Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

I need help removing Trovi a browser hijacker, Norton failed to find a


  • This topic is locked This topic is locked

#1
bittercreek1414

bittercreek1414

    Member

  • Member
  • PipPip
  • 16 posts

HP 6910 computer, Windows 7  professional is very slow. Internet Explorer keeps being changed back to trovi.com and only has a flashing box that says update windows drivers. Norton failed to find anything . Norton power eraser failed. Some website said to ask geekstogo. A search  for trovi.com problems turned up a lot of spyware removals but Norton said they were unsafe so I was afraid to try them. Please help me.

 


  • 0

Advertisements


#2
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
I found an Adware Removal Tool v3.9 that helped me and got rid of the stupid trovi. but I am still getting freezes and very very slow movement on all websites. I mistakenly downloaded sparktrust and then uninstalled it manually. Now something hijacks my homepage and turns it into google.com, it used to do trovi. I downloaded OTL and I am going to try and put the Notepad results on here, I cannot make heads or tails of it, I don't know what to do.
P>S> I do not know how these other people showed you their results from OTL, but mine is very very long and I don't understand it and I don't know how to make it so you guys can see it. Please let me know what if anything ya'll can help me with. Thanks so much.

Edited by bittercreek1414, 26 August 2014 - 03:09 AM.

  • 0

#3
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hello bittercreek1414, welcome to Geeks To Go's Malware Removal forum!
 
My username is LiquidTension, but you can call me Adam. I will be assisting you with your malware-related problems.
If you would allow me to call you by your first name I would prefer that. xsmile.png.pagespeed.ic.CwSpBGGvqN.png
 
======================================================
 
Please read through the points below to ensure this process moves as quickly and efficiently as possible.

  • Please read through my instructions thoroughly, and ensure you carry out each step in the order specified.
  • Please do not post logs using the CODEQUOTE or ATTACHMENT format. Logs should be posted directly in plain text. If you receive an error whilst posting, please break the log in half and use multiple posts.
  • Please do not run any tools or take any steps other than those I provide for you. Independent efforts may make matters worse, and will affect my ability in ascertaining the current situation & providing the best set of instructions for you.
  • Please backup important documents before proceeding with my instructions.
  • If you come across any issues whilst following my instructions, please stop and inform me of the issue in as much detail as possible. Please do not hesitate to ask before you run anything.
  • Topics are locked if no response is made after 5 days. Please inform me if you will require additional time to complete my instructions.
     

======================================================
 
Please run the following diagnostic scans so I can ascertain the state of your computer. If you need help with the downloading or running of the tools, please let me know. Likewise, the same applies with the posting of logs; please be sure to ask.
 
STEP 1

xlK5Hdb.png.pagespeed.ce.J4MzrrPAEo.png Farbar Recovery Scan Tool (FRST) Scan

  • Please download Farbar Recovery Scan Tool (x32) or Farbar Recovery Scan Tool (x64) and save the file to your Desktop.
  • Note: Download and run the version compatible with your system (32 or 64-bit). Download both if you're unsure; only one will run.
  • Right-Click FRST.exe / FRST64.exe and select xAVOiBNU.jpg.pagespeed.ic.H5HC6LkiJX.jpg Run as administrator to run the programme.
  • Click Yes to the disclaimer.
  • Ensure the Addition.txt box is checked.
  • Click the Scan button and let the programme run.
  • Upon completion, click OK, then OK on the Addition.txt pop up screen.
  • Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Copy the contents of both logs and paste in your next reply. 
     

STEP 2
YARWD1t.png.pagespeed.ce.nvhmVeYDe3.png TDSSKiller Scan

  • Please download TDSSKiller and save the file to your Desktop.
  • Right-Click TDSSKiller.exe and select xAVOiBNU.jpg.pagespeed.ic.H5HC6LkiJX.jpg Run as administrator to run the programme.
  • Click Change parameters. Place a checkmark next to Detect TDLFS file system.
  • ​Click Start Scan. Do not use the computer during the scan.
  • If objects are found, change the action to skip.
  • Click Continue and close the window.
  • A log will be created and saved to the root directory (usually C:\). Copy the contents of the log and paste in your next reply.
     

======================================================
 
STEP 3
xpfNZP4A.png.pagespeed.ic.bp5cRl1pJg.jpg Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • FRST.txt
  • Addition.txt
  • TDSSKiller log

  • 0

#4
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

You can call me LInda. Thanks for your assistance. this is the result of Step 1.

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version:26-08-2014
Ran by 6910p at 2014-08-28 06:40:36
Running from C:\Users\6910p\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GA0N7JF3
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Enabled - Out of date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Internet Security (Enabled - Out of date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
ATI Catalyst Install Manager (HKLM\...\{A990D795-F751-39DA-DDD4-07ED04CEC7CE}) (Version: 3.0.715.0 - ATI Technologies, Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.100.82.148 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.100.82.148 - Broadcom Corporation)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0521.2235.38731 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2009.0521.2235.38731 - ATI) Hidden
CCC Help Chinese Standard (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Czech (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Danish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Dutch (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help English (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Finnish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help French (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help German (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Greek (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Hungarian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Italian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Japanese (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Korean (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Norwegian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Polish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Portuguese (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Russian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Spanish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Swedish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Thai (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Turkish (Version: 2009.0521.2234.38731 - ATI) Hidden
ccc-core-static (Version: 2009.0521.2235.38731 - ATI) Hidden
ccc-utility (Version: 2009.0521.2235.38731 - ATI) Hidden
Definition Update for Microsoft Office 2013 (KB2760587) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{0B79C91F-978F-4C2E-9FE4-D4B567808858}) (Version:  - Microsoft)
Disketch Disc Label Software (HKLM\...\Disketch) (Version: 3.24 - NCH Software)
Express Burn (HKLM\...\ExpressBurn) (Version:  - NCH Software)
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.14.1 - Hewlett-Packard Company)
Intel® Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
Intel® Network Connections 18.7.28.0 (Version: 18.7.28.0 - Intel) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Access MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Excel MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Word MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Norton Internet Security (HKLM\...\NIS) (Version: 21.5.0.19 - Symantec Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
RICOH Media Driver (HKLM\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.10.00.04 - RICOH)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (Version:  - Microsoft) Hidden
SlimDrivers (HKLM\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_PCI_VEN_14F1&DEV_2C06_hpZ1379z) (Version: 7.80.3.52 - Conexant Systems)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TweakNow RegCleaner (HKLM\...\TweakNow RegCleaner_is1) (Version: 7.3.1 - TweakNow.com)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-0016-0409-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-0018-0409-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-001B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2881070) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{35E5FACD-A5AA-46AD-93C7-F6D7969044E7}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2881070) 32-Bit Edition (HKLM\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{35E5FACD-A5AA-46AD-93C7-F6D7969044E7}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2881083) 32-Bit Edition (HKLM\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{7DF13AFE-A484-4178-A82D-EF0689A24775}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760249) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{8C07AD38-38EB-4332-BCB3-F55A77C927DF}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{A7610F07-E844-4444-8E1D-D5BC8AD0B4C5}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760544) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{45B7D395-EB9B-414F-9E46-5849B42326E2}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2768012) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{66421820-D3CA-450A-898C-78D7E40108E6}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{1644D7F6-90EE-4252-8884-18E4E330529D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 32-Bit Edition (HKLM\...\{90150000-0016-0409-0000-0000000FF1CE}_Office15.PROPLUS_{1644D7F6-90EE-4252-8884-18E4E330529D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2826040) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{B7EA8070-C37F-4617-82F4-52CF3304595A}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2837644) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{9BC5FF1D-9626-44D7-BC7F-EB44BD8BDB9F}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2863843) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{AD7045B8-1D75-4B4C-8120-12F045D206C7}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880457) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{D27F6360-AE1E-4C8C-8ECD-C0375E20B923}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{5D6439FF-D651-4B13-B52E-2508AB9DE19D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 32-Bit Edition (HKLM\...\{90150000-006E-0409-0000-0000000FF1CE}_Office15.PROPLUS_{5D6439FF-D651-4B13-B52E-2508AB9DE19D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880478) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7C5CEE0F-6823-4BB7-A28F-76FEC14EB6AC}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881009) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7A3EF4FF-A9C8-4F7E-8020-A45F7D319387}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0016-0409-0000-0000000FF1CE}_Office15.PROPLUS_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0090-0409-0000-0000000FF1CE}_Office15.PROPLUS_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883036) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{B8E73381-09B1-4895-ACD0-34385B0F526D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883049) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{1C6260FD-A280-49FE-89D0-CCEC647FBD8E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883052) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{3F3A95FF-9F40-4B19-8227-53DF683B4CF9}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883052) 32-Bit Edition (HKLM\...\{90150000-006E-0409-0000-0000000FF1CE}_Office15.PROPLUS_{3F3A95FF-9F40-4B19-8227-53DF683B4CF9}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 32-Bit Edition (HKLM\...\{90150000-001F-0409-0000-0000000FF1CE}_Office15.PROPLUS_{DA288EB3-648C-433C-88AC-71AEAAFAACF7}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 32-Bit Edition (HKLM\...\{90150000-001F-040C-0000-0000000FF1CE}_Office15.PROPLUS_{51865C36-97D4-4210-A33E-50BCC8CDDF72}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 32-Bit Edition (HKLM\...\{90150000-001F-0C0A-0000-0000000FF1CE}_Office15.PROPLUS_{C20FB0E0-31F6-4958-B94D-AEF3CC31FD87}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883062) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{EE35EB6C-7768-433F-B9A0-73C97699A08C}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2883066) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{90EEAEDF-CD51-4E8C-B781-7A071EC53C36}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2883066) 32-Bit Edition (HKLM\...\{90150000-00BA-0409-0000-0000000FF1CE}_Office15.PROPLUS_{90EEAEDF-CD51-4E8C-B781-7A071EC53C36}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{CA0F0611-10FB-47D4-A642-E3BABCC73393}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 32-Bit Edition (HKLM\...\{90150000-00A1-0409-0000-0000000FF1CE}_Office15.PROPLUS_{CA0F0611-10FB-47D4-A642-E3BABCC73393}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{1BCA67A6-5329-48D0-A088-C097AC7A14BD}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 32-Bit Edition (HKLM\...\{90150000-001A-0409-0000-0000000FF1CE}_Office15.PROPLUS_{1BCA67A6-5329-48D0-A088-C097AC7A14BD}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2883051) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{01923A0F-BA34-4A75-8D43-97F536E44D95}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2883051) 32-Bit Edition (HKLM\...\{90150000-0018-0409-0000-0000000FF1CE}_Office15.PROPLUS_{01923A0F-BA34-4A75-8D43-97F536E44D95}) (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7500AD77-83C6-400B-8B2F-F8E401A7B697}) (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 32-Bit Edition (HKLM\...\{90150000-0019-0409-0000-0000000FF1CE}_Office15.PROPLUS_{7500AD77-83C6-400B-8B2F-F8E401A7B697}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{25C61889-2E44-4BE1-9E96-9364BFDCF501}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition (HKLM\...\{90150000-006E-0409-0000-0000000FF1CE}_Office15.PROPLUS_{25C61889-2E44-4BE1-9E96-9364BFDCF501}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2878319) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{A7CD05CC-CA85-428C-91FD-74A908D126E1}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-001A-0409-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-001B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
VC_CRT_x86 (Version: 1.02.0000 - Intel Corporation) Hidden
VideoPad Video Editor (HKLM\...\VideoPad) (Version: 3.60 - NCH Software)
WavePad Sound Editor (HKLM\...\WavePad) (Version: 5.96 - NCH Software)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points  =========================

26-08-2014 22:42:36 Windows Update
26-08-2014 23:28:14 SlimDrivers Installing Drivers
28-08-2014 07:00:25 Windows Update
28-08-2014 09:45:16 Restore Operation
28-08-2014 10:36:24 Windows Update

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0700E1B7-C808-44F1-B1A0-9875BCA8E1FC} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files\Norton Internet Security\Engine\21.5.0.19\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {29C07D4D-8C2B-45E1-A3D9-13BDEE502F7E} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files\Norton Internet Security\Engine\21.5.0.19\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {317B8876-BF65-4478-BBC6-9A7A382BC7CA} - System32\Tasks\NCH Software\WavePadSevenDays => C:\Program Files\NCH Software\WavePad\WavePad.exe [2014-07-28] (NCH Software)
Task: {37601F7E-B451-4680-93F6-CEB78585A035} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Internet Security\Engine\21.5.0.19\WSCStub.exe [2014-07-31] (Symantec Corporation)
Task: {3CF6E8B2-134C-4B57-9EE6-90B1428EA678} - System32\Tasks\Games\UpdateCheck_S-1-5-21-156859833-1109330561-1971365752-1000
Task: {408DA32B-DC72-45DB-8D13-192E2C645607} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {4DBCCEA4-B4B9-4F97-A848-FB28DB3B9376} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {7FF0B812-2B51-4513-8DCB-5B1A060B9307} - \GoogleUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {8A0849B8-D028-446D-99EF-B294DF66F28A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {8FD5E6AD-613B-4364-A9D3-1DC53D0B60EE} - System32\Tasks\NCH Software\ExpressBurnSevenDays => C:\Program Files\NCH Software\ExpressBurn\ExpressBurn.exe [2013-04-26] (NCH Software)
Task: {A8D7403C-6F30-43A4-A38F-BDD0B82DA7C7} - System32\Tasks\NCH Software\DisketchSevenDays => C:\Program Files\NCH Software\Disketch\Disketch.exe [2014-08-14] (NCH Software)
Task: {B1206A98-E20D-4A1E-B358-8AFD2A2D9668} - \GoogleUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {BFA074B7-B8E2-4506-8C3C-9ADD3E371577} - System32\Tasks\SlimDrivers Startup => C:\Program Files\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: {F5C3788A-6381-4A95-A126-C15080BBF689} - System32\Tasks\Microsoft Office 15 Sync Maintenance for 6910p-PC-6910p 6910p-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-07-27] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (whitelisted) =============

2014-07-27 11:41 - 2014-07-27 11:41 - 08892576 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-08-22 01:19 - 2014-08-22 01:19 - 00014848 _____ () C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
2008-12-18 15:03 - 2008-12-18 15:03 - 00020480 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (08/28/2014 06:33:30 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2014 05:53:20 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2014 03:19:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2014 01:52:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 07:32:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 07:28:13 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {fc363ec2-c6c7-4b94-be47-527c2c67ae65}

Error: (08/26/2014 06:50:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: ffc

Start Time: 01cfc17fea79ae42

Termination Time: 0

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (08/26/2014 06:48:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 03:28:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 01:42:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (08/28/2014 06:38:57 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8024200d: Security Update for Windows 7 (KB2993651).

Error: (08/28/2014 06:33:44 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (08/28/2014 06:33:16 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (08/28/2014 06:33:13 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (08/28/2014 06:33:12 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (08/28/2014 06:33:02 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (08/28/2014 06:33:01 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/28/2014 05:53:09 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/28/2014 05:46:56 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (08/28/2014 05:46:54 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Microsoft Office Sessions:
=========================
Error: (08/28/2014 06:33:30 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2014 05:53:20 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2014 03:19:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2014 01:52:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 07:32:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 07:28:13 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Access is denied.

Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {fc363ec2-c6c7-4b94-be47-527c2c67ae65}

Error: (08/26/2014 06:50:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.17239ffc01cfc17fea79ae420C:\Program Files\Internet Explorer\iexplore.exe

Error: (08/26/2014 06:48:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 03:28:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2014 01:42:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

==================== Memory info ===========================

Processor: Intel® Core™2 Duo CPU T7300 @ 2.00GHz
Percentage of memory in use: 53%
Total physical RAM: 2047.3 MB
Available physical RAM: 961.82 MB
Total Pagefile: 5117.3 MB
Available Pagefile: 3757.49 MB
Total Virtual: 2047.88 MB
Available Virtual: 1903.44 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:93.06 GB) (Free:62.62 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 93.2 GB) (Disk ID: 01B601B6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=93.1 GB) - (Type=07 NTFS)

==================== End Of Log ============================


Edited by bittercreek1414, 28 August 2014 - 04:34 AM.

  • 0

#5
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

Report from TDSSkiller from Step 2...  about 1/3 of total report

 

06:57:18.0190 0x17e0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
06:57:24.0976 0x17e0  ============================================================
06:57:24.0976 0x17e0  Current date / time: 2014/08/28 06:57:24.0976
06:57:24.0976 0x17e0  SystemInfo:
06:57:24.0976 0x17e0 
06:57:24.0976 0x17e0  OS Version: 6.1.7601 ServicePack: 1.0
06:57:24.0976 0x17e0  Product type: Workstation
06:57:24.0976 0x17e0  ComputerName: 6910P-PC
06:57:24.0976 0x17e0  UserName: 6910p
06:57:24.0976 0x17e0  Windows directory: C:\Windows
06:57:24.0976 0x17e0  System windows directory: C:\Windows
06:57:24.0976 0x17e0  Processor architecture: Intel x86
06:57:24.0976 0x17e0  Number of processors: 2
06:57:24.0976 0x17e0  Page size: 0x1000
06:57:24.0976 0x17e0  Boot type: Normal boot
06:57:24.0976 0x17e0  ============================================================
06:57:27.0348 0x17e0  KLMD registered as C:\Windows\system32\drivers\83255957.sys
06:57:27.0660 0x17e0  System UUID: {11261CA7-AB91-F9B0-1B83-F85099ECAE56}
06:57:28.0330 0x17e0  Drive \Device\Harddisk0\DR0 - Size: 0x174A446000 ( 93.16 Gb ), SectorSize: 0x200, Cylinders: 0x2F81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
06:57:28.0330 0x17e0  ============================================================
06:57:28.0330 0x17e0  \Device\Harddisk0\DR0:
06:57:28.0330 0x17e0  MBR partitions:
06:57:28.0330 0x17e0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
06:57:28.0330 0x17e0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xBA1F000
06:57:28.0330 0x17e0  ============================================================
06:57:28.0362 0x17e0  C: <-> \Device\Harddisk0\DR0\Partition2
06:57:28.0362 0x17e0  ============================================================
06:57:28.0362 0x17e0  Initialize success
06:57:28.0362 0x17e0  ============================================================
06:57:53.0946 0x1440  ============================================================
06:57:53.0946 0x1440  Scan started
06:57:53.0946 0x1440  Mode: Manual; TDLFS;
06:57:53.0946 0x1440  ============================================================
06:57:53.0946 0x1440  KSN ping started
06:57:57.0971 0x1440  KSN ping finished: true
06:57:58.0485 0x1440  ================ Scan system memory ========================
06:57:58.0485 0x1440  System memory - ok
06:57:58.0485 0x1440  ================ Scan services =============================
06:57:58.0719 0x1440  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
06:57:58.0719 0x1440  1394ohci - ok
06:57:58.0766 0x1440  [ CC1F1D3D70DC13C2C281488D347D4415, 3AB1495F8982C727D02E9975E2E04203B918AFAA7B05B5E7FEB5142EB30D1998 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
06:57:58.0782 0x1440  Accelerometer - ok
06:57:58.0829 0x1440  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
06:57:58.0829 0x1440  ACPI - ok
06:57:58.0860 0x1440  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
06:57:58.0860 0x1440  AcpiPmi - ok
06:57:58.0922 0x1440  [ FB9ECE3F7B8A03E474E611031AD4CD23, 32CDBC6D32DF5C711819A85FD147511AA2E8EE7609CE7D9D352E7755D2E964BB ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
06:57:58.0922 0x1440  ADIHdAudAddService - ok
06:57:59.0000 0x1440  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
06:57:59.0016 0x1440  adp94xx - ok
06:57:59.0031 0x1440  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
06:57:59.0047 0x1440  adpahci - ok
06:57:59.0047 0x1440  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
06:57:59.0063 0x1440  adpu320 - ok
06:57:59.0078 0x1440  [ 12D23758621B00B8D3134095EC3325FD, 30DC1C40539FF6E14D9D692870FD6D511455F2D86DB1BF505B2500F953A611C4 ] AEADIFilters    C:\Windows\system32\AEADISRV.EXE
06:57:59.0078 0x1440  AEADIFilters - ok
06:57:59.0109 0x1440  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
06:57:59.0109 0x1440  AeLookupSvc - ok
06:57:59.0187 0x1440  [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD             C:\Windows\system32\drivers\afd.sys
06:57:59.0187 0x1440  AFD - ok
06:57:59.0250 0x1440  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
06:57:59.0250 0x1440  agp440 - ok
06:57:59.0281 0x1440  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
06:57:59.0281 0x1440  aic78xx - ok
06:57:59.0328 0x1440  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
06:57:59.0328 0x1440  ALG - ok
06:57:59.0390 0x1440  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
06:57:59.0390 0x1440  aliide - ok
06:57:59.0406 0x1440  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
06:57:59.0406 0x1440  amdagp - ok
06:57:59.0437 0x1440  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
06:57:59.0437 0x1440  amdide - ok
06:57:59.0453 0x1440  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
06:57:59.0453 0x1440  AmdK8 - ok
06:57:59.0484 0x1440  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
06:57:59.0484 0x1440  AmdPPM - ok
06:57:59.0546 0x1440  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
06:57:59.0546 0x1440  amdsata - ok
06:57:59.0577 0x1440  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
06:57:59.0577 0x1440  amdsbs - ok
06:57:59.0609 0x1440  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
06:57:59.0609 0x1440  amdxata - ok
06:57:59.0624 0x1440  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
06:57:59.0624 0x1440  AppID - ok
06:57:59.0655 0x1440  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
06:57:59.0655 0x1440  AppIDSvc - ok
06:57:59.0718 0x1440  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\Windows\System32\appinfo.dll
06:57:59.0718 0x1440  Appinfo - ok
06:57:59.0780 0x1440  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
06:57:59.0780 0x1440  AppMgmt - ok
06:57:59.0796 0x1440  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
06:57:59.0796 0x1440  arc - ok
06:57:59.0827 0x1440  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
06:57:59.0827 0x1440  arcsas - ok
06:57:59.0936 0x1440  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
06:57:59.0936 0x1440  aspnet_state - ok
06:57:59.0967 0x1440  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
06:57:59.0983 0x1440  AsyncMac - ok
06:57:59.0999 0x1440  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
06:57:59.0999 0x1440  atapi - ok
06:58:00.0077 0x1440  [ EC63A3242A1708A41BF773C73D8092FA, 457FF2B214654C79575C0B341102ACDCCD4E996EE89D3895BF02481376BA3F26 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
06:58:00.0092 0x1440  Ati External Event Utility - ok
06:58:00.0342 0x1440  [ EBA9B1E2E62091B72C57C93211AA7FB2, 5CD76CD8EFAB715BD732E0C16E6E89F558BB55C13E0D16E646DCAC26ACC3C4CB ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
06:58:00.0435 0x1440  atikmdag - ok
06:58:00.0545 0x1440  [ 6F718D6616E50FBCA64249755B7A1D2F, 0D243E50D9BEB23A1F894AAC4F97FB44E81C4377362AAB0394D066CAFA353742 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
06:58:00.0560 0x1440  ATSwpWDF - ok
06:58:00.0623 0x1440  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:58:00.0638 0x1440  AudioEndpointBuilder - ok
06:58:00.0654 0x1440  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
06:58:00.0669 0x1440  Audiosrv - ok
06:58:00.0716 0x1440  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
06:58:00.0716 0x1440  AxInstSV - ok
06:58:00.0779 0x1440  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
06:58:00.0794 0x1440  b06bdrv - ok
06:58:00.0841 0x1440  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
06:58:00.0841 0x1440  b57nd60x - ok
06:58:00.0888 0x1440  [ 80F41256540B01197407C99728D7E680, E2C663576B15BE6C6FC74C0F5E8A073B3584150A21C84F1D027A596E9465C766 ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
06:58:00.0888 0x1440  BCM42RLY - ok
06:58:01.0091 0x1440  [ 77C3CF56EB900C186741C591F95800A0, C584CE0EF25FE428EECE4ED561380EEF3B1DEE58B55B043BAC85D9737DF86400 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys
06:58:01.0169 0x1440  BCM43XX - ok
06:58:01.0293 0x1440  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
06:58:01.0293 0x1440  BDESVC - ok
06:58:01.0340 0x1440  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
06:58:01.0340 0x1440  Beep - ok
06:58:01.0403 0x1440  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
06:58:01.0403 0x1440  BFE - ok
06:58:01.0637 0x1440  [ A7D95AD0D83B96EFC2DF9337A90BDF43, CE908F200F6AEE50E7B324AC352F35C28A7F0118A382225FEF387E454CA003A7 ] BHDrvx86        C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\BASHDefs\20140821.007\BHDrvx86.sys
06:58:01.0652 0x1440  BHDrvx86 - ok
06:58:01.0715 0x1440  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
06:58:01.0730 0x1440  BITS - ok
06:58:01.0777 0x1440  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
06:58:01.0777 0x1440  blbdrive - ok
06:58:01.0808 0x1440  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
06:58:01.0808 0x1440  bowser - ok
06:58:01.0808 0x1440  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
06:58:01.0808 0x1440  BrFiltLo - ok
06:58:01.0824 0x1440  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
06:58:01.0824 0x1440  BrFiltUp - ok
06:58:01.0855 0x1440  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
06:58:01.0855 0x1440  Browser - ok
06:58:01.0886 0x1440  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
06:58:01.0902 0x1440  Brserid - ok
06:58:01.0902 0x1440  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
06:58:01.0902 0x1440  BrSerWdm - ok
06:58:01.0917 0x1440  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
06:58:01.0917 0x1440  BrUsbMdm - ok
06:58:01.0917 0x1440  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
06:58:01.0917 0x1440  BrUsbSer - ok
06:58:01.0917 0x1440  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
06:58:01.0917 0x1440  BTHMODEM - ok
06:58:01.0964 0x1440  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
06:58:01.0964 0x1440  bthserv - ok
06:58:02.0058 0x1440  [ 56C2811FD0D7B727808A69407B5BFAE0, 5F84A29A9E6D8F566F95399F3B41A82DD128EA69678BBBCF75AD914DE70D9A74 ] ccSet_NIS       C:\Windows\system32\drivers\NIS\1505000.013\ccSetx86.sys
06:58:02.0058 0x1440  ccSet_NIS - ok
06:58:02.0105 0x1440  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
06:58:02.0105 0x1440  cdfs - ok
06:58:02.0151 0x1440  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
06:58:02.0151 0x1440  cdrom - ok
06:58:02.0198 0x1440  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
06:58:02.0214 0x1440  CertPropSvc - ok
06:58:02.0214 0x1440  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
06:58:02.0214 0x1440  circlass - ok
06:58:02.0245 0x1440  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
06:58:02.0245 0x1440  CLFS - ok
06:58:02.0339 0x1440  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:58:02.0339 0x1440  clr_optimization_v2.0.50727_32 - ok
06:58:02.0385 0x1440  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:58:02.0385 0x1440  clr_optimization_v4.0.30319_32 - ok
06:58:02.0417 0x1440  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
06:58:02.0417 0x1440  CmBatt - ok
06:58:02.0432 0x1440  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
06:58:02.0432 0x1440  cmdide - ok
06:58:02.0463 0x1440  [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG             C:\Windows\system32\Drivers\cng.sys
06:58:02.0479 0x1440  CNG - ok
06:58:02.0573 0x1440  [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
06:58:02.0573 0x1440  Com4QLBEx - ok
06:58:02.0635 0x1440  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
06:58:02.0651 0x1440  Compbatt - ok
06:58:02.0697 0x1440  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
06:58:02.0697 0x1440  CompositeBus - ok
06:58:02.0713 0x1440  COMSysApp - ok
06:58:02.0713 0x1440  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
06:58:02.0729 0x1440  crcdisk - ok
06:58:02.0791 0x1440  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
06:58:02.0791 0x1440  CryptSvc - ok
06:58:02.0838 0x1440  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
06:58:02.0853 0x1440  CSC - ok
06:58:02.0885 0x1440  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
06:58:02.0900 0x1440  CscService - ok
06:58:02.0931 0x1440  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
06:58:02.0947 0x1440  DcomLaunch - ok
06:58:02.0978 0x1440  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
06:58:02.0978 0x1440  defragsvc - ok
06:58:03.0025 0x1440  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
06:58:03.0041 0x1440  DfsC - ok
06:58:03.0087 0x1440  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
06:58:03.0087 0x1440  Dhcp - ok
06:58:03.0087 0x1440  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
06:58:03.0103 0x1440  discache - ok
06:58:03.0119 0x1440  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\drivers\disk.sys
06:58:03.0119 0x1440  Disk - ok
06:58:03.0165 0x1440  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
06:58:03.0165 0x1440  dmvsc - ok
06:58:03.0197 0x1440  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
06:58:03.0212 0x1440  Dnscache - ok
06:58:03.0259 0x1440  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
06:58:03.0259 0x1440  dot3svc - ok
06:58:03.0306 0x1440  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
06:58:03.0321 0x1440  DPS - ok
06:58:03.0368 0x1440  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
06:58:03.0368 0x1440  drmkaud - ok
06:58:03.0431 0x1440  [ 3583A5A8CC2E682BFFBD4630D0FEC08B, FD0F184B358FCECAA763444B414074BEF4E871EB7527D88385519FC158435C72 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
06:58:03.0446 0x1440  DXGKrnl - ok
06:58:03.0509 0x1440  [ 0535BFBEDB9378DDD15BDF9957D57D71, CA93DD66AF1DC8DFFE370C41EEDF57F6073B4859257BE35E30914F81C1478034 ] e1express       C:\Windows\system32\DRIVERS\e1e6232.sys
06:58:03.0509 0x1440  e1express - ok
06:58:03.0571 0x1440  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
06:58:03.0571 0x1440  EapHost - ok
06:58:03.0743 0x1440  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
06:58:03.0805 0x1440  ebdrv - ok
06:58:03.0914 0x1440  [ 10D14FAEF105DF2432D0E03860895284, 200662CD73537A8152FA0C276F20CE9B558FB2EB1AD0C171E5CCF4DC8C02F8B3 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
06:58:03.0914 0x1440  eeCtrl - ok
06:58:03.0945 0x1440  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS             C:\Windows\System32\lsass.exe
06:58:03.0945 0x1440  EFS - ok
06:58:04.0023 0x1440  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
06:58:04.0039 0x1440  ehRecvr - ok
06:58:04.0039 0x1440  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
06:58:04.0055 0x1440  ehSched - ok
06:58:04.0117 0x1440  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
06:58:04.0133 0x1440  elxstor - ok
06:58:04.0179 0x1440  [ 0424EAB7549926FB864BD41E7F0639CC, 04E349F311B24239E1B4DAD073360A0D91391B69E74B43D705A1C00FDF113F45 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
06:58:04.0179 0x1440  EraserUtilRebootDrv - ok
06:58:04.0195 0x1440  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
06:58:04.0195 0x1440  ErrDev - ok
06:58:04.0242 0x1440  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
06:58:04.0257 0x1440  EventSystem - ok
06:58:04.0273 0x1440  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
06:58:04.0273 0x1440  exfat - ok
06:58:04.0289 0x1440  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
06:58:04.0289 0x1440  fastfat - ok
06:58:04.0351 0x1440  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
06:58:04.0367 0x1440  Fax - ok
06:58:04.0382 0x1440  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\drivers\fdc.sys
06:58:04.0382 0x1440  fdc - ok
06:58:04.0398 0x1440  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
06:58:04.0398 0x1440  fdPHost - ok
06:58:04.0398 0x1440  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
06:58:04.0398 0x1440  FDResPub - ok
06:58:04.0429 0x1440  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
06:58:04.0429 0x1440  FileInfo - ok
06:58:04.0429 0x1440  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
06:58:04.0429 0x1440  Filetrace - ok
06:58:04.0429 0x1440  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
06:58:04.0429 0x1440  flpydisk - ok
06:58:04.0460 0x1440  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
06:58:04.0460 0x1440  FltMgr - ok
06:58:04.0554 0x1440  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\Windows\system32\FntCache.dll
06:58:04.0569 0x1440  FontCache - ok
06:58:04.0663 0x1440  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
06:58:04.0679 0x1440  FontCache3.0.0.0 - ok
06:58:04.0694 0x1440  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
06:58:04.0694 0x1440  FsDepends - ok
06:58:04.0725 0x1440  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
06:58:04.0725 0x1440  Fs_Rec - ok
06:58:04.0788 0x1440  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
06:58:04.0788 0x1440  fvevol - ok
06:58:04.0819 0x1440  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
06:58:04.0819 0x1440  gagp30kx - ok
06:58:04.0866 0x1440  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
06:58:04.0881 0x1440  gpsvc - ok
06:58:04.0991 0x1440  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
06:58:04.0991 0x1440  gupdate - ok
06:58:05.0006 0x1440  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
06:58:05.0006 0x1440  gupdatem - ok
06:58:05.0053 0x1440  [ C172F0D0329E46513B09E1FC60A27B9D, 05DE0544C8A29B2C6028D2B97F81EACED5B99B571DE507A18CE856BD30DF7D56 ] HBtnKey         C:\Windows\system32\DRIVERS\cpqbttn.sys
06:58:05.0053 0x1440  HBtnKey - ok
06:58:05.0084 0x1440  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
06:58:05.0084 0x1440  hcw85cir - ok
06:58:05.0115 0x1440  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
06:58:05.0131 0x1440  HdAudAddService - ok
06:58:05.0131 0x1440  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
06:58:05.0131 0x1440  HDAudBus - ok
06:58:05.0147 0x1440  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
06:58:05.0147 0x1440  HidBatt - ok
06:58:05.0162 0x1440  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
06:58:05.0162 0x1440  HidBth - ok
06:58:05.0178 0x1440  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
06:58:05.0178 0x1440  HidIr - ok
06:58:05.0225 0x1440  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
06:58:05.0225 0x1440  hidserv - ok
06:58:05.0287 0x1440  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
06:58:05.0287 0x1440  HidUsb - ok
06:58:05.0318 0x1440  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
06:58:05.0318 0x1440  hkmsvc - ok
06:58:05.0334 0x1440  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
06:58:05.0349 0x1440  HomeGroupListener - ok
06:58:05.0381 0x1440  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
06:58:05.0381 0x1440  HomeGroupProvider - ok
06:58:05.0412 0x1440  [ 4EF10B866C62ABBEAF7511CDD05A19BE, B758DCB9CD8C7E6ED4DEFB666A94B0F749CB86964D2CA9004DF94C5E321F5151 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
06:58:05.0412 0x1440  hpdskflt - ok
06:58:05.0474 0x1440  [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
06:58:05.0474 0x1440  HpqKbFiltr - ok
06:58:05.0505 0x1440  [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
06:58:05.0505 0x1440  hpqwmiex - ok
06:58:05.0568 0x1440  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
06:58:05.0568 0x1440  HpSAMD - ok
06:58:05.0599 0x1440  [ C0BEB56ED79B59B7B33D0AA6C38A0BA6, 8A21DB7B51BF533CBA08640498C132560641244B9218C483E2053502DF88313D ] hpsrv           C:\Windows\system32\Hpservice.exe
06:58:05.0599 0x1440  hpsrv - ok
06:58:05.0693 0x1440  [ 1E7C79CBAF71AA92E0EEE924907DCB55, 0E82AE60DF149E0620BDA1A66E05D347A95AFB6A3F43A45D0201D2E77A5A5CAC ] HsfXAudioService C:\Windows\system32\XAudio32.dll
06:58:05.0708 0x1440  HsfXAudioService - ok
06:58:05.0786 0x1440  [ 720CCC570E04DE6D36048F93F376FBFB, 8B107F0F6229D7FB90B7C5A3790A1BEF0FCEFE7A029E0C0832BA18BD3185C7FF ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
06:58:05.0802 0x1440  HSF_DPV - ok
06:58:05.0833 0x1440  [ 8BC650907367114FE0E0C05D86DE9ABA, 69D1834E9AA52F9DA68CC5E181FB270E3D6A30265C6CD9FC44110E17BDE1A037 ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
06:58:05.0849 0x1440  HSXHWAZL - ok
06:58:05.0880 0x1440  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
06:58:05.0895 0x1440  HTTP - ok
06:58:05.0895 0x1440  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
06:58:05.0895 0x1440  hwpolicy - ok
06:58:05.0958 0x1440  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
06:58:05.0958 0x1440  i8042prt - ok
06:58:06.0036 0x1440  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
06:58:06.0036 0x1440  iaStorV - ok
06:58:06.0114 0x1440  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:58:06.0145 0x1440  idsvc - ok
06:58:06.0239 0x1440  [ 373C0F67CC49772028D311FD147F4E85, D88613EB4DCB6F0A77D947D3DAB853689FFD71331484723C7CDCBADC7F01CB34 ] IDSVix86        C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\IPSDefs\20140825.001\IDSvix86.sys
06:58:06.0254 0x1440  IDSVix86 - ok
06:58:06.0270 0x1440  IEEtwCollectorService - ok
06:58:06.0317 0x1440  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
06:58:06.0317 0x1440  iirsp - ok
06:58:06.0379 0x1440  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
06:58:06.0395 0x1440  IKEEXT - ok
06:58:06.0473 0x1440  [ 210D9DD3E37CFF6D5C98392B03E61A62, 52E73BC43C553D0D73B5D1E72311334BD53B7CCAF794FD3B6AFBD94A4F466E0F ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
06:58:06.0473 0x1440  Intel® PROSet Monitoring Service - ok
06:58:06.0504 0x1440  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
06:58:06.0504 0x1440  intelide - ok
06:58:06.0566 0x1440  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
06:58:06.0566 0x1440  intelppm - ok
06:58:06.0597 0x1440  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
06:58:06.0597 0x1440  IPBusEnum - ok
06:58:06.0613 0x1440  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:58:06.0613 0x1440  IpFilterDriver - ok
06:58:06.0675 0x1440  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
06:58:06.0691 0x1440  iphlpsvc - ok
06:58:06.0691 0x1440  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
06:58:06.0691 0x1440  IPMIDRV - ok
06:58:06.0707 0x1440  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
06:58:06.0707 0x1440  IPNAT - ok
06:58:06.0753 0x1440  [ 9F7E491FB0BA0F9E370163834FC1FE31, 313D81BEBEC8C3F370FD1C9CC49931F0F178E6BA0581E6594EE1C64275FC157D ] irda            C:\Windows\system32\DRIVERS\irda.sys
06:58:06.0753 0x1440  irda - ok
06:58:06.0785 0x1440  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
06:58:06.0785 0x1440  IRENUM - ok
06:58:06.0816 0x1440  [ 4220D2F03D5C4226D0A1AA4B84025E45, 9002F4CB026CB0D71FFF4CC420C0F3573DA9F70B574A18AE7EF84D5B0A64D472 ] Irmon           C:\Windows\System32\irmon.dll
06:58:06.0816 0x1440  Irmon - ok
06:58:06.0816 0x1440  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
06:58:06.0816 0x1440  isapnp - ok
06:58:06.0847 0x1440  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
06:58:06.0863 0x1440  iScsiPrt - ok
06:58:06.0878 0x1440  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
06:58:06.0894 0x1440  kbdclass - ok
06:58:06.0909 0x1440  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
06:58:06.0909 0x1440  kbdhid - ok
06:58:06.0925 0x1440  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso          C:\Windows\system32\lsass.exe
06:58:06.0941 0x1440  KeyIso - ok
06:58:06.0987 0x1440  [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
06:58:06.0987 0x1440  KSecDD - ok
06:58:07.0065 0x1440  [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
06:58:07.0081 0x1440  KSecPkg - ok
06:58:07.0081 0x1440  Scan was interrupted by user!
06:58:07.0081 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:08.0095 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:09.0109 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:10.0123 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:11.0137 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:12.0151 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:13.0165 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:14.0179 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:15.0193 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:16.0207 0x1440  Waiting for KSN requests completion. In queue: 136
06:58:17.0221 0x1440  AV detected via SS2: Norton Internet Security, C:\Program Files\Norton Internet Security\Engine\21.5.0.19\WSCStub.exe ( 21.5.0.0 ), 0x51000 ( enabled : updated )
06:58:17.0237 0x1440  FW detected via SS2: Norton Internet Security, C:\Program Files\Norton Internet Security\Engine\21.5.0.19\WSCStub.exe ( 21.5.0.0 ), 0x51010 ( enabled )
06:58:20.0450 0x1440  ============================================================
06:58:20.0450 0x1440  Scan finished
06:58:20.0450 0x1440  ============================================================
06:58:20.0450 0x133c  Detected object count: 0
06:58:20.0450 0x133c  Actual detected object count: 0
07:01:29.0819 0x0f98  ============================================================
07:01:29.0819 0x0f98  Scan started
07:01:29.0819 0x0f98  Mode: Manual; TDLFS;
07:01:29.0819 0x0f98  ============================================================
07:01:29.0819 0x0f98  KSN ping started
07:01:44.0062 0x0f98  KSN ping finished: true
07:01:44.0608 0x0f98  ================ Scan system memory ========================
07:01:44.0608 0x0f98  System memory - ok
07:01:44.0608 0x0f98  ================ Scan services =============================
07:01:44.0779 0x0f98  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
07:01:44.0779 0x0f98  1394ohci - ok
07:01:44.0811 0x0f98  [ CC1F1D3D70DC13C2C281488D347D4415, 3AB1495F8982C727D02E9975E2E04203B918AFAA7B05B5E7FEB5142EB30D1998 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
07:01:44.0811 0x0f98  Accelerometer - ok
07:01:44.0842 0x0f98  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
07:01:44.0842 0x0f98  ACPI - ok
07:01:44.0842 0x0f98  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
07:01:44.0842 0x0f98  AcpiPmi - ok
07:01:44.0889 0x0f98  [ FB9ECE3F7B8A03E474E611031AD4CD23, 32CDBC6D32DF5C711819A85FD147511AA2E8EE7609CE7D9D352E7755D2E964BB ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
07:01:44.0904 0x0f98  ADIHdAudAddService - ok
07:01:44.0935 0x0f98  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
07:01:44.0951 0x0f98  adp94xx - ok
07:01:44.0967 0x0f98  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
07:01:44.0982 0x0f98  adpahci - ok
07:01:44.0998 0x0f98  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
07:01:44.0998 0x0f98  adpu320 - ok
07:01:45.0013 0x0f98  [ 12D23758621B00B8D3134095EC3325FD, 30DC1C40539FF6E14D9D692870FD6D511455F2D86DB1BF505B2500F953A611C4 ] AEADIFilters    C:\Windows\system32\AEADISRV.EXE
07:01:45.0029 0x0f98  AEADIFilters - ok
07:01:45.0060 0x0f98  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
07:01:45.0060 0x0f98  AeLookupSvc - ok
07:01:45.0107 0x0f98  [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD             C:\Windows\system32\drivers\afd.sys
07:01:45.0107 0x0f98  AFD - ok
07:01:45.0123 0x0f98  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
07:01:45.0138 0x0f98  agp440 - ok
07:01:45.0138 0x0f98  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
07:01:45.0138 0x0f98  aic78xx - ok
07:01:45.0185 0x0f98  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
07:01:45.0185 0x0f98  ALG - ok
07:01:45.0216 0x0f98  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
07:01:45.0216 0x0f98  aliide - ok
07:01:45.0232 0x0f98  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
07:01:45.0232 0x0f98  amdagp - ok
07:01:45.0263 0x0f98  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
07:01:45.0263 0x0f98  amdide - ok
07:01:45.0279 0x0f98  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
07:01:45.0279 0x0f98  AmdK8 - ok
07:01:45.0294 0x0f98  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
07:01:45.0294 0x0f98  AmdPPM - ok
07:01:45.0325 0x0f98  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
07:01:45.0325 0x0f98  amdsata - ok
07:01:45.0357 0x0f98  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
07:01:45.0357 0x0f98  amdsbs - ok
07:01:45.0372 0x0f98  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
07:01:45.0388 0x0f98  amdxata - ok
07:01:45.0388 0x0f98  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
07:01:45.0388 0x0f98  AppID - ok
07:01:45.0419 0x0f98  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
07:01:45.0419 0x0f98  AppIDSvc - ok
07:01:45.0435 0x0f98  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\Windows\System32\appinfo.dll
07:01:45.0450 0x0f98  Appinfo - ok
07:01:45.0481 0x0f98  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
07:01:45.0481 0x0f98  AppMgmt - ok
07:01:45.0497 0x0f98  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
07:01:45.0497 0x0f98  arc - ok
07:01:45.0513 0x0f98  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
07:01:45.0513 0x0f98  arcsas - ok
07:01:45.0622 0x0f98  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
07:01:45.0622 0x0f98  aspnet_state - ok
07:01:45.0622 0x0f98  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
07:01:45.0622 0x0f98  AsyncMac - ok
07:01:45.0653 0x0f98  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
07:01:45.0653 0x0f98  atapi - ok
07:01:45.0715 0x0f98  [ EC63A3242A1708A41BF773C73D8092FA, 457FF2B214654C79575C0B341102ACDCCD4E996EE89D3895BF02481376BA3F26 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
07:01:45.0731 0x0f98  Ati External Event Utility - ok
07:01:45.0934 0x0f98  [ EBA9B1E2E62091B72C57C93211AA7FB2, 5CD76CD8EFAB715BD732E0C16E6E89F558BB55C13E0D16E646DCAC26ACC3C4CB ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
07:01:46.0027 0x0f98  atikmdag - ok
07:01:46.0152 0x0f98  [ 6F718D6616E50FBCA64249755B7A1D2F, 0D243E50D9BEB23A1F894AAC4F97FB44E81C4377362AAB0394D066CAFA353742 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
07:01:46.0168 0x0f98  ATSwpWDF - ok
07:01:46.0215 0x0f98  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:01:46.0230 0x0f98  AudioEndpointBuilder - ok
07:01:46.0246 0x0f98  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
07:01:46.0261 0x0f98  Audiosrv - ok
07:01:46.0277 0x0f98  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
07:01:46.0277 0x0f98  AxInstSV - ok
07:01:46.0308 0x0f98  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
07:01:46.0324 0x0f98  b06bdrv - ok
07:01:46.0339 0x0f98  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
07:01:46.0339 0x0f98  b57nd60x - ok
07:01:46.0386 0x0f98  [ 80F41256540B01197407C99728D7E680, E2C663576B15BE6C6FC74C0F5E8A073B3584150A21C84F1D027A596E9465C766 ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
07:01:46.0386 0x0f98  BCM42RLY - ok
07:01:46.0589 0x0f98  [ 77C3CF56EB900C186741C591F95800A0, C584CE0EF25FE428EECE4ED561380EEF3B1DEE58B55B043BAC85D9737DF86400 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys
07:01:46.0683 0x0f98  BCM43XX - ok
07:01:46.0729 0x0f98  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
07:01:46.0729 0x0f98  BDESVC - ok
07:01:46.0761 0x0f98  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
07:01:46.0761 0x0f98  Beep - ok
07:01:46.0792 0x0f98  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BF


  • 0

#6
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
2nd part of the TDSSkiller report


C:\Windows\System32\bfe.dll
07:01:46.0792 0x0f98 BFE - ok
07:01:46.0963 0x0f98 [ A7D95AD0D83B96EFC2DF9337A90BDF43, CE908F200F6AEE50E7B324AC352F35C28A7F0118A382225FEF387E454CA003A7 ] BHDrvx86 C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\BASHDefs\20140821.007\BHDrvx86.sys
07:01:46.0979 0x0f98 BHDrvx86 - ok
07:01:47.0041 0x0f98 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\System32\qmgr.dll
07:01:47.0041 0x0f98 BITS - ok
07:01:47.0088 0x0f98 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
07:01:47.0088 0x0f98 blbdrive - ok
07:01:47.0119 0x0f98 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
07:01:47.0119 0x0f98 bowser - ok
07:01:47.0119 0x0f98 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
07:01:47.0119 0x0f98 BrFiltLo - ok
07:01:47.0135 0x0f98 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
07:01:47.0135 0x0f98 BrFiltUp - ok
07:01:47.0182 0x0f98 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
07:01:47.0182 0x0f98 Browser - ok
07:01:47.0213 0x0f98 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
07:01:47.0229 0x0f98 Brserid - ok
07:01:47.0229 0x0f98 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
07:01:47.0229 0x0f98 BrSerWdm - ok
07:01:47.0244 0x0f98 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
07:01:47.0244 0x0f98 BrUsbMdm - ok
07:01:47.0244 0x0f98 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
07:01:47.0244 0x0f98 BrUsbSer - ok
07:01:47.0244 0x0f98 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
07:01:47.0260 0x0f98 BTHMODEM - ok
07:01:47.0275 0x0f98 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
07:01:47.0275 0x0f98 bthserv - ok
07:01:47.0338 0x0f98 [ 56C2811FD0D7B727808A69407B5BFAE0, 5F84A29A9E6D8F566F95399F3B41A82DD128EA69678BBBCF75AD914DE70D9A74 ] ccSet_NIS C:\Windows\system32\drivers\NIS\1505000.013\ccSetx86.sys
07:01:47.0353 0x0f98 ccSet_NIS - ok
07:01:47.0385 0x0f98 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
07:01:47.0385 0x0f98 cdfs - ok
07:01:47.0385 0x0f98 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
07:01:47.0385 0x0f98 cdrom - ok
07:01:47.0416 0x0f98 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
07:01:47.0416 0x0f98 CertPropSvc - ok
07:01:47.0431 0x0f98 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\drivers\circlass.sys
07:01:47.0431 0x0f98 circlass - ok
07:01:47.0447 0x0f98 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
07:01:47.0463 0x0f98 CLFS - ok
07:01:47.0509 0x0f98 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:01:47.0525 0x0f98 clr_optimization_v2.0.50727_32 - ok
07:01:47.0556 0x0f98 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:01:47.0556 0x0f98 clr_optimization_v4.0.30319_32 - ok
07:01:47.0572 0x0f98 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
07:01:47.0572 0x0f98 CmBatt - ok
07:01:47.0603 0x0f98 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
07:01:47.0603 0x0f98 cmdide - ok
07:01:47.0619 0x0f98 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
07:01:47.0634 0x0f98 CNG - ok
07:01:47.0697 0x0f98 [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
07:01:47.0697 0x0f98 Com4QLBEx - ok
07:01:47.0743 0x0f98 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
07:01:47.0743 0x0f98 Compbatt - ok
07:01:47.0743 0x0f98 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
07:01:47.0743 0x0f98 CompositeBus - ok
07:01:47.0743 0x0f98 COMSysApp - ok
07:01:47.0759 0x0f98 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
07:01:47.0759 0x0f98 crcdisk - ok
07:01:47.0790 0x0f98 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
07:01:47.0790 0x0f98 CryptSvc - ok
07:01:47.0821 0x0f98 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
07:01:47.0837 0x0f98 CSC - ok
07:01:47.0868 0x0f98 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
07:01:47.0884 0x0f98 CscService - ok
07:01:47.0915 0x0f98 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
07:01:47.0931 0x0f98 DcomLaunch - ok
07:01:47.0962 0x0f98 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
07:01:47.0962 0x0f98 defragsvc - ok
07:01:47.0993 0x0f98 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
07:01:47.0993 0x0f98 DfsC - ok
07:01:48.0024 0x0f98 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
07:01:48.0024 0x0f98 Dhcp - ok
07:01:48.0024 0x0f98 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
07:01:48.0040 0x0f98 discache - ok
07:01:48.0040 0x0f98 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\drivers\disk.sys
07:01:48.0040 0x0f98 Disk - ok
07:01:48.0071 0x0f98 [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
07:01:48.0071 0x0f98 dmvsc - ok
07:01:48.0102 0x0f98 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:01:48.0118 0x0f98 Dnscache - ok
07:01:48.0149 0x0f98 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
07:01:48.0149 0x0f98 dot3svc - ok
07:01:48.0180 0x0f98 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
07:01:48.0180 0x0f98 DPS - ok
07:01:48.0211 0x0f98 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:01:48.0211 0x0f98 drmkaud - ok
07:01:48.0274 0x0f98 [ 3583A5A8CC2E682BFFBD4630D0FEC08B, FD0F184B358FCECAA763444B414074BEF4E871EB7527D88385519FC158435C72 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
07:01:48.0289 0x0f98 DXGKrnl - ok
07:01:48.0352 0x0f98 [ 0535BFBEDB9378DDD15BDF9957D57D71, CA93DD66AF1DC8DFFE370C41EEDF57F6073B4859257BE35E30914F81C1478034 ] e1express C:\Windows\system32\DRIVERS\e1e6232.sys
07:01:48.0352 0x0f98 e1express - ok
07:01:48.0367 0x0f98 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
07:01:48.0383 0x0f98 EapHost - ok
07:01:48.0523 0x0f98 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
07:01:48.0586 0x0f98 ebdrv - ok
07:01:48.0695 0x0f98 [ 10D14FAEF105DF2432D0E03860895284, 200662CD73537A8152FA0C276F20CE9B558FB2EB1AD0C171E5CCF4DC8C02F8B3 ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
07:01:48.0695 0x0f98 eeCtrl - ok
07:01:48.0742 0x0f98 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS C:\Windows\System32\lsass.exe
07:01:48.0742 0x0f98 EFS - ok
07:01:48.0820 0x0f98 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
07:01:48.0820 0x0f98 ehRecvr - ok
07:01:48.0835 0x0f98 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
07:01:48.0835 0x0f98 ehSched - ok
07:01:48.0882 0x0f98 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
07:01:48.0882 0x0f98 elxstor - ok
07:01:48.0945 0x0f98 [ 0424EAB7549926FB864BD41E7F0639CC, 04E349F311B24239E1B4DAD073360A0D91391B69E74B43D705A1C00FDF113F45 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
07:01:48.0945 0x0f98 EraserUtilRebootDrv - ok
07:01:48.0960 0x0f98 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
07:01:48.0960 0x0f98 ErrDev - ok
07:01:49.0007 0x0f98 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
07:01:49.0007 0x0f98 EventSystem - ok
07:01:49.0023 0x0f98 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
07:01:49.0038 0x0f98 exfat - ok
07:01:49.0038 0x0f98 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
07:01:49.0038 0x0f98 fastfat - ok
07:01:49.0085 0x0f98 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
07:01:49.0101 0x0f98 Fax - ok
07:01:49.0116 0x0f98 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\drivers\fdc.sys
07:01:49.0116 0x0f98 fdc - ok
07:01:49.0132 0x0f98 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
07:01:49.0132 0x0f98 fdPHost - ok
07:01:49.0132 0x0f98 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
07:01:49.0132 0x0f98 FDResPub - ok
07:01:49.0163 0x0f98 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
07:01:49.0163 0x0f98 FileInfo - ok
07:01:49.0163 0x0f98 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
07:01:49.0163 0x0f98 Filetrace - ok
07:01:49.0179 0x0f98 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
07:01:49.0179 0x0f98 flpydisk - ok
07:01:49.0194 0x0f98 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:01:49.0194 0x0f98 FltMgr - ok
07:01:49.0257 0x0f98 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
07:01:49.0272 0x0f98 FontCache - ok
07:01:49.0350 0x0f98 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:01:49.0350 0x0f98 FontCache3.0.0.0 - ok
07:01:49.0381 0x0f98 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
07:01:49.0381 0x0f98 FsDepends - ok
07:01:49.0413 0x0f98 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:01:49.0413 0x0f98 Fs_Rec - ok
07:01:49.0459 0x0f98 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
07:01:49.0459 0x0f98 fvevol - ok
07:01:49.0491 0x0f98 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
07:01:49.0491 0x0f98 gagp30kx - ok
07:01:49.0537 0x0f98 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
07:01:49.0537 0x0f98 gpsvc - ok
07:01:49.0600 0x0f98 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
07:01:49.0600 0x0f98 gupdate - ok
07:01:49.0600 0x0f98 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
07:01:49.0615 0x0f98 gupdatem - ok
07:01:49.0631 0x0f98 [ C172F0D0329E46513B09E1FC60A27B9D, 05DE0544C8A29B2C6028D2B97F81EACED5B99B571DE507A18CE856BD30DF7D56 ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
07:01:49.0647 0x0f98 HBtnKey - ok
07:01:49.0662 0x0f98 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
07:01:49.0662 0x0f98 hcw85cir - ok
07:01:49.0709 0x0f98 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:01:49.0709 0x0f98 HdAudAddService - ok
07:01:49.0725 0x0f98 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
07:01:49.0725 0x0f98 HDAudBus - ok
07:01:49.0725 0x0f98 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
07:01:49.0740 0x0f98 HidBatt - ok
07:01:49.0756 0x0f98 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\drivers\hidbth.sys
07:01:49.0756 0x0f98 HidBth - ok
07:01:49.0756 0x0f98 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\drivers\hidir.sys
07:01:49.0756 0x0f98 HidIr - ok
07:01:49.0787 0x0f98 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\system32\hidserv.dll
07:01:49.0787 0x0f98 hidserv - ok
07:01:49.0818 0x0f98 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
07:01:49.0818 0x0f98 HidUsb - ok
07:01:49.0834 0x0f98 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
07:01:49.0834 0x0f98 hkmsvc - ok
07:01:49.0865 0x0f98 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:01:49.0865 0x0f98 HomeGroupListener - ok
07:01:49.0896 0x0f98 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:01:49.0896 0x0f98 HomeGroupProvider - ok
07:01:49.0912 0x0f98 [ 4EF10B866C62ABBEAF7511CDD05A19BE, B758DCB9CD8C7E6ED4DEFB666A94B0F749CB86964D2CA9004DF94C5E321F5151 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
07:01:49.0927 0x0f98 hpdskflt - ok
07:01:49.0943 0x0f98 [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
07:01:49.0943 0x0f98 HpqKbFiltr - ok
07:01:49.0974 0x0f98 [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
07:01:49.0990 0x0f98 hpqwmiex - ok
07:01:50.0021 0x0f98 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
07:01:50.0021 0x0f98 HpSAMD - ok
07:01:50.0037 0x0f98 [ C0BEB56ED79B59B7B33D0AA6C38A0BA6, 8A21DB7B51BF533CBA08640498C132560641244B9218C483E2053502DF88313D ] hpsrv C:\Windows\system32\Hpservice.exe
07:01:50.0037 0x0f98 hpsrv - ok
07:01:50.0099 0x0f98 [ 1E7C79CBAF71AA92E0EEE924907DCB55, 0E82AE60DF149E0620BDA1A66E05D347A95AFB6A3F43A45D0201D2E77A5A5CAC ] HsfXAudioService C:\Windows\system32\XAudio32.dll
07:01:50.0099 0x0f98 HsfXAudioService - ok
07:01:50.0177 0x0f98 [ 720CCC570E04DE6D36048F93F376FBFB, 8B107F0F6229D7FB90B7C5A3790A1BEF0FCEFE7A029E0C0832BA18BD3185C7FF ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
07:01:50.0193 0x0f98 HSF_DPV - ok
07:01:50.0224 0x0f98 [ 8BC650907367114FE0E0C05D86DE9ABA, 69D1834E9AA52F9DA68CC5E181FB270E3D6A30265C6CD9FC44110E17BDE1A037 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
07:01:50.0224 0x0f98 HSXHWAZL - ok
07:01:50.0271 0x0f98 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
07:01:50.0286 0x0f98 HTTP - ok
07:01:50.0286 0x0f98 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
07:01:50.0286 0x0f98 hwpolicy - ok
07:01:50.0302 0x0f98 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
07:01:50.0302 0x0f98 i8042prt - ok
07:01:50.0349 0x0f98 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
07:01:50.0349 0x0f98 iaStorV - ok
07:01:50.0427 0x0f98 [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:01:50.0442 0x0f98 idsvc - ok
07:01:50.0536 0x0f98 [ 373C0F67CC49772028D311FD147F4E85, D88613EB4DCB6F0A77D947D3DAB853689FFD71331484723C7CDCBADC7F01CB34 ] IDSVix86 C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\IPSDefs\20140825.001\IDSvix86.sys
07:01:50.0551 0x0f98 IDSVix86 - ok
07:01:50.0551 0x0f98 IEEtwCollectorService - ok
07:01:50.0583 0x0f98 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\drivers\iirsp.sys
07:01:50.0583 0x0f98 iirsp - ok
07:01:50.0645 0x0f98 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
07:01:50.0661 0x0f98 IKEEXT - ok
07:01:50.0707 0x0f98 [ 210D9DD3E37CFF6D5C98392B03E61A62, 52E73BC43C553D0D73B5D1E72311334BD53B7CCAF794FD3B6AFBD94A4F466E0F ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
07:01:50.0707 0x0f98 Intel® PROSet Monitoring Service - ok
07:01:50.0739 0x0f98 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
07:01:50.0739 0x0f98 intelide - ok
07:01:50.0754 0x0f98 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
07:01:50.0754 0x0f98 intelppm - ok
07:01:50.0785 0x0f98 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
07:01:50.0785 0x0f98 IPBusEnum - ok
07:01:50.0801 0x0f98 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:01:50.0801 0x0f98 IpFilterDriver - ok
07:01:50.0832 0x0f98 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
07:01:50.0848 0x0f98 iphlpsvc - ok
07:01:50.0879 0x0f98 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
07:01:50.0879 0x0f98 IPMIDRV - ok
07:01:50.0879 0x0f98 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
07:01:50.0879 0x0f98 IPNAT - ok
07:01:50.0895 0x0f98 [ 9F7E491FB0BA0F9E370163834FC1FE31, 313D81BEBEC8C3F370FD1C9CC49931F0F178E6BA0581E6594EE1C64275FC157D ] irda C:\Windows\system32\DRIVERS\irda.sys
07:01:50.0895 0x0f98 irda - ok
07:01:50.0895 0x0f98 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
07:01:50.0895 0x0f98 IRENUM - ok
07:01:50.0910 0x0f98 [ 4220D2F03D5C4226D0A1AA4B84025E45, 9002F4CB026CB0D71FFF4CC420C0F3573DA9F70B574A18AE7EF84D5B0A64D472 ] Irmon C:\Windows\System32\irmon.dll
07:01:50.0910 0x0f98 Irmon - ok
07:01:50.0926 0x0f98 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:01:50.0926 0x0f98 isapnp - ok
07:01:50.0957 0x0f98 [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
07:01:50.0973 0x0f98 iScsiPrt - ok
07:01:50.0973 0x0f98 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
07:01:50.0973 0x0f98 kbdclass - ok
07:01:50.0988 0x0f98 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
07:01:50.0988 0x0f98 kbdhid - ok
07:01:51.0004 0x0f98 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso C:\Windows\system32\lsass.exe
07:01:51.0004 0x0f98 KeyIso - ok
07:01:51.0019 0x0f98 [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
07:01:51.0035 0x0f98 KSecDD - ok
07:01:51.0051 0x0f98 [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
07:01:51.0051 0x0f98 KSecPkg - ok
07:01:51.0097 0x0f98 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
07:01:51.0097 0x0f98 KtmRm - ok
07:01:51.0191 0x0f98 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\system32\srvsvc.dll
07:01:51.0207 0x0f98 LanmanServer - ok
07:01:51.0222 0x0f98 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:01:51.0238 0x0f98 LanmanWorkstation - ok
07:01:51.0300 0x0f98 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
07:01:51.0300 0x0f98 lltdio - ok
07:01:51.0347 0x0f98 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
07:01:51.0363 0x0f98 lltdsvc - ok
07:01:51.0363 0x0f98 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
07:01:51.0363 0x0f98 lmhosts - ok
07:01:51.0394 0x0f98 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
07:01:51.0394 0x0f98 LSI_FC - ok
07:01:51.0394 0x0f98 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
07:01:51.0394 0x0f98 LSI_SAS - ok
07:01:51.0425 0x0f98 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
07:01:51.0425 0x0f98 LSI_SAS2 - ok
07:01:51.0441 0x0f98 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
07:01:51.0441 0x0f98 LSI_SCSI - ok
07:01:51.0441 0x0f98 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
07:01:51.0456 0x0f98 luafv - ok
07:01:51.0472 0x0f98 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
07:01:51.0472 0x0f98 Mcx2Svc - ok
07:01:51.0503 0x0f98 [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
07:01:51.0503 0x0f98 mdmxsdk - ok
07:01:51.0519 0x0f98 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\drivers\megasas.sys
07:01:51.0519 0x0f98 megasas - ok
07:01:51.0534 0x0f98 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
07:01:51.0550 0x0f98 MegaSR - ok
07:01:51.0565 0x0f98 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
07:01:51.0565 0x0f98 MMCSS - ok
07:01:51.0565 0x0f98 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
07:01:51.0565 0x0f98 Modem - ok
07:01:51.0612 0x0f98 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
07:01:51.0612 0x0f98 monitor - ok
07:01:51.0628 0x0f98 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
07:01:51.0643 0x0f98 mouclass - ok
07:01:51.0643 0x0f98 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\drivers\mouhid.sys
07:01:51.0659 0x0f98 mouhid - ok
07:01:51.0659 0x0f98 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
07:01:51.0659 0x0f98 mountmgr - ok
07:01:51.0690 0x0f98 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
07:01:51.0690 0x0f98 mpio - ok
07:01:51.0706 0x0f98 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
07:01:51.0721 0x0f98 mpsdrv - ok
07:01:51.0753 0x0f98 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
07:01:51.0768 0x0f98 MpsSvc - ok
07:01:51.0799 0x0f98 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
07:01:51.0799 0x0f98 MRxDAV - ok
07:01:51.0831 0x0f98 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:01:51.0846 0x0f98 mrxsmb - ok
07:01:51.0877 0x0f98 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:01:51.0877 0x0f98 mrxsmb10 - ok
07:01:51.0893 0x0f98 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:01:51.0893 0x0f98 mrxsmb20 - ok
07:01:51.0924 0x0f98 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
07:01:51.0924 0x0f98 msahci - ok
07:01:51.0955 0x0f98 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
07:01:51.0955 0x0f98 msdsm - ok
07:01:51.0971 0x0f98 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
07:01:51.0987 0x0f98 MSDTC - ok
07:01:51.0987 0x0f98 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:01:51.0987 0x0f98 Msfs - ok
07:01:52.0002 0x0f98 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
07:01:52.0002 0x0f98 mshidkmdf - ok
07:01:52.0002 0x0f98 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
07:01:52.0002 0x0f98 msisadrv - ok
07:01:52.0049 0x0f98 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
07:01:52.0065 0x0f98 MSiSCSI - ok
07:01:52.0065 0x0f98 msiserver - ok
07:01:52.0111 0x0f98 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:01:52.0111 0x0f98 MSKSSRV - ok
07:01:52.0111 0x0f98 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:01:52.0111 0x0f98 MSPCLOCK - ok
07:01:52.0127 0x0f98 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:01:52.0127 0x0f98 MSPQM - ok
07:01:52.0127 0x0f98 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
07:01:52.0143 0x0f98 MsRPC - ok
07:01:52.0158 0x0f98 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
07:01:52.0158 0x0f98 mssmbios - ok
07:01:52.0158 0x0f98 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:01:52.0158 0x0f98 MSTEE - ok
07:01:52.0174 0x0f98 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
07:01:52.0174 0x0f98 MTConfig - ok
07:01:52.0174 0x0f98 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
07:01:52.0174 0x0f98 Mup - ok
07:01:52.0205 0x0f98 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
07:01:52.0221 0x0f98 napagent - ok
07:01:52.0283 0x0f98 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
07:01:52.0283 0x0f98 NativeWifiP - ok
07:01:52.0377 0x0f98 [ 339D6CD79DFCB48EF125A89949ED54B4, D3C6F56363F0FA9A45C3560816DD7533C7D15D7DCC78346A4A48C29EA86D9439 ] NAVENG C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20140827.023_8fa\NAVENG.SYS
07:01:52.0377 0x0f98 NAVENG - ok
07:01:52.0533 0x0f98 [ 2061D3961C053AA0C55A20F6184DA4CF, 4D50107E7245ED58B943BA536B6B69A6C7465202DCE78135BB0FD5EF2EF02FB3 ] NAVEX15 C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20140827.023_8fa\NAVEX15.SYS
07:01:52.0564 0x0f98 NAVEX15 - ok
07:01:52.0657 0x0f98 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
07:01:52.0657 0x0f98 NDIS - ok
07:01:52.0720 0x0f98 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
07:01:52.0720 0x0f98 NdisCap - ok
07:01:52.0735 0x0f98 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
07:01:52.0735 0x0f98 NdisTapi - ok
07:01:52.0751 0x0f98 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:01:52.0751 0x0f98 Ndisuio - ok
07:01:52.0798 0x0f98 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
07:01:52.0798 0x0f98 NdisWan - ok
07:01:52.0798 0x0f98 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:01:52.0798 0x0f98 NDProxy - ok
07:01:52.0813 0x0f98 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
07:01:52.0813 0x0f98 NetBIOS - ok
07:01:52.0829 0x0f98 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:01:52.0829 0x0f98 NetBT - ok
07:01:52.0845 0x0f98 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] Netlogon C:\Windows\system32\lsass.exe
07:01:52.0845 0x0f98 Netlogon - ok
07:01:52.0876 0x0f98 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
07:01:52.0891 0x0f98 Netman - ok
07:01:52.0923 0x0f98 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:01:52.0923 0x0f98 NetMsmqActivator - ok
07:01:52.0938 0x0f98 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:01:52.0938 0x0f98 NetPipeActivator - ok
07:01:52.0969 0x0f98 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
07:01:52.0985 0x0f98 netprofm - ok
07:01:52.0985 0x0f98 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:01:52.0985 0x0f98 NetTcpActivator - ok
07:01:53.0001 0x0f98 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:01:53.0001 0x0f98 NetTcpPortSharing - ok
07:01:53.0047 0x0f98 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
07:01:53.0047 0x0f98 nfrd960 - ok
07:01:53.0219 0x0f98 [ DA97E7798C1B1B265436BF6B2026E74D, 0A9B176D46E53A5B28262C143410CFB3C4D7ABC12F9F0E0BCE6526E11C01FF4B ] NIS C:\Program Files\Norton Internet Security\Engine\21.5.0.19\NIS.exe
07:01:53.0219 0x0f98 NIS - ok
07:01:53.0266 0x0f98 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
07:01:53.0281 0x0f98 NlaSvc - ok
07:01:53.0281 0x0f98 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:01:53.0281 0x0f98 Npfs - ok
07:01:53.0328 0x0f98 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
07:01:53.0328 0x0f98 nsi - ok
07:01:53.0344 0x0f98 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
07:01:53.0344 0x0f98 nsiproxy - ok
07:01:53.0437 0x0f98 [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:01:53.0469 0x0f98 Ntfs - ok
07:01:53.0484 0x0f98 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
07:01:53.0484 0x0f98 Null - ok
07:01:53.0547 0x0f98 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
07:01:53.0547 0x0f98 nvraid - ok
07:01:53.0562 0x0f98 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
07:01:53.0578 0x0f98 nvstor - ok
07:01:53.0593 0x0f98 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
07:01:53.0609 0x0f98 nv_agp - ok
07:01:53.0609 0x0f98 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
07:01:53.0609 0x0f98 ohci1394 - ok
07:01:53.0703 0x0f98 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:01:53.0718 0x0f98 ose - ok
07:01:53.0968 0x0f98 [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:01:54.0061 0x0f98 osppsvc - ok
07:01:54.0108 0x0f98 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
07:01:54.0124 0x0f98 p2pimsvc - ok
07:01:54.0155 0x0f98 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
07:01:54.0171 0x0f98 p2psvc - ok
07:01:54.0202 0x0f98 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
07:01:54.0202 0x0f98 Parport - ok
07:01:54.0249 0x0f98 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
07:01:54.0249 0x0f98 partmgr - ok
07:01:54.0249 0x0f98 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
07:01:54.0249 0x0f98 Parvdm - ok
07:01:54.0264 0x0f98 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
07:01:54.0264 0x0f98 PcaSvc - ok
07:01:54.0295 0x0f98 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
07:01:54.0295 0x0f98 pci - ok
07:01:54.0311 0x0f98 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
07:01:54.0327 0x0f98 pciide - ok
07:01:54.0342 0x0f98 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
07:01:54.0342 0x0f98 pcmcia - ok
07:01:54.0358 0x0f98 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
07:01:54.0358 0x0f98 pcw - ok
07:01:54.0389 0x0f98 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
07:01:54.0405 0x0f98 PEAUTH - ok
07:01:54.0467 0x0f98 [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
07:01:54.0483 0x0f98 PeerDistSvc - ok
07:01:54.0576 0x0f98 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
07:01:54.0607 0x0f98 pla - ok
07:01:54.0685 0x0f98 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
07:01:54.0701 0x0f98 PlugPlay - ok
07:01:54.0717 0x0f98 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
07:01:54.0717 0x0f98 PNRPAutoReg - ok
07:01:54.0732 0x0f98 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
07:01:54.0748 0x0f98 PNRPsvc - ok
07:01:54.0810 0x0f98 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
07:01:54.0810 0x0f98 PolicyAgent - ok
07:01:54.0841 0x0f98 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
07:01:54.0857 0x0f98 Power - ok
07:01:54.0904 0x0f98 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
07:01:54.0904 0x0f98 PptpMiniport - ok
07:01:54.0919 0x0f98 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\drivers\processr.sys
07:01:54.0919 0x0f98 Processor - ok
07:01:54.0982 0x0f98 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
07:01:54.0982 0x0f98 ProfSvc - ok
07:01:55.0013 0x0f98 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:01:55.0013 0x0f98 ProtectedStorage - ok
07:01:55.0060 0x0f98 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
07:01:55.0060 0x0f98 Psched - ok
07:01:55.0138 0x0f98 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\drivers\ql2300.sys
07:01:55.0153 0x0f98 ql2300 - ok
07:01:55.0169 0x0f98 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
07:01:55.0169 0x0f98 ql40xx - ok
07:01:55.0216 0x0f98 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
07:01:55.0216 0x0f98 QWAVE - ok
07:01:55.0247 0x0f98 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
07:01:55.0247 0x0f98 QWAVEdrv - ok
07:01:55.0247 0x0f98 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:01:55.0247 0x0f98 RasAcd - ok
07:01:55.0294 0x0f98 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
07:01:55.0309 0x0f98 RasAgileVpn - ok
07:01:55.0356 0x0f98 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
07:01:55.0356 0x0f98 RasAuto - ok
07:01:55.0356 0x0f98 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
07:01:55.0356 0x0f98 Rasl2tp - ok
07:01:55.0387 0x0f98 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
07:01:55.0403 0x0f98 RasMan - ok
07:01:55.0403 0x0f98 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
07:01:55.0403 0x0f98 RasPppoe - ok
07:01:55.0419 0x0f98 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
07:01:55.0419 0x0f98 RasSstp - ok
07:01:55.0434 0x0f98 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:01:55.0434 0x0f98 rdbss - ok
07:01:55.0450 0x0f98 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
07:01:55.0450 0x0f98 rdpbus - ok
07:01:55.0450 0x0f98 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:01:55.0450 0x0f98 RDPCDD - ok
07:01:55.0481 0x0f98 [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
07:01:55.0481 0x0f98 RDPDR - ok
07:01:55.0528 0x0f98 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
07:01:55.0528 0x0f98 RDPENCDD - ok
07:01:55.0528 0x0f98 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
07:01:55.0528 0x0f98 RDPREFMP - ok
07:01:55.0621 0x0f98 [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
07:01:55.0621 0x0f98 RdpVideoMiniport - ok
07:01:55.0653 0x0f98 [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:01:55.0653 0x0f98 RDPWD - ok
07:01:55.0684 0x0f98 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
07:01:55.0684 0x0f98 rdyboost - ok
07:01:55.0731 0x0f98 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
07:01:55.0731 0x0f98 RemoteAccess - ok
07:01:55.0746 0x0f98 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:01:55.0762 0x0f98 RemoteRegistry - ok
07:01:55.0793 0x0f98 [ 470FC46E2989F6606043C1C5365B15FD, 6EC46EE251674F22A43D6E3E0C2ECAF6A156386CD7A1C2C6821F4328F8A04826 ] RICOH SmartCard Reader C:\Windows\system32\DRIVERS\rismc32.sys
07:01:55.0793 0x0f98 RICOH SmartCard Reader - ok
07:01:55.0824 0x0f98 [ DF672613FBBCD58C38BB0BC2694BCFB0, 9B574773C7E796B7E30481F7A22D996078D5D3D295270B5BA5931A2D2F03EB4B ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
07:01:55.0824 0x0f98 rimmptsk - ok
07:01:55.0855 0x0f98 [ 470FC46E2989F6606043C1C5365B15FD, 6EC46EE251674F22A43D6E3E0C2ECAF6A156386CD7A1C2C6821F4328F8A04826 ] rismc32 C:\Windows\system32\DRIVERS\rismc32.sys
07:01:55.0855 0x0f98 rismc32 - ok
07:01:55.0887 0x0f98 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
07:01:55.0887 0x0f98 RpcEptMapper - ok
07:01:55.0902 0x0f98 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
07:01:55.0902 0x0f98 RpcLocator - ok
07:01:55.0933 0x0f98 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
07:01:55.0933 0x0f98 RpcSs - ok
07:01:56.0011 0x0f98 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
07:01:56.0011 0x0f98 rspndr - ok
07:01:56.0027 0x0f98 [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap C:\Windows\system32\drivers\vms3cap.sys
07:01:56.0027 0x0f98 s3cap - ok
07:01:56.0043 0x0f98 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs C:\Windows\system32\lsass.exe
07:01:56.0043 0x0f98 SamSs - ok
07:01:56.0074 0x0f98 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
07:01:56.0074 0x0f98 sbp2port - ok
07:01:56.0105 0x0f98 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
07:01:56.0121 0x0f98 SCardSvr - ok
07:01:56.0121 0x0f98 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
07:01:56.0121 0x0f98 scfilter - ok
07:01:56.0199 0x0f98 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
07:01:56.0214 0x0f98 Schedule - ok
07:01:56.0230 0x0f98 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
07:01:56.0230 0x0f98 SCPolicySvc - ok
07:01:56.0292 0x0f98 [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
07:01:56.0292 0x0f98 sdbus - ok
07:01:56.0308 0x0f98 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
07:01:56.0323 0x0f98 SDRSVC - ok
07:01:56.0370 0x0f98 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
07:01:56.0370 0x0f98 secdrv - ok
07:01:56.0370 0x0f98 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
07:01:56.0386 0x0f98 seclogon - ok
07:01:56.0401 0x0f98 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\System32\sens.dll
07:01:56.0401 0x0f98 SENS - ok
07:01:56.0417 0x0f98 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
07:01:56.0417 0x0f98 SensrSvc - ok
07:01:56.0433 0x0f98 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\drivers\serenum.sys
07:01:56.0433 0x0f98 Serenum - ok
07:01:56.0433 0x0f98 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\drivers\serial.sys
07:01:56.0433 0x0f98 Serial - ok
07:01:56.0464 0x0f98 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\drivers\sermouse.sys
07:01:56.0464 0x0f98 sermouse - ok
07:01:56.0511 0x0f98 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
07:01:56.0511 0x0f98 SessionEnv - ok
07:01:56.0511 0x0f98 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
07:01:56.0511 0x0f98 sffdisk - ok
07:01:56.0526 0x0f98 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
07:01:56.0526 0x0f98 sffp_mmc - ok
07:01:56.0526 0x0f98 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
07:01:56.0526 0x0f98 sffp_sd - ok
07:01:56.0542 0x0f98 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
07:01:56.0542 0x0f98 sfloppy - ok
07:01:56.0604 0x0f98 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
07:01:56.0604 0x0f98 SharedAccess - ok
07:01:56.0635 0x0f98 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:01:56.0651 0x0f98 ShellHWDetection - ok
07:01:56.0667 0x0f98 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
07:01:56.0667 0x0f98 sisagp - ok
07:01:56.0682 0x0f98 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
07:01:56.0682 0x0f98 SiSRaid2 - ok
07:01:56.0713 0x0f98 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
07:01:56.0713 0x0f98 SiSRaid4 - ok
07:01:56.0745 0x0f98 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
07:01:56.0745 0x0f98 Smb - ok
07:01:56.0791 0x0f98 [ D1BF7148144AD1851893E84363F78130, 4D82A42D029E228D2218D64A14D2602932B6F1CC2851EB8338DF9E6E8DBE3E02 ] SMSCIRDA C:\Windows\system32\DRIVERS\SMSCirda.sys
07:01:56.0791 0x0f98 SMSCIRDA - ok
07:01:56.0823 0x0f98 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
07:01:56.0838 0x0f98 SNMPTRAP - ok
07:01:56.0838 0x0f98 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
07:01:56.0838 0x0f98 spldr - ok
07:01:56.0869 0x0f98 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
07:01:56.0885 0x0f98 Spooler - ok
07:01:57.0041 0x0f98 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
07:01:57.0119 0x0f98 sppsvc - ok
07:01:57.0150 0x0f98 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
07:01:57.0150 0x0f98 sppuinotify - ok
07:01:57.0306 0x0f98 [ 91C966DE2058116525748050A22C8170, EE64D29ED2C5EDE035E6BE56AE28403B42C10815A89AC08A5395DE72375AF550 ] SRTSP C:\Windows\system32\drivers\NIS\1505000.013\SRTSP.SYS
07:01:57.0322 0x0f98 SRTSP - ok
07:01:57.0525 0x0f98 [ 1B6D68043F488F70E889276E1585B7AA, 574925053F0EB2DED6DA03D0720A8E1588590948DFF1E2C6DE84EA5B6856E3DB ] SRTSPX C:\Windows\system32\drivers\NIS\1505000.013\SRTSPX.SYS
07:01:57.0525 0x0f98 SRTSPX - ok
07:01:57.0571 0x0f98 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
07:01:57.0571 0x0f98 srv - ok
07:01:57.0587 0x0f98 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
07:01:57.0603 0x0f98 srv2 - ok
07:01:57.0665 0x0f98 [ E00FDFAFF025E94F9821153750C35A6D, 6ECDC5F314A29B859B0DCB7FF114CACE0718612556299B16412C21F9539DC9B5 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
07:01:57.0665 0x0f98 SrvHsfHDA - ok
07:01:57.0712 0x0f98 [ CEB4E3B6890E1E42DCA6694D9E59E1A0, 00D841690A88F1051A238F67AACCE905E8A59C86070F215A8D31FA3E68C6BF35 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
07:01:57.0727 0x0f98 SrvHsfV92 - ok
07:01:57.0774 0x0f98 [ BC0C7EA89194C299F051C24119000E17, F5FB21F7AD7370F3D5DF7C23F33118ECF19865B995AF12E9A8A8D893E7E6264F ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
07:01:57.0790 0x0f98 SrvHsfWinac - ok
07:01:57.0821 0x0f98 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
07:01:57.0837 0x0f98 srvnet - ok
07:01:57.0868 0x0f98 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:01:57.0868 0x0f98 SSDPSRV - ok
07:01:57.0883 0x0f98 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
07:01:57.0899 0x0f98 SstpSvc - ok
07:01:57.0915 0x0f98 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\drivers\stexstor.sys
07:01:57.0915 0x0f98 stexstor - ok
07:01:57.0961 0x0f98 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
07:01:57.0977 0x0f98 StiSvc - ok
07:01:57.0993 0x0f98 [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
07:01:57.0993 0x0f98 storflt - ok
07:01:58.0024 0x0f98 [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc C:\Windows\system32\storsvc.dll
07:01:58.0024 0x0f98 StorSvc - ok
07:01:58.0039 0x0f98 [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc C:\Windows\system32\drivers\storvsc.sys
07:01:58.0039 0x0f98 storvsc - ok
07:01:58.0117 0x0f98 [ 75A8EE6F0917AD9355367DBF25DB8415, B6188D940126EDA400E0C75E1DD75CE7542F32B94D8CC5947EC68523845C4307 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys
07:01:58.0117 0x0f98 SWDUMon - ok
07:01:58.0133 0x0f98 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
07:01:58.0133 0x0f98 swenum - ok
07:01:58.0164 0x0f98 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
07:01:58.0180 0x0f98 swprv - ok
07:01:58.0211 0x0f98 [ 4C3DEF736D3857570166DE5C858600F5, 45613D3F1935AFDDB1DFE3A427222A0B38430ABF15F9110A35E7C55CDADF1D43 ] SymDS C:\Windows\system32\drivers\NIS\1505000.013\SYMDS.SYS
07:01:58.0227 0x0f98 SymDS - ok
07:01:58.0320 0x0f98 [ B70A98F20B4180F2751CFD7656116342, F4BB1904DC4818CE012AA264A7714AA9977F06255CF857FDB3E55B0DBA3D8A9C ] SymEFA C:\Windows\system32\drivers\NIS\1505000.013\SYMEFA.SYS
07:01:58.0336 0x0f98 SymEFA - ok
07:01:58.0383 0x0f98 [ E987A9CB539147527F56943BB34B7375, 4627C3E237549587B53CBD0D89AC2CEFF03C04F7624E2868936BCE5D70496AFD ] SymEvent C:\Windows\system32\Drivers\SYMEVENT.SYS
07:01:58.0383 0x0f98 SymEvent - ok
07:01:58.0445 0x0f98 [ E3A3CA230C7547364BB3D9DA0C301A36, 8F173DE08BAF81A7BE7F2D306DC595D60E6537D95AFE32A39E521E43C35AB629 ] SymIRON C:\Windows\system32\drivers\NIS\1505000.013\Ironx86.SYS
  • 0

#7
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

3rd part of TDSSkiller report

 

 

07:01:58.0461 0x0f98  SymIRON - ok
07:01:58.0507 0x0f98  [ CCD9B61DD6AB649B69143523C0D6391B, 3366F31D7683159126F197C2BDE8248462BB80098327258CE62B1034039E8FE5 ] SymNetS         C:\Windows\system32\drivers\NIS\1505000.013\SYMNETS.SYS
07:01:58.0523 0x0f98  SymNetS - ok
07:01:58.0632 0x0f98  [ 0E8676FB3BB95AA40FDF7A4A31018C8B, C14931CB26830E2A720C4DA5C16E2CBF1BDDDBD253257491F0D84EF5C94437E4 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
07:01:58.0663 0x0f98  SynTP - ok
07:01:58.0741 0x0f98  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll
07:01:58.0757 0x0f98  SysMain - ok
07:01:58.0773 0x0f98  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
07:01:58.0788 0x0f98  TabletInputService - ok
07:01:58.0804 0x0f98  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
07:01:58.0804 0x0f98  TapiSrv - ok
07:01:58.0819 0x0f98  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
07:01:58.0819 0x0f98  TBS - ok
07:01:58.0913 0x0f98  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
07:01:58.0929 0x0f98  Tcpip - ok
07:01:58.0991 0x0f98  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
07:01:59.0022 0x0f98  TCPIP6 - ok
07:01:59.0069 0x0f98  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
07:01:59.0069 0x0f98  tcpipreg - ok
07:01:59.0085 0x0f98  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
07:01:59.0100 0x0f98  TDPIPE - ok
07:01:59.0116 0x0f98  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
07:01:59.0116 0x0f98  TDTCP - ok
07:01:59.0131 0x0f98  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
07:01:59.0131 0x0f98  tdx - ok
07:01:59.0147 0x0f98  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
07:01:59.0147 0x0f98  TermDD - ok
07:01:59.0178 0x0f98  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\Windows\System32\termsrv.dll
07:01:59.0194 0x0f98  TermService - ok
07:01:59.0209 0x0f98  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
07:01:59.0209 0x0f98  Themes - ok
07:01:59.0225 0x0f98  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
07:01:59.0225 0x0f98  THREADORDER - ok
07:01:59.0287 0x0f98  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
07:01:59.0287 0x0f98  TrkWks - ok
07:01:59.0334 0x0f98  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:01:59.0334 0x0f98  TrustedInstaller - ok
07:01:59.0365 0x0f98  [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
07:01:59.0365 0x0f98  tssecsrv - ok
07:01:59.0412 0x0f98  [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
07:01:59.0412 0x0f98  TsUsbFlt - ok
07:01:59.0428 0x0f98  [ 01246F0BAAD7B68EC0F472AA41E33282, 51F975AF029AD015576FFFA3E88F5DBB8B40C7CD30ECDEDE8AFABCB08C954199 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
07:01:59.0428 0x0f98  TsUsbGD - ok
07:01:59.0475 0x0f98  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
07:01:59.0475 0x0f98  tunnel - ok
07:01:59.0506 0x0f98  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
07:01:59.0506 0x0f98  uagp35 - ok
07:01:59.0521 0x0f98  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
07:01:59.0521 0x0f98  udfs - ok
07:01:59.0537 0x0f98  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
07:01:59.0537 0x0f98  UI0Detect - ok
07:01:59.0584 0x0f98  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
07:01:59.0584 0x0f98  uliagpkx - ok
07:01:59.0599 0x0f98  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
07:01:59.0599 0x0f98  umbus - ok
07:01:59.0599 0x0f98  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
07:01:59.0615 0x0f98  UmPass - ok
07:01:59.0646 0x0f98  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
07:01:59.0646 0x0f98  UmRdpService - ok
07:01:59.0677 0x0f98  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
07:01:59.0693 0x0f98  upnphost - ok
07:01:59.0709 0x0f98  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
07:01:59.0724 0x0f98  usbccgp - ok
07:01:59.0740 0x0f98  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
07:01:59.0740 0x0f98  usbcir - ok
07:01:59.0787 0x0f98  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
07:01:59.0787 0x0f98  usbehci - ok
07:01:59.0818 0x0f98  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
07:01:59.0818 0x0f98  usbhub - ok
07:01:59.0833 0x0f98  [ A6FB7957EA7AFB1165991E54CE934B74, 1CE83D9E3276AE380F720C7700A17D58A37A2A77FD72DA69EE0C756B88DB3689 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
07:01:59.0833 0x0f98  usbohci - ok
07:01:59.0849 0x0f98  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
07:01:59.0849 0x0f98  usbprint - ok
07:01:59.0880 0x0f98  [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
07:01:59.0880 0x0f98  USBSTOR - ok
07:01:59.0911 0x0f98  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
07:01:59.0927 0x0f98  usbuhci - ok
07:01:59.0943 0x0f98  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
07:01:59.0943 0x0f98  UxSms - ok
07:01:59.0958 0x0f98  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc        C:\Windows\system32\lsass.exe
07:01:59.0958 0x0f98  VaultSvc - ok
07:01:59.0989 0x0f98  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
07:01:59.0989 0x0f98  vdrvroot - ok
07:02:00.0036 0x0f98  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
07:02:00.0036 0x0f98  vds - ok
07:02:00.0052 0x0f98  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
07:02:00.0052 0x0f98  vga - ok
07:02:00.0067 0x0f98  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
07:02:00.0067 0x0f98  VgaSave - ok
07:02:00.0083 0x0f98  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
07:02:00.0083 0x0f98  vhdmp - ok
07:02:00.0130 0x0f98  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
07:02:00.0130 0x0f98  viaagp - ok
07:02:00.0145 0x0f98  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
07:02:00.0145 0x0f98  ViaC7 - ok
07:02:00.0161 0x0f98  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
07:02:00.0161 0x0f98  viaide - ok
07:02:00.0192 0x0f98  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
07:02:00.0208 0x0f98  vmbus - ok
07:02:00.0208 0x0f98  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
07:02:00.0208 0x0f98  VMBusHID - ok
07:02:00.0239 0x0f98  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
07:02:00.0239 0x0f98  volmgr - ok
07:02:00.0255 0x0f98  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
07:02:00.0255 0x0f98  volmgrx - ok
07:02:00.0270 0x0f98  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
07:02:00.0286 0x0f98  volsnap - ok
07:02:00.0301 0x0f98  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
07:02:00.0301 0x0f98  vsmraid - ok
07:02:00.0379 0x0f98  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
07:02:00.0395 0x0f98  VSS - ok
07:02:00.0411 0x0f98  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
07:02:00.0411 0x0f98  vwifibus - ok
07:02:00.0457 0x0f98  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
07:02:00.0457 0x0f98  vwififlt - ok
07:02:00.0473 0x0f98  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
07:02:00.0473 0x0f98  W32Time - ok
07:02:00.0489 0x0f98  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
07:02:00.0489 0x0f98  WacomPen - ok
07:02:00.0520 0x0f98  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
07:02:00.0520 0x0f98  WANARP - ok
07:02:00.0520 0x0f98  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
07:02:00.0535 0x0f98  Wanarpv6 - ok
07:02:00.0598 0x0f98  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
07:02:00.0629 0x0f98  wbengine - ok
07:02:00.0645 0x0f98  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
07:02:00.0645 0x0f98  WbioSrvc - ok
07:02:00.0660 0x0f98  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
07:02:00.0676 0x0f98  wcncsvc - ok
07:02:00.0676 0x0f98  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:02:00.0676 0x0f98  WcsPlugInService - ok
07:02:00.0691 0x0f98  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
07:02:00.0707 0x0f98  Wd - ok
07:02:00.0754 0x0f98  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
07:02:00.0769 0x0f98  Wdf01000 - ok
07:02:00.0816 0x0f98  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\Windows\system32\wdi.dll
07:02:00.0816 0x0f98  WdiServiceHost - ok
07:02:00.0816 0x0f98  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
07:02:00.0816 0x0f98  WdiSystemHost - ok
07:02:00.0847 0x0f98  [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient       C:\Windows\System32\webclnt.dll
07:02:00.0863 0x0f98  WebClient - ok
07:02:00.0879 0x0f98  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
07:02:00.0879 0x0f98  Wecsvc - ok
07:02:00.0894 0x0f98  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
07:02:00.0910 0x0f98  wercplsupport - ok
07:02:00.0957 0x0f98  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
07:02:00.0957 0x0f98  WerSvc - ok
07:02:01.0003 0x0f98  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
07:02:01.0003 0x0f98  WfpLwf - ok
07:02:01.0019 0x0f98  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
07:02:01.0019 0x0f98  WIMMount - ok
07:02:01.0066 0x0f98  [ 18140A8FF0E80E8CF2AD731A8C2A6BC2, 1BC90A94E8512FF1BC19BF5DC4DFC4789A32B33DC9FD493F22B49B559BA75625 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
07:02:01.0066 0x0f98  winachsf - ok
07:02:01.0175 0x0f98  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
07:02:01.0191 0x0f98  WinDefend - ok
07:02:01.0191 0x0f98  WinHttpAutoProxySvc - ok
07:02:01.0284 0x0f98  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
07:02:01.0284 0x0f98  Winmgmt - ok
07:02:01.0347 0x0f98  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\Windows\system32\WsmSvc.dll
07:02:01.0378 0x0f98  WinRM - ok
07:02:01.0456 0x0f98  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
07:02:01.0487 0x0f98  Wlansvc - ok
07:02:01.0518 0x0f98  [ 18DA2551D5EAE41F6C7491A1EE157DC1, C7CCFBB260325BE8C2EF5F8266FD89CA69126AF6CE2D653AD4212A9447DB502B ] wltrysvc        C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
07:02:01.0518 0x0f98  wltrysvc - ok
07:02:01.0534 0x0f98  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
07:02:01.0534 0x0f98  WmiAcpi - ok
07:02:01.0565 0x0f98  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
07:02:01.0565 0x0f98  wmiApSrv - ok
07:02:01.0643 0x0f98  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
07:02:01.0674 0x0f98  WMPNetworkSvc - ok
07:02:01.0690 0x0f98  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
07:02:01.0705 0x0f98  WPCSvc - ok
07:02:01.0705 0x0f98  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
07:02:01.0705 0x0f98  WPDBusEnum - ok
07:02:01.0737 0x0f98  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
07:02:01.0737 0x0f98  ws2ifsl - ok
07:02:01.0752 0x0f98  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
07:02:01.0752 0x0f98  wscsvc - ok
07:02:01.0768 0x0f98  WSearch - ok
07:02:01.0861 0x0f98  [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] wuauserv        C:\Windows\system32\wuaueng.dll
07:02:01.0908 0x0f98  wuauserv - ok


  • 0

#8
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

4th and final part of the TDSSkiller report

 

 

07:02:01.0955 0x0f98  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
07:02:01.0955 0x0f98  WudfPf - ok
07:02:01.0986 0x0f98  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
07:02:01.0986 0x0f98  WUDFRd - ok
07:02:02.0033 0x0f98  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
07:02:02.0033 0x0f98  wudfsvc - ok
07:02:02.0080 0x0f98  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
07:02:02.0080 0x0f98  WwanSvc - ok
07:02:02.0095 0x0f98  [ 22A08B9FAECD6A306868F59B7F03F188, B6919212B0FD0DBE0F481AA5C9FDFB0E80A5A637352097EBD7E8DD2B538B312F ] XAudio          C:\Windows\system32\DRIVERS\XAudio32.sys
07:02:02.0095 0x0f98  XAudio - ok
07:02:02.0111 0x0f98  ================ Scan global ===============================
07:02:02.0158 0x0f98  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
07:02:02.0173 0x0f98  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
07:02:02.0189 0x0f98  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
07:02:02.0220 0x0f98  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
07:02:02.0251 0x0f98  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
07:02:02.0251 0x0f98  [ Global ] - ok
07:02:02.0251 0x0f98  ================ Scan MBR ==================================
07:02:02.0267 0x0f98  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:02:03.0156 0x0f98  \Device\Harddisk0\DR0 - ok
07:02:03.0156 0x0f98  ================ Scan VBR ==================================
07:02:03.0172 0x0f98  [ 4E6074AD1397709F967FBA2B4F3E9500 ] \Device\Harddisk0\DR0\Partition1
07:02:03.0172 0x0f98  \Device\Harddisk0\DR0\Partition1 - ok
07:02:03.0187 0x0f98  [ C92F23D73E2C3344D73668748B6FFA6F ] \Device\Harddisk0\DR0\Partition2
07:02:03.0187 0x0f98  \Device\Harddisk0\DR0\Partition2 - ok
07:02:03.0187 0x0f98  ================ Scan generic autorun ======================
07:02:03.0250 0x0f98  [ FE7CE849DB8C3986B2E721C6A3184FAA, 9879821AF51D13DB22EE2A8B351C5C8BB338408D325D9ACEC95237F3DE502069 ] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
07:02:03.0250 0x0f98  QlbCtrl.exe - ok
07:02:03.0343 0x0f98  [ 5616E23703DDBB615D41923D0768BE84, 822196CD6F266CC38A689D769E48372B7260591C7E04F3E6279572DF9A96883D ] C:\Program Files\Analog Devices\Core\smax4pnp.exe
07:02:03.0375 0x0f98  SoundMAXPnP - ok
07:02:03.0484 0x0f98  [ 20CB286C4591EEA68778CA6626D70D47, 3F8FC588B23128754CCACC2C83BF3265FB81605AED3A613DA34261806CFAEA03 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
07:02:03.0531 0x0f98  SynTPEnh - ok
07:02:03.0624 0x0f98  [ F476FA8F45A666B410718BFC4576D95B, 3D12F967A737C49257CEC305E50669C4E8ED27568E30725B10EAF6718E51CBFC ] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
07:02:03.0624 0x0f98  StartCCC - ok
07:02:03.0889 0x0f98  [ CEC8239262FCE1CFF63A0331F0C5CC9D, 9D513615912ECC4BBB4F6611DFE30E4E04BB430BCA8A9953E4FD5E3E81752CDD ] C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe
07:02:04.0014 0x0f98  Broadcom Wireless Manager UI - ok
07:02:04.0139 0x0f98  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
07:02:04.0155 0x0f98  Sidebar - ok
07:02:04.0186 0x0f98  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
07:02:04.0186 0x0f98  mctadmin - ok
07:02:04.0248 0x0f98  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
07:02:04.0264 0x0f98  Sidebar - ok
07:02:04.0279 0x0f98  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
07:02:04.0279 0x0f98  mctadmin - ok
07:02:04.0279 0x0f98  Waiting for KSN requests completion. In queue: 280
07:02:05.0293 0x0f98  Waiting for KSN requests completion. In queue: 280
07:02:06.0307 0x0f98  Waiting for KSN requests completion. In queue: 280
07:02:07.0321 0x0f98  Waiting for KSN requests completion. In queue: 280
07:02:08.0335 0x0f98  AV detected via SS2: Norton Internet Security, C:\Program Files\Norton Internet Security\Engine\21.5.0.19\WSCStub.exe ( 21.5.0.0 ), 0x51000 ( enabled : updated )
07:02:08.0335 0x0f98  FW detected via SS2: Norton Internet Security, C:\Program Files\Norton Internet Security\Engine\21.5.0.19\WSCStub.exe ( 21.5.0.0 ), 0x51010 ( enabled )
07:02:11.0752 0x0f98  ============================================================
07:02:11.0752 0x0f98  Scan finished
07:02:11.0752 0x0f98  ============================================================
07:02:11.0752 0x10cc  Detected object count: 0
07:02:11.0752 0x10cc  Actual detected object count: 0
07:04:02.0418 0x037c  Deinitialize success
 


  • 0

#9
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

Adam, thanks for your assistance..I hope I did this right...I mean I barely know what I am doing. I bought this used computer for my daughter to play games on. It has not worked right since the first day. And I think I made matters worse by trying to add things to clean off the trovi hijack adware.  Any way, I hope I got you the results you asked for and I hope I can understand and carry out if there is something you can tell me to do to fix this. THANKS AGAIN, Linda


  • 0

#10
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts
Hi Linda,

Very sorry for the delay; I've had some Internet issues recently. I shall return with instructions for you shortly.
  • 0

Advertisements


#11
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hello again Linda, 
 
You haven't posted FRST.txt for me; only Addition.txt. But not to worry, I'd like you to run the following programmes below, and rerun FRST once more. After rerunning FRST, please ensure you include both logs generated. 
 
The tools below should remove most of the adware/Potentially Unwanted Programmes (PUPs) and browser hijackers on your computer. 
 
STEP 1
BY4dvz9.png.pagespeed.ce.cpqHQmQDB6.png AdwCleaner

  • Please download AdwCleaner and save the file to your Desktop.
  • Right-Click AdwCleaner.exe and select xAVOiBNU.jpg.pagespeed.ic.H5HC6LkiJX.jpg Run as administrator to run the programme.
  • Follow the prompts. 
  • Click Scan
  • Upon completion, click Report. A log (AdwCleaner[R0].txt) will open. Briefly check the log for anything you know to be legitimate. 
  • Ensure anything you know to be legitimate does not have a checkmark, and click Clean
  • Follow the prompts and allow your computer to reboot
  • After rebooting, a log (AdwCleaner[S0].txt) will open. Copy the contents of the log and paste in your next reply.

-- File and registry key backups are made for anything removed using this tool. Should a legitimate entry be removed (otherwise known as a 'false-positive'), simple steps can be taken to restore the entry. Please do not overly concern yourself with the contents of AdwCleaner[R0].txt.
 

STEP 2
xE3feWj5.png.pagespeed.ic.JE3sJIzHrn.png Junkware Removal Tool (JRT)

  • Please download Junkware Removal Tool and save the file to your Desktop.
  • Note: If you unchecked any items in AdwCleaner, please backup the associated folders/files before running JRT.
  • Temporarily disable your anti-virus software. For instructions, please refer to the following link.
  • Right-Click JRT.exe and select xAVOiBNU.jpg.pagespeed.ic.H5HC6LkiJX.jpg Run as administrator to run the programme.
  • Follow the prompts and allow the scan to run uninterrupted. 
  • Upon completion, a log (JRT.txt) will open on your desktop.
  • Re-enable your anti-virus software.
  • Copy the contents of JRT.txt and paste in your next reply.
     

STEP 3
xlK5Hdb.png.pagespeed.ce.J4MzrrPAEo.png Farbar Recovery Scan Tool (FRST) Scan

  • Right-Click FRST.exe and select xAVOiBNU.jpg.pagespeed.ic.H5HC6LkiJX.jpg Run as administrator to run the programme.
  • Click Yes to the disclaimer.
  • Ensure the Addition.txt box is checked.
  • Click the Scan button and let the programme run.
  • Upon completion, click OK, then OK on the Addition.txt pop up screen.
  • Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Copy the contents of both logs and paste in your next reply. 

======================================================

STEP 4
xpfNZP4A.png.pagespeed.ic.bp5cRl1pJg.jpg Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • AdwCleaner[S0].txt
  • JRT.txt
  • FRST.txt
  • Addition.txt

  • 0

#12
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

Adam,

 

I am trying my best but I cannot find the report for the AdwCleaner[SO].txt I saw it and then when I went to copy it I could not find it. I went into Notepad and it is not there. I have included the other things you asked for. Thanks again for your help.

 

Linda

 

 

 

 

JRT results

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x86
Ran by 6910p on Fri 08/29/2014 at 13:50:27.79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 08/29/2014 at 13:53:54.28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version:26-08-2014
Ran by 6910p at 2014-08-29 14:04:37
Running from C:\Users\6910p\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Internet Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
ATI Catalyst Install Manager (HKLM\...\{A990D795-F751-39DA-DDD4-07ED04CEC7CE}) (Version: 3.0.715.0 - ATI Technologies, Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.100.82.148 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.100.82.148 - Broadcom Corporation)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2009.0521.2235.38731 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0521.2235.38731 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2009.0521.2235.38731 - ATI) Hidden
CCC Help Chinese Standard (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Czech (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Danish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Dutch (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help English (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Finnish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help French (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help German (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Greek (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Hungarian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Italian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Japanese (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Korean (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Norwegian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Polish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Portuguese (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Russian (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Spanish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Swedish (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Thai (Version: 2009.0521.2234.38731 - ATI) Hidden
CCC Help Turkish (Version: 2009.0521.2234.38731 - ATI) Hidden
ccc-core-static (Version: 2009.0521.2235.38731 - ATI) Hidden
ccc-utility (Version: 2009.0521.2235.38731 - ATI) Hidden
Definition Update for Microsoft Office 2013 (KB2760587) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{0B79C91F-978F-4C2E-9FE4-D4B567808858}) (Version:  - Microsoft)
Disketch Disc Label Software (HKLM\...\Disketch) (Version: 3.24 - NCH Software)
Express Burn (HKLM\...\ExpressBurn) (Version:  - NCH Software)
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.14.1 - Hewlett-Packard Company)
Intel® Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
Intel® Network Connections 18.7.28.0 (Version: 18.7.28.0 - Intel) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Access MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Excel MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Word MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Norton Internet Security (HKLM\...\NIS) (Version: 21.5.0.19 - Symantec Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
RICOH Media Driver (HKLM\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.10.00.04 - RICOH)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (Version:  - Microsoft) Hidden
SlimDrivers (HKLM\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_PCI_VEN_14F1&DEV_2C06_hpZ1379z) (Version: 7.80.3.52 - Conexant Systems)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TweakNow RegCleaner (HKLM\...\TweakNow RegCleaner_is1) (Version: 7.3.1 - TweakNow.com)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-0016-0409-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-0018-0409-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2883061) 32-Bit Edition (HKLM\...\{90150000-001B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{4CFCE804-3034-4F3A-84E2-3C97665F80EC}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2881070) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{35E5FACD-A5AA-46AD-93C7-F6D7969044E7}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2881070) 32-Bit Edition (HKLM\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{35E5FACD-A5AA-46AD-93C7-F6D7969044E7}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2881083) 32-Bit Edition (HKLM\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{7DF13AFE-A484-4178-A82D-EF0689A24775}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760249) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{8C07AD38-38EB-4332-BCB3-F55A77C927DF}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{A7610F07-E844-4444-8E1D-D5BC8AD0B4C5}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760544) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{45B7D395-EB9B-414F-9E46-5849B42326E2}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2768012) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{66421820-D3CA-450A-898C-78D7E40108E6}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{1644D7F6-90EE-4252-8884-18E4E330529D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 32-Bit Edition (HKLM\...\{90150000-0016-0409-0000-0000000FF1CE}_Office15.PROPLUS_{1644D7F6-90EE-4252-8884-18E4E330529D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2826040) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{B7EA8070-C37F-4617-82F4-52CF3304595A}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2837644) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{9BC5FF1D-9626-44D7-BC7F-EB44BD8BDB9F}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2863843) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{AD7045B8-1D75-4B4C-8120-12F045D206C7}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880457) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{D27F6360-AE1E-4C8C-8ECD-C0375E20B923}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{5D6439FF-D651-4B13-B52E-2508AB9DE19D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 32-Bit Edition (HKLM\...\{90150000-006E-0409-0000-0000000FF1CE}_Office15.PROPLUS_{5D6439FF-D651-4B13-B52E-2508AB9DE19D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880478) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7C5CEE0F-6823-4BB7-A28F-76FEC14EB6AC}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881009) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7A3EF4FF-A9C8-4F7E-8020-A45F7D319387}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0016-0409-0000-0000000FF1CE}_Office15.PROPLUS_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0090-0409-0000-0000000FF1CE}_Office15.PROPLUS_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883036) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{B8E73381-09B1-4895-ACD0-34385B0F526D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883049) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{1C6260FD-A280-49FE-89D0-CCEC647FBD8E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883052) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{3F3A95FF-9F40-4B19-8227-53DF683B4CF9}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883052) 32-Bit Edition (HKLM\...\{90150000-006E-0409-0000-0000000FF1CE}_Office15.PROPLUS_{3F3A95FF-9F40-4B19-8227-53DF683B4CF9}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 32-Bit Edition (HKLM\...\{90150000-001F-0409-0000-0000000FF1CE}_Office15.PROPLUS_{DA288EB3-648C-433C-88AC-71AEAAFAACF7}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 32-Bit Edition (HKLM\...\{90150000-001F-040C-0000-0000000FF1CE}_Office15.PROPLUS_{51865C36-97D4-4210-A33E-50BCC8CDDF72}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 32-Bit Edition (HKLM\...\{90150000-001F-0C0A-0000-0000000FF1CE}_Office15.PROPLUS_{C20FB0E0-31F6-4958-B94D-AEF3CC31FD87}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2883062) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{EE35EB6C-7768-433F-B9A0-73C97699A08C}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2883066) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{90EEAEDF-CD51-4E8C-B781-7A071EC53C36}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2883066) 32-Bit Edition (HKLM\...\{90150000-00BA-0409-0000-0000000FF1CE}_Office15.PROPLUS_{90EEAEDF-CD51-4E8C-B781-7A071EC53C36}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{CA0F0611-10FB-47D4-A642-E3BABCC73393}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 32-Bit Edition (HKLM\...\{90150000-00A1-0409-0000-0000000FF1CE}_Office15.PROPLUS_{CA0F0611-10FB-47D4-A642-E3BABCC73393}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{1BCA67A6-5329-48D0-A088-C097AC7A14BD}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 32-Bit Edition (HKLM\...\{90150000-001A-0409-0000-0000000FF1CE}_Office15.PROPLUS_{1BCA67A6-5329-48D0-A088-C097AC7A14BD}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2883051) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{01923A0F-BA34-4A75-8D43-97F536E44D95}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2883051) 32-Bit Edition (HKLM\...\{90150000-0018-0409-0000-0000000FF1CE}_Office15.PROPLUS_{01923A0F-BA34-4A75-8D43-97F536E44D95}) (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7500AD77-83C6-400B-8B2F-F8E401A7B697}) (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 32-Bit Edition (HKLM\...\{90150000-0019-0409-0000-0000000FF1CE}_Office15.PROPLUS_{7500AD77-83C6-400B-8B2F-F8E401A7B697}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{25C61889-2E44-4BE1-9E96-9364BFDCF501}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition (HKLM\...\{90150000-006E-0409-0000-0000000FF1CE}_Office15.PROPLUS_{25C61889-2E44-4BE1-9E96-9364BFDCF501}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2878319) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{A7CD05CC-CA85-428C-91FD-74A908D126E1}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-001A-0409-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-001B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2883058) 32-Bit Edition (HKLM\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{78F4AB20-5992-425F-BCFB-ECCFF3531F55}) (Version:  - Microsoft)
VC_CRT_x86 (Version: 1.02.0000 - Intel Corporation) Hidden
VideoPad Video Editor (HKLM\...\VideoPad) (Version: 3.60 - NCH Software)
WavePad Sound Editor (HKLM\...\WavePad) (Version: 5.96 - NCH Software)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points  =========================

26-08-2014 22:42:36 Windows Update
26-08-2014 23:28:14 SlimDrivers Installing Drivers
28-08-2014 07:00:25 Windows Update
28-08-2014 09:45:16 Restore Operation
28-08-2014 10:36:24 Windows Update
28-08-2014 11:29:17 Windows Update

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0700E1B7-C808-44F1-B1A0-9875BCA8E1FC} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files\Norton Internet Security\Engine\21.5.0.19\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {29C07D4D-8C2B-45E1-A3D9-13BDEE502F7E} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files\Norton Internet Security\Engine\21.5.0.19\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {37601F7E-B451-4680-93F6-CEB78585A035} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Internet Security\Engine\21.5.0.19\WSCStub.exe [2014-07-31] (Symantec Corporation)
Task: {3CF6E8B2-134C-4B57-9EE6-90B1428EA678} - System32\Tasks\Games\UpdateCheck_S-1-5-21-156859833-1109330561-1971365752-1000
Task: {408DA32B-DC72-45DB-8D13-192E2C645607} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {4DBCCEA4-B4B9-4F97-A848-FB28DB3B9376} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {7FF0B812-2B51-4513-8DCB-5B1A060B9307} - \GoogleUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {8A0849B8-D028-446D-99EF-B294DF66F28A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {B1206A98-E20D-4A1E-B358-8AFD2A2D9668} - \GoogleUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {BFA074B7-B8E2-4506-8C3C-9ADD3E371577} - System32\Tasks\SlimDrivers Startup => C:\Program Files\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: {F5C3788A-6381-4A95-A126-C15080BBF689} - System32\Tasks\Microsoft Office 15 Sync Maintenance for 6910p-PC-6910p 6910p-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-07-27] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (whitelisted) =============

2014-07-27 11:41 - 2014-07-27 11:41 - 08892576 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-08-22 01:19 - 2014-08-22 01:19 - 00014848 _____ () C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
2008-12-18 15:03 - 2008-12-18 15:03 - 00020480 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel® Core™2 Duo CPU T7300 @ 2.00GHz
Percentage of memory in use: 42%
Total physical RAM: 2047.3 MB
Available physical RAM: 1179.67 MB
Total Pagefile: 5117.3 MB
Available Pagefile: 4103.38 MB
Total Virtual: 2047.88 MB
Available Virtual: 1907.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:93.06 GB) (Free:61.63 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 93.2 GB) (Disk ID: 01B601B6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=93.1 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:26-08-2014
Ran by 6910p (administrator) on 6910P-PC on 29-08-2014 14:03:16
Running from C:\Users\6910p\Downloads
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\BCMWLTRY.EXE
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\21.5.0.19\NIS.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\21.5.0.19\NIS.exe
(SlimWare Utilities, Inc.) C:\Program Files\SlimDrivers\SlimDrivers.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2009-11-11] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1183744 2007-02-21] (Analog Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1791272 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2009-05-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [6361600 2014-08-22] (Broadcom Corporation)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://aol.com/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Internet Security\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton Internet Security\Engine\21.5.0.19\IPS\IPSBHO.DLL (Symantec Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.5.0.19\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.5.0.19\IPSFF [1980-01-04]
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.5.0.19\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.5.0.19\coFFPlgn [2014-08-29]

Chrome:
=======
CHR HomePage: Default ->
CHR CustomProfile: C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-24]
CHR Extension: (Google Drive) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-24]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-24]
CHR Extension: (YouTube) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-24]
CHR Extension: (Google Search) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-24]
CHR Extension: (Norton Identity Safe) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-24]
CHR Extension: (No Name) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-24]
CHR Extension: (Google Wallet) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-24]
CHR Extension: (Gmail) - C:\Users\6910p\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-24]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [133888 2013-07-30] (Intel Corporation)
R2 NIS; C:\Program Files\Norton Internet Security\Engine\21.5.0.19\NIS.exe [276376 2014-07-31] (Symantec Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [5179392 2014-08-22] (Broadcom Corporation) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [19664 2014-08-22] (Broadcom Corporation)
R1 BHDrvx86; C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\BASHDefs\20140821.007\BHDrvx86.sys [1138480 2014-08-18] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NIS\1505000.013\ccSetx86.sys [127064 2014-02-20] (Symantec Corporation)
R3 e1express; C:\Windows\System32\DRIVERS\e1e6232.sys [219352 2009-06-05] (Intel Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [377648 2014-06-04] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [109872 2014-06-09] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\IPSDefs\20140825.001\IDSvix86.sys [395992 2014-08-22] (Symantec Corporation)
R3 NAVENG; C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20140828.023\NAVENG.SYS [95704 2014-08-27] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20140828.023\NAVEX15.SYS [1636696 2014-08-27] (Symantec Corporation)
S3 RICOH SmartCard Reader; C:\Windows\System32\DRIVERS\rismc32.sys [49152 2009-07-20] (RICOH Company, Ltd.)
R3 rismc32; C:\Windows\System32\DRIVERS\rismc32.sys [49152 2009-07-20] (RICOH Company, Ltd.)
R3 SRTSP; C:\Windows\system32\drivers\NIS\1505000.013\SRTSP.SYS [664280 2014-07-23] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NIS\1505000.013\SRTSPX.SYS [32344 2014-07-23] (Symantec Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2014-08-29] ()
R0 SymDS; C:\Windows\System32\drivers\NIS\1505000.013\SYMDS.SYS [367704 2014-07-23] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NIS\1505000.013\SYMEFA.SYS [936152 2014-07-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [142936 1980-01-04] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NIS\1505000.013\Ironx86.SYS [206936 2014-07-23] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\NIS\1505000.013\SYMNETS.SYS [447704 2014-07-23] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-29 14:03 - 2014-08-29 14:04 - 00011896 _____ () C:\Users\6910p\Downloads\FRST.txt
2014-08-29 14:01 - 2014-08-29 14:01 - 01095168 _____ (Farbar) C:\Users\6910p\Downloads\FRST.exe
2014-08-29 13:53 - 2014-08-29 13:53 - 00000633 _____ () C:\Users\6910p\Desktop\JRT.txt
2014-08-29 13:50 - 2014-08-29 13:50 - 00000000 ____D () C:\Windows\ERUNT
2014-08-29 13:45 - 2014-08-29 13:45 - 01016261 _____ (Thisisu) C:\Users\6910p\Downloads\JRT.exe
2014-08-29 13:32 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-08-29 13:31 - 2014-08-29 13:58 - 00000000 ____D () C:\AdwCleaner
2014-08-29 13:31 - 2014-08-29 13:31 - 01364531 _____ () C:\Users\6910p\Downloads\AdwCleaner.exe
2014-08-28 06:56 - 2014-08-28 06:57 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\6910p\Downloads\tdsskiller.exe
2014-08-28 06:38 - 2014-08-29 14:03 - 00000000 ____D () C:\FRST
2014-08-28 06:38 - 2014-08-22 21:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 06:38 - 2014-08-22 20:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-26 05:21 - 2014-08-29 13:37 - 00000386 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
2014-08-26 01:22 - 2014-08-28 06:31 - 00000000 ____D () C:\Program Files\Adware-Removal-Tool
2014-08-26 01:22 - 2014-08-26 04:11 - 00290304 _____ (Microsoft Corporation) C:\Windows\system32\subinacl.exe
2014-08-26 01:21 - 2014-08-26 01:21 - 00753184 _____ () C:\Users\6910p\Downloads\Adware-Removal-Tool-v3.9.1.exe
2014-08-26 00:12 - 2014-08-28 07:04 - 00000000 ____D () C:\NPE
2014-08-26 00:10 - 2014-08-26 19:38 - 00000000 ____D () C:\Users\6910p\AppData\Local\NPE
2014-08-24 22:48 - 2014-08-24 22:48 - 00000017 _____ () C:\Users\6910p\AppData\Local\resmon.resmoncfg
2014-08-24 19:24 - 2014-08-24 19:24 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\Macromedia
2014-08-24 19:22 - 2014-08-24 19:40 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-24 19:22 - 2014-08-24 19:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-24 19:20 - 2014-08-28 06:30 - 00000000 ____D () C:\Users\6910p\AppData\Local\Google
2014-08-24 19:20 - 2014-08-28 06:29 - 00000000 ____D () C:\Program Files\Google
2014-08-24 19:20 - 2014-08-24 19:20 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-08-24 19:20 - 2014-08-24 19:20 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-08-24 19:20 - 2014-08-24 19:20 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-22 08:43 - 2014-08-22 08:43 - 00000000 ____D () C:\ProgramData\Sun
2014-08-22 08:43 - 2014-08-22 08:43 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-22 08:43 - 2014-08-22 08:43 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-22 08:43 - 1980-01-04 23:21 - 00000000 ____D () C:\Windows\AutoKMS
2014-08-22 08:42 - 2014-08-22 08:42 - 00000000 ____D () C:\Program Files\Java
2014-08-22 08:40 - 2014-08-22 08:40 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-08-22 08:27 - 2014-05-14 12:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-22 08:27 - 2014-05-14 12:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-22 08:27 - 2014-05-14 12:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-22 08:27 - 2014-05-14 12:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-22 08:27 - 2014-05-14 12:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-22 08:27 - 2014-05-14 12:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-22 08:27 - 2014-05-14 12:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-22 08:26 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-22 08:26 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-22 02:33 - 2014-08-22 02:33 - 00000000 ____D () C:\Windows\system32\vs08
2014-08-22 02:33 - 2014-08-22 02:33 - 00000000 ____D () C:\Program Files\Broadcom
2014-08-22 02:33 - 2014-08-22 02:32 - 02682880 _____ (Microsoft Corporation) C:\Windows\system32\vcredist_x86.exe
2014-08-22 02:33 - 2014-08-22 02:32 - 00052224 _____ (Broadcom Corporation) C:\Windows\system32\wltrynt.dll
2014-08-22 02:33 - 2014-08-22 02:31 - 07250944 _____ (Broadcom Corporation) C:\Windows\system32\BCMWLCPL.CPL
2014-08-22 02:33 - 2014-08-22 02:31 - 04358144 _____ (Broadcom Corporation) C:\Windows\system32\bcmttls.dll
2014-08-22 02:33 - 2014-08-22 02:31 - 04270288 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL6.SYS
2014-08-22 02:33 - 2014-08-22 02:31 - 03928064 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv.dll
2014-08-22 02:33 - 2014-08-22 02:31 - 03616768 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui.dll
2014-08-22 02:33 - 2014-08-22 02:31 - 01005056 _____ (Broadcom Corporation) C:\Windows\system32\BCMLogon.dll
2014-08-22 02:33 - 2014-08-22 02:31 - 00092464 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2014-08-22 02:33 - 2014-08-22 02:31 - 00035088 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys
2014-08-22 02:33 - 2014-08-22 02:31 - 00019664 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcm42rly.sys
2014-08-22 02:33 - 2014-08-22 02:31 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-08-22 02:33 - 2014-08-22 02:31 - 00000441 _____ () C:\Windows\system32\vcredist_x86.bat
2014-08-22 02:32 - 2014-08-22 02:32 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\InstallShield
2014-08-22 02:28 - 1999-12-31 20:00 - 00980992 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\HSX_DPV.sys
2014-08-22 02:28 - 1999-12-31 20:00 - 00661504 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\HSX_CNXT.sys
2014-08-22 02:28 - 1999-12-31 20:00 - 00410624 _____ (Conexant Systems, Inc.) C:\Windows\system32\XAudio32.dll
2014-08-22 02:28 - 1999-12-31 20:00 - 00258048 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI32M38.dll
2014-08-22 02:28 - 1999-12-31 20:00 - 00207360 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\HSXHWAZL.sys
2014-08-22 02:28 - 1999-12-31 20:00 - 00146036 _____ () C:\Windows\system32\Drivers\HSFProf.cty
2014-08-22 02:28 - 1999-12-31 20:00 - 00008704 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\XAudio32.sys
2014-08-22 02:25 - 2009-07-24 10:49 - 00114688 _____ (RICOH) C:\Windows\system32\RicohMediadriverVer.dll
2014-08-22 02:25 - 2009-07-20 15:05 - 00049152 _____ (RICOH Company, Ltd.) C:\Windows\system32\Drivers\rismc32.sys
2014-08-22 02:25 - 2009-06-25 16:58 - 00048128 _____ (REDC) C:\Windows\system32\Drivers\rimmptsk.sys
2014-08-22 02:17 - 2013-08-09 05:04 - 00317752 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe
2014-08-22 02:17 - 2006-01-12 18:52 - 00001904 ____N () C:\Windows\system32\SetupBD.din
2014-08-22 01:42 - 2014-08-22 02:17 - 00000000 ____D () C:\Program Files\Intel
2014-08-22 01:42 - 2013-08-21 15:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\system32\CSVer.dll
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\ATI
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\Users\6910p\AppData\Local\ATI
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\ProgramData\ATI
2014-08-22 01:16 - 2014-08-22 01:19 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-22 01:15 - 2014-08-22 01:15 - 00000000 ____D () C:\Program Files\ATI
2014-08-22 01:09 - 1999-12-31 20:00 - 11513856 _____ (ATI Technologies Inc.) C:\Windows\system32\atioglxx.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 04945920 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumdva.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 04450816 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-08-22 01:09 - 1999-12-31 20:00 - 03839488 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumdag.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00733184 _____ (ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
2014-08-22 01:09 - 1999-12-31 20:00 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00348160 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdlxx.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00278528 _____ (ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00189051 _____ () C:\Windows\system32\atiicdxx.dat
2014-08-22 01:09 - 1999-12-31 20:00 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00152496 _____ () C:\Windows\system32\atiumdva.cap
2014-08-22 01:09 - 1999-12-31 20:00 - 00135168 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibrtmon.exe
2014-08-22 01:09 - 1999-12-31 20:00 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00051712 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2014-08-22 01:09 - 1999-12-31 20:00 - 00015577 _____ () C:\Windows\atiogl.xml
2014-08-22 01:09 - 1999-12-31 20:00 - 00012288 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-08-22 01:06 - 2014-08-29 13:37 - 00013464 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
2014-08-22 01:05 - 2014-08-22 01:05 - 00000000 ____D () C:\Users\6910p\AppData\Local\SlimWare Utilities Inc
2014-08-22 00:34 - 2014-01-08 22:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-08-22 00:32 - 2014-05-08 05:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-08-22 00:32 - 2014-05-08 05:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-08-22 00:21 - 2014-08-22 00:21 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-08-22 00:14 - 2012-08-23 10:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-08-22 00:14 - 2012-08-23 10:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-08-22 00:14 - 2012-08-23 07:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-08-22 00:13 - 2014-08-22 00:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-08-22 00:13 - 2014-08-22 00:13 - 00000000 ____D () C:\Program Files\Synaptics
2014-08-22 00:09 - 2013-10-01 20:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-08-22 00:09 - 2013-10-01 20:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-08-22 00:09 - 2013-10-01 20:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-08-22 00:09 - 2013-10-01 20:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-08-22 00:09 - 2013-10-01 20:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-08-22 00:09 - 2013-10-01 19:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-08-22 00:09 - 2013-10-01 19:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-08-22 00:09 - 2013-10-01 19:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-08-22 00:09 - 2013-10-01 19:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-08-22 00:09 - 2013-10-01 18:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-08-22 00:09 - 2013-10-01 18:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-08-21 23:46 - 2014-08-21 23:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-21 23:46 - 2014-08-21 23:46 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-21 23:42 - 2014-08-28 06:31 - 00000000 ____D () C:\Program Files\CONEXANT
2014-08-21 23:25 - 2014-08-22 00:23 - 00111520 _____ () C:\Users\6910p\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-21 23:25 - 1980-01-04 23:25 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-21 23:20 - 2014-08-21 23:20 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-08-21 23:07 - 2014-07-31 19:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-21 23:07 - 2014-07-25 09:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-21 23:07 - 2014-07-25 09:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-21 23:07 - 2014-07-25 09:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-21 23:07 - 2014-07-25 08:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-21 23:07 - 2014-07-25 08:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-21 23:07 - 2014-07-25 08:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-21 23:07 - 2014-07-25 08:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-21 23:07 - 2014-07-25 08:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-21 23:07 - 2014-07-25 08:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-21 23:07 - 2014-07-25 08:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-21 23:07 - 2014-07-25 08:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-21 23:07 - 2014-07-25 08:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-21 23:07 - 2014-07-25 08:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-21 23:07 - 2014-07-25 08:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-21 23:07 - 2014-07-25 08:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-21 23:07 - 2014-07-25 07:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-21 23:07 - 2014-07-25 07:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-21 23:07 - 2014-07-25 07:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-21 23:07 - 2014-07-25 07:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-21 23:07 - 2014-07-25 07:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-21 23:07 - 2014-07-25 07:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-21 23:07 - 2014-07-25 07:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-21 23:07 - 2014-07-25 07:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-21 23:07 - 2014-07-25 07:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-21 23:07 - 2014-07-25 07:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-21 23:07 - 2014-07-25 07:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-21 23:07 - 2014-07-25 06:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-21 23:07 - 2014-07-25 06:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-21 23:07 - 2014-07-25 06:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-21 23:01 - 2014-08-21 23:01 - 00000000 __SHD () C:\Users\6910p\AppData\Local\EmieUserList
2014-08-21 23:01 - 2014-08-21 23:01 - 00000000 __SHD () C:\Users\6910p\AppData\Local\EmieSiteList
2014-08-21 22:58 - 2012-02-11 01:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-08-21 22:57 - 2014-02-03 22:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-08-21 22:57 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-08-21 22:57 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-08-21 22:57 - 2013-11-23 14:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-08-21 22:57 - 2011-03-11 01:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-08-21 22:57 - 2011-03-11 01:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-08-21 22:57 - 2011-03-11 01:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-08-21 22:57 - 2011-03-11 01:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-08-21 22:57 - 2011-03-11 01:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-08-21 22:57 - 2011-03-11 01:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-08-21 22:57 - 2011-03-11 01:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-08-21 22:57 - 2011-03-11 00:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-08-21 22:57 - 2011-02-25 01:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-08-21 22:54 - 2014-08-28 06:30 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\DVDVideoSoft
2014-08-21 22:49 - 2014-08-25 19:51 - 00000000 ____D () C:\Program Files\TweakNow RegCleaner
2014-08-21 22:49 - 2014-08-24 15:42 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-08-21 22:49 - 2014-08-21 22:49 - 00002455 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk
2014-08-21 22:49 - 2014-08-21 22:49 - 00001052 _____ () C:\Users\Public\Desktop\TweakNow RegCleaner.lnk
2014-08-21 22:49 - 2014-08-21 22:49 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\TweakNow RegCleaner 2012
2014-08-21 22:49 - 2014-08-21 22:49 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\TweakNow RegCleaner
2014-08-21 22:49 - 2014-08-21 22:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow RegCleaner
2014-08-21 22:48 - 2014-08-28 06:32 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2014-08-21 22:48 - 2014-08-28 06:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2014-08-21 22:48 - 2014-08-21 22:48 - 00002038 _____ () C:\Users\Public\Desktop\NCH Suite.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001130 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disketch Disc Label Software.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001128 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Burn.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001118 _____ () C:\Users\Public\Desktop\Disketch Disc Label Software.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001116 _____ () C:\Users\Public\Desktop\Express Burn.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001116 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad Video Editor.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001104 _____ () C:\Users\Public\Desktop\VideoPad Video Editor.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001100 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WavePad Sound Editor.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001088 _____ () C:\Users\Public\Desktop\WavePad Sound Editor.lnk
2014-08-21 22:47 - 2014-08-21 22:47 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-08-21 22:43 - 2014-08-22 00:17 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-08-21 22:42 - 2014-08-21 22:42 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-08-21 22:41 - 2014-08-21 22:41 - 00000000 ____D () C:\Windows\PCHEALTH
2014-08-21 22:41 - 2014-08-21 22:41 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-08-21 22:38 - 2014-08-22 00:16 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-21 22:38 - 2014-08-21 22:41 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-21 22:38 - 2014-08-21 22:38 - 00000000 ____D () C:\Users\6910p\AppData\Local\Microsoft Help
2014-08-21 22:38 - 2014-08-21 22:38 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-08-21 22:36 - 2014-08-21 22:36 - 00000000 __RHD () C:\MSOCache
2014-08-21 22:35 - 2014-08-21 22:35 - 00000000 ____D () C:\ProgramData\TEMP
2014-08-21 22:16 - 2014-08-21 22:17 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-21 22:16 - 2014-07-31 23:42 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-21 22:07 - 2014-08-21 23:57 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-08-21 22:01 - 2012-07-25 23:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-08-21 22:01 - 2012-07-25 23:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-08-21 22:01 - 2012-07-25 23:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-08-21 22:01 - 2012-07-25 23:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-08-21 22:01 - 2012-07-25 23:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-08-21 22:01 - 2012-07-25 22:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-08-21 22:01 - 2012-07-25 22:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-08-21 22:01 - 2012-06-02 10:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-08-21 22:00 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-21 22:00 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-21 22:00 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-21 21:59 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-21 21:41 - 2013-04-09 19:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-08-21 21:21 - 2014-08-21 21:21 - 00000000 _____ () C:\Users\6910p\AppData\Local\QSwitch.txt
2014-08-21 21:21 - 2014-08-21 21:21 - 00000000 _____ () C:\Users\6910p\AppData\Local\DSwitch.txt
2014-08-21 21:21 - 2014-08-21 21:21 - 00000000 _____ () C:\Users\6910p\AppData\Local\AtStart.txt
2014-08-21 21:20 - 2014-08-21 21:20 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\Adobe
2014-08-21 21:09 - 2014-08-21 21:09 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-21 21:07 - 2012-03-01 01:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-08-21 21:07 - 2012-03-01 01:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-08-21 21:03 - 2014-08-21 21:03 - 00000000 ____D () C:\Program Files\Analog Devices
2014-08-21 21:02 - 2014-08-21 21:02 - 00000000 ____D () C:\Users\Default\AppData\Roaming\hpqLog
2014-08-21 21:02 - 2014-08-21 21:02 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\hpqLog
2014-08-21 21:02 - 2014-08-21 21:02 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\hpqLog
2014-08-21 21:01 - 2014-08-22 02:25 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-08-21 21:01 - 2014-08-21 21:02 - 00000000 ____D () C:\Windows\QLB
2014-08-21 21:01 - 2014-08-21 21:02 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-08-21 21:01 - 2009-04-29 07:46 - 00015872 _____ (Hewlett-Packard Development Company, L.P.) C:\Windows\system32\Drivers\HpqKbFiltr.sys
2014-08-21 21:01 - 2008-09-08 13:31 - 01885488 ____R (Hewlett-Packard Company) C:\Windows\system32\BttnCmn.dll
2014-08-21 21:01 - 2008-09-08 13:31 - 01885488 _____ (Hewlett-Packard Company) C:\Windows\system32\BttnCmns.dll
2014-08-21 21:01 - 2006-11-02 06:09 - 01419232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wdfcoinstaller01005.dll
2014-08-21 20:57 - 2014-08-21 20:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
2014-08-21 20:57 - 2014-08-21 20:57 - 00000000 ____D () C:\Program Files\AuthenTec
2014-08-21 20:51 - 2013-05-10 00:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-08-21 20:51 - 2013-05-10 00:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-21 20:43 - 2014-08-21 20:43 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-21 20:43 - 2014-08-21 20:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-21 20:43 - 2014-08-21 20:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-21 20:42 - 2014-08-21 20:42 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-08-21 20:42 - 2014-08-21 20:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-08-21 20:42 - 2014-08-21 20:42 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-21 20:38 - 2014-08-21 20:38 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-08-21 20:37 - 2014-08-21 20:45 - 00014012 _____ () C:\Windows\IE11_main.log
2014-08-21 20:33 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-08-21 20:33 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-08-21 20:33 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-08-21 20:33 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-08-21 20:33 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-08-21 20:33 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-08-21 20:33 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-08-21 20:33 - 2013-09-24 21:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-08-21 20:33 - 2012-12-07 08:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-08-21 20:33 - 2012-12-07 08:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-08-21 20:33 - 2012-12-07 06:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-08-21 20:33 - 2012-12-07 06:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-08-21 20:33 - 2012-05-04 05:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-08-21 20:32 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-08-21 20:32 - 2012-10-03 12:42 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-08-21 20:32 - 2012-10-03 12:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-08-21 20:32 - 2012-10-03 12:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-08-21 20:32 - 2012-10-03 12:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-08-21 20:32 - 2012-10-03 12:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-08-21 20:32 - 2012-10-03 12:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-08-21 20:32 - 2012-10-03 11:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-08-21 20:31 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-08-21 20:31 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-08-21 20:31 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-08-21 20:31 - 2014-03-04 05:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-08-21 20:31 - 2014-03-04 05:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-08-21 20:31 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-08-21 20:31 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-08-21 20:31 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-08-21 20:31 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-08-21 20:31 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-08-21 20:31 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-08-21 20:31 - 2013-10-03 21:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-08-21 20:31 - 2013-10-03 21:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-08-21 20:31 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-08-21 20:31 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-08-21 20:31 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-08-21 20:31 - 2013-05-09 23:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-08-21 20:31 - 2013-02-11 23:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-08-21 20:31 - 2012-08-22 13:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-08-21 20:31 - 2012-07-04 15:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-08-21 20:30 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-21 20:30 - 2014-06-03 05:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-21 20:30 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-21 20:30 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-21 20:30 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-21 20:30 - 2014-02-03 22:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-08-21 20:30 - 2014-02-03 22:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-08-21 20:30 - 2014-02-03 22:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-08-21 20:30 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-08-21 20:30 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-08-21 20:30 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-08-21 20:30 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-08-21 20:30 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-08-21 20:30 - 2013-07-02 23:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-08-21 20:30 - 2013-07-02 23:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-08-21 20:30 - 2012-08-21 16:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-08-21 20:30 - 2012-01-04 04:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-08-21 20:30 - 2011-04-28 22:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-08-21 20:30 - 2011-04-28 22:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-08-21 20:30 - 2011-04-28 22:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-08-21 20:29 - 2014-08-06 21:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-21 20:29 - 2014-08-06 21:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-21 20:29 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-08-21 20:29 - 2013-08-27 20:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-08-21 20:29 - 2012-06-06 01:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-08-21 20:29 - 2011-05-04 00:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-08-21 20:29 - 2011-05-04 00:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-08-21 20:29 - 2011-05-04 00:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-08-21 20:29 - 2011-05-04 00:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-08-21 20:29 - 2011-05-04 00:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-08-21 20:29 - 2011-05-04 00:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-08-21 20:29 - 2011-05-04 00:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-08-21 20:29 - 2011-05-04 00:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-08-21 20:29 - 2011-05-04 00:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-08-21 20:29 - 2010-12-23 01:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-08-21 20:29 - 2010-12-23 01:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-08-21 20:29 - 2010-12-23 01:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-08-21 20:28 - 2014-07-13 21:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-21 20:28 - 2014-06-15 21:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-21 20:28 - 2014-06-15 21:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-21 20:28 - 2014-06-15 21:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-21 20:28 - 2014-04-04 22:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-08-21 20:28 - 2014-04-04 22:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-08-21 20:28 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-08-21 20:28 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-08-21 20:28 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-08-21 20:28 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-08-21 20:28 - 2014-01-27 22:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-08-21 20:28 - 2014-01-23 22:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-08-21 20:28 - 2013-12-31 19:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-08-21 20:28 - 2013-11-26 07:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-08-21 20:28 - