/24010
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Age of Empires Online.url -> steam://rungameid/105430
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Dota 2 Test.url -> steam://rungameid/205790
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Dota 2.url -> steam://rungameid/570
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Garry's Mod.url -> steam://rungameid/4000
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Orcs Must Die! 2.url -> steam://rungameid/201790
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Sid Meier's Civilization III Complete.url -> steam://rungameid/3910
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Sid Meier's Civilization V.url -> steam://rungameid/8930
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Star Wars - Battlefront II.url -> steam://rungameid/6060
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Star Wars Empire at War Gold.url -> steam://rungameid/32470
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Stronghold 2.url -> steam://rungameid/40960
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Stronghold 3.url -> steam://rungameid/47400
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Stronghold Crusader + Extreme.url -> steam://rungameid/40970
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Stronghold Legends.url -> steam://rungameid/40980
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Stronghold.url -> steam://rungameid/40950
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Team Fortress 2.url -> steam://rungameid/440
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Towns.url -> steam://rungameid/221020
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Train Simulator 2013.url -> steam://rungameid/24010
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy Arcade Help.url -> hxxp://www.gamespyarcade.com/support/
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy Arcade Website.url -> hxxp://www.gamespyarcade.com/
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy.com Gaming's Homepage.url -> hxxp://www.gamespy.com/
InternetURL: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\Register GameSpy Arcade.url -> hxxp://www.gamespyarcade.com/register/
InternetURL: C:\Users\Default\Favorites\Amazon.co.uk Books.url -> hxxp://www.amazon.co.uk/b?node=266239&tag=tochibauk-win7-ie-books-bro-21
InternetURL: C:\Users\Default\Favorites\Amazon.co.uk Homepage.url -> hxxp://www.amazon.co.uk/?tag=tochibauk-win7-ie-portal-bro-21
InternetURL: C:\Users\Default\Favorites\eBay - Daily Deals on eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut2
InternetURL: C:\Users\Default\Favorites\eBay - My eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut3
InternetURL: C:\Users\Default\Favorites\eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut1
InternetURL: C:\Users\Default\Favorites\Javari.co.uk.url -> hxxp://www.javari.co.uk/?tag=tochibauk-javariuk-bro-21
InternetURL: C:\Users\Default\Favorites\WildTangent Games.url -> hxxp://toshiba.wildgames.com?mc=iefav&dp=toshibaemea
InternetURL: C:\Users\Default\Favorites\Toshiba Websites\Toshiba Partners.url -> hxxp://eu.computers.toshiba-europe.com/innovation/generic/partners-eu
InternetURL: C:\Users\Default\Favorites\Toshiba Websites\Toshiba Portal.url -> hxxp://www.toshiba.co.uk/
InternetURL: C:\Users\Default\Favorites\Toshiba Websites\Toshiba Services.url -> hxxp://www.services.toshibaplaces.com?campaign=browser-bookmark
InternetURL: C:\Users\Default\Favorites\Toshiba Websites\Toshiba Support Community.url -> hxxp://forums.computers.toshiba-europe.com/forums/index.jspa
InternetURL: C:\Users\Default\Favorites\Toshiba Websites\Toshiba Support.url -> hxxp://pc-support.toshiba-europe.com
InternetURL: C:\Users\Default\Favorites\Links\Amazon.url -> hxxp://www.amazon.co.uk/?tag=tochibauk-win7-ie-portal-bro-21
InternetURL: C:\Users\Default\Favorites\Links\eBay.url -> hxxp://rover.ebay.com/rover/1/710-44557-9400-8/4?link=shortcut1
InternetURL: C:\Users\Default\Favorites\Links\Toshiba Places.url -> hxxp://Toshiba.eu/places?campaign=FavIE_v1

==================== End of log =============================

Edited by Bismillah, 16 March 2014 - 05:52 PM.

  • 0

#4
JSntgRvr
Posted 16 March 2014 - 07:21 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Not much to fix.

Download the enclosed file. [attachment=69652:fixlist.txt]

Save it in the same location FRST is saved.

Run FRST and click on the Fix button. The tool will make a log in the same location FRST is saved (Fixlog.txt), Please post it to your reply.

Posted Image Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Download : ADWCleaner to your desktop.

NOTE: If using Internet Explorer and get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs and click on the AdwCleaner icon.

Posted Image

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder. as AdwCleaner[S0].txt
  • 0

#5
Bismillah
Posted 17 March 2014 - 05:11 PM

Bismillah

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 514 posts
Hi!!


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Dan at 2014-03-17 21:26:34 Run:1
Running from C:\Users\Dan\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2011-03-01] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 TDEIO; \??\C:\Windows\SysWOW64\sysprep\BOOTPRIO\tdeio64.sys [X]
C:\ProgramData\hash.dat
C:\Users\Dan\jagex_cl_loginapplet_LIVE.dat
C:\Users\Dan\jagex_cl_runescape_LIVE.dat
C:\Users\Dan\jagex_cl_runescape_LIVE1.dat
C:\Users\Dan\random.dat
C:\Users\Dan\AppData\Local\Temp\drm_dyndata_7370014.dll
C:\Users\Dan\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Dan\AppData\Local\Temp\jansi-32-git-Bukkit-1.4.7-R1.0-72-g261cacf-b2714jnks.dll
C:\Users\Dan\AppData\Local\Temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll
C:\Users\Dan\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Dan\AppData\Local\Temp\Offercast2802_MYC_.exe
C:\Users\Dan\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Dan\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Dan\AppData\Local\Temp\_is3F6.exe
C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA
C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE
End
*****************

AppMgmt => Service deleted successfully.
catchme => Service deleted successfully.
TDEIO => Service deleted successfully.
C:\ProgramData\hash.dat => Moved successfully.
C:\Users\Dan\jagex_cl_loginapplet_LIVE.dat => Moved successfully.
C:\Users\Dan\jagex_cl_runescape_LIVE.dat => Moved successfully.
C:\Users\Dan\jagex_cl_runescape_LIVE1.dat => Moved successfully.
C:\Users\Dan\random.dat => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\drm_dyndata_7370014.dll => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\drm_dyndata_7380014.dll => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\jansi-32-git-Bukkit-1.4.7-R1.0-72-g261cacf-b2714jnks.dll => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\MSETUP4.EXE => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\Offercast2802_MYC_.exe => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\OfficeSetup.exe => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\_is3F6.exe => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\YTMP7MC8AA => Moved successfully.
C:\Users\Dan\AppData\Local\Temp\XTMP1MC3VE => Moved successfully.

==== End of Fixlog ====

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Home Premium x64
Ran by Dan on 17/03/2014 at 21:27:50.07
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\media finder



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\mediafinder
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\download with &media finder
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mf
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"



~~~ Files

Successfully deleted: [File] C:\windows\syswow64\sho3E6D.tmp
Successfully deleted: [File] C:\windows\syswow64\sho7111.tmp
Successfully deleted: [File] C:\windows\syswow64\sho73F1.tmp
Successfully deleted: [File] C:\windows\syswow64\shoF1E9.tmp



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\partner"
Successfully deleted: [Folder] "C:\Users\Dan\AppData\Roaming\media finder"
Successfully deleted: [Folder] "C:\Program Files (x86)\free youtube downloader"
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{03081CDC-98CE-4F6B-B009-0070EFA3D7CC}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{0338EFCB-6680-4028-BCA8-391DCCD8ADB7}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{060FFCE4-3108-46EB-ACC3-12E3A9A4420E}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{09277103-B6ED-428F-A23D-69DE3E7BD0CF}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{0B80B396-C3F4-490C-A67F-503FB6563E5C}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{0C265237-D76B-4F1E-AE05-DC5B58A4EFE0}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{0CABF5B3-DC62-425D-BD87-4F258070DA47}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{0EBF15AD-B5A3-4FC3-ADD3-57A94D4CE91A}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{14FE4E06-088F-4AD9-AE76-1871FD1CDCB0}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{14FE740E-31B7-42BB-8352-BBBBF923EA1C}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{1AC7C529-85AC-4CC9-9563-0A4F09D896BB}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{1C38AD4B-FA96-407A-B130-0B8EB8C785A0}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{1FF753E6-5A16-4180-B651-0764CD19B60A}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{201E0F19-9BB5-4D91-84C0-AA94DA35547A}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{219A3EA4-6976-4E65-9F93-989E35BB836A}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{29FB0811-63D0-41B1-BDE7-641DB321BDF4}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2B058FE1-AD73-4F51-8A34-5B2BE28D7A60}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2C04F7BB-A1C9-4F9C-ABD6-F6C191C5C34A}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2CA74385-0254-4F78-B71C-E6ABEF9D9D78}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2CAEEB35-CD9F-4684-8A7F-02BE2CAEE9C5}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2CC8E1AD-0AD2-4974-8C71-6A441212C2BC}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2D1CA62B-DDE5-4E20-907A-7325C00BE5C1}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2F986461-B5C7-47C8-AD06-E04E71EB9B24}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{2FE13E3B-3D75-43E3-A06C-A208C22C4DC1}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{312DF301-7077-48C6-A3D3-14B05D2FDFE3}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{32D3049A-33F3-478E-B7E4-AE843034A09D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{34E9CE3C-598B-4F69-965B-09DA5C85C5FA}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{367EF28E-965D-4ACC-8EC5-5ED7E2AB14FD}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{38954D1E-6620-46CF-9B77-E9CD9ED9B259}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{38FDB97A-D5E5-4D53-8428-3D09A51584B0}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{3911EB5F-BDE7-497A-9087-1436C88095DE}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{3C0B87BE-9694-40A2-826E-D09C3277CF9F}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{3FE54CC9-D715-4052-8288-F0B433F24A92}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{43414DBF-375B-4918-840B-91DFDE0F5EBE}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{48B7A207-82C3-4041-B440-861891110A0D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{4A0ED119-8D91-4A60-815B-9F3BFB387189}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{4A4372FE-1A71-4B6E-9E18-6F81E1C63086}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{4F644C62-3FBC-4B92-8DB8-3A6AF1538CD7}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{50A97C4D-C525-425E-8BD7-F5E74739727E}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{54A8E8F0-600D-4568-A029-3774F8E75A2B}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{56FFEF6B-8AEC-4693-B517-B4C65D2E9A3D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{58A56711-0AE6-4788-B10D-28654915523D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{5A52C8D9-6497-4D77-8DF2-87747607564E}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{5AA22F4E-DA41-4F8B-A400-3C9EF1B13034}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{5E8C096E-DC93-4172-A539-BBCF8C41FF66}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{5F26F554-90CD-45DF-9588-0BC979F798F8}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{60703CAF-62CE-4B58-B924-51E253A8F612}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{68727EDE-5362-4D48-B8A0-0E66615EDEBF}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{6AE93F4D-2F5B-4527-BB4E-9B81152524AD}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{702D141A-A749-4DB5-BE60-42FC14B68517}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{711F2D1E-B362-4615-AFE9-0FC5770D1481}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{722BE9F7-6399-40DF-AEE2-CDCB6B21277B}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{78FC0AB9-905B-4064-9E51-AF52ED68093A}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{7AB23F4F-D824-46FD-A7EB-C8DFBC33E26B}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{7BE079CD-D746-4686-9D99-7918E9474938}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{7BF887D3-29F6-4DA2-A414-AFAF01F39389}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{7C21790F-4B14-4C2A-9E6F-21DEC203B60F}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{7C26B95C-EAE9-45E1-8594-78AEBB8FAEF8}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{7FE60E2F-C9D6-4881-A16A-B91F444716F3}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{8033466E-FE7C-46D2-8B08-377F08F2AF1D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{8504DDCD-F6C0-4ECC-85B8-707173F93724}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{8975E5A5-D726-4631-A6E8-272EA6C3DBE3}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{8A19E296-0827-4CFB-9958-258D96BB5659}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{8BAC946A-2094-44DA-A9BD-2A328093D573}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{8E28BE98-D04B-4AF5-A206-C8B765CAEF86}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{8F98C75F-E93F-4923-B42F-F36ABEC4E479}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{9043C932-AFCF-4E6F-9021-F47E39D1E0C6}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{97A2AC5B-1210-4FC0-BE4D-2455EBFF97BC}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{97DA3471-0978-4E87-B3E1-ACA09FA09AAC}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{A41C969F-DFDB-41AA-991B-2BA3471CD0C1}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{A4CB473B-8274-4F9E-AF02-A3A73ED4CFF9}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{A52638AA-2E7F-4E47-8544-58E8CA059893}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{B5CD42DC-A888-4AE6-BEC1-B512F125D23D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{B620EE5E-9603-49DF-A41B-924C8E99F090}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{B7019878-745F-4C62-9F8D-B5F7CC4E56A4}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{BC5FDABB-DAEA-498A-A8B0-D70065026A2B}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{BDE08561-8516-4D72-AFE2-ADC6AD5987F1}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{BEF675EE-64EE-4B50-9B36-8E9CC67FFE8D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{C089CD2E-1520-467D-924F-0FD9B6BEDF73}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{C8E3074C-335E-48DD-B17A-BA38BE3F4A37}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{C975A0FD-6874-4CF4-9669-6799C2F8918B}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{CB38DB39-CA91-4F12-8D4F-E2633DDA4842}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{CC7A2112-066F-4DD7-B6E6-96149010E8ED}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{CC9792EE-245B-431E-AF6F-F55886E7DF1F}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{CCF7EF83-F08C-4884-837C-358717E42865}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{CDB035B4-49CD-4305-9873-6F127459B704}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{D11E13E4-7E80-435F-A59D-5773B9A40FF0}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{D2EC64AF-9C81-4564-8EE4-FCF017E09ADF}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{D4D7EA86-D2C5-43B3-8118-D6A1899763F6}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{D63CF199-B801-409A-A78F-720D6CE4687D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{DBE20EDF-9FBD-4E96-8BF9-C9D491818AB8}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{DBE71A9F-9260-44D5-9FF3-60CBAE74152B}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{DFB2B34D-A7B9-4550-B682-790671510E1D}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{E13E31C0-DA87-42B2-9D07-9BEC3DAED8C7}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{E1BA1531-252F-43E3-9F75-DFBF8F3CBEC4}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{E2B7CE5A-82EB-4E89-AAE0-1A12D4146EE7}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{E2FC1DF2-834D-46A1-BF15-284CC00847E6}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{E312ED2E-275A-4E00-87A9-F103F5880752}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{E3E8B79C-1111-41DC-9C8D-936BF72548FF}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{EA9DF419-827D-4B99-BF84-ACADF61B07A2}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{ED05B5BA-9016-4AC0-A60B-62EC79A3A651}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{EE57084E-F613-44A8-AF31-285D74AA387A}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{EEBE99B8-35F3-4FC4-8B3C-E76EA293E9AA}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{F15FBA74-304A-4340-BA71-84929DAF4436}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{F7412E92-C1DB-4C4E-AC68-99AD5D578203}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{F831A4A3-11DB-481F-85F4-DAFA16EAB919}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{FB5B8D46-423C-44B5-9627-21560D02C7C9}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{FE1CCA8B-938D-455B-B98E-285DE271D794}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{FE75D503-69A1-4CFF-8570-E434124CB383}
Successfully deleted: [Empty Folder] C:\Users\Dan\appdata\local\{FEF15000-D5EF-4965-8BE9-D66435C9D70C}



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Dan\appdata\local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17/03/2014 at 21:34:31.06
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



# AdwCleaner v3.022 - Report created 17/03/2014 at 21:42:49
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Dan - BISMILLAH
# Running from : C:\Users\Dan\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Folder Deleted : C:\Users\Dan\AppData\Local\Zoom_Downloader
Folder Deleted : C:\Users\Dan\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Dan\AppData\Local\Temp\TempDir
Folder Deleted : C:\Users\Dan\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1777 octets] - [17/03/2014 21:41:30]
AdwCleaner[S0].txt - [1722 octets] - [17/03/2014 21:42:49]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1782 octets] ##########
  • 0

#6
JSntgRvr
Posted 17 March 2014 - 06:44 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Download the enclosed file. [attachment=69662:fixlist.txt]

Save it in the same location FRST is saved.

Run FRST and click on the Fix button. The tool will make a log in the same location FRST is saved (Fixlog.txt), Please post it to your reply.

How is it doing now?
  • 0

#7
Bismillah
Posted 20 March 2014 - 03:17 PM

Bismillah

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 514 posts
Apologies for the day, have had a lot of uni meetings on.

Laptop is still quite laggy, not like it used to be :(

Fix went through fine :)

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Dan at 2014-03-20 21:18:54 Run:2
Running from C:\Users\Dan\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
C:\Users\Dan\AppData\Local\Temp\tmp2013232911
End
*****************

C:\Users\Dan\AppData\Local\Temp\tmp2013232911 => Moved successfully.

==== End of Fixlog ====

Edited by Bismillah, 20 March 2014 - 03:18 PM.

  • 0

#8
JSntgRvr
Posted 20 March 2014 - 05:37 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Posted Image Please download Malwarebytes' Anti-Malware from Here.

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediatly.

How is the computer doing?
  • 0

#9
Bismillah
Posted 21 March 2014 - 11:43 AM

Bismillah

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 514 posts
Hi :)


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.03.20.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16521
Dan :: BISMILLAH [administrator]

20/03/2014 23:52:11
mbam-log-2014-03-20 (23-52-11).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 247562
Time elapsed: 11 minute(s), 13 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKCR\Typelib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F} (PUP.Optional.GetNow.A) -> Quarantined and deleted successfully.
HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967} (PUP.Optional.GetNow.A) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 14
C:\Users\Dan\Downloads\Minecraft provided through DownloadPilot.exe (PUP.Optional.GetNow.A) -> Quarantined and deleted successfully.
C:\Users\Dan\Downloads\DHL_Report-5197E12716.zip (Trojan.Inject) -> Quarantined and deleted successfully.
C:\Users\Dan\Downloads\FreeYouTubeDownloaderInstaller.exe (PUP.Optional.Somoto) -> Quarantined and deleted successfully.
C:\Users\Dan\Downloads\InternationalPrimoPDF.exe (PUP.Optional.OpenCandy) -> Quarantined and deleted successfully.
C:\Users\Dan\Downloads\ManyCamSetup (1).exe (PUP.Optional.Spigot.A) -> Quarantined and deleted successfully.
C:\Users\Dan\Downloads\ManyCamSetup.exe (PUP.Optional.Spigot.A) -> Quarantined and deleted successfully.
C:\Users\Dan\Downloads\SoftonicDownloader_for_gamespy-arcade.exe (PUP.Optional.Softonic) -> Quarantined and deleted successfully.
C:\Users\Dan\Local Settings\Temporary Internet Files\Content.IE5\4Q9AYG0K\stubinst_pkg_en-uk[1].cab (PUP.Optional.OpenCandy) -> Quarantined and deleted successfully.

(end)
  • 0

#10
JSntgRvr
Posted 21 March 2014 - 01:30 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Please run a Free ESET Online Scan. Save and post its report.

How is the computer doing?
  • 0

#11
Bismillah
Posted 24 March 2014 - 06:17 PM

Bismillah

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 514 posts

It completed with nothing found,

 

 

thanks for your help! Everything seems to be fine now :)


  • 0

#12
JSntgRvr
Posted 01 April 2014 - 08:27 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP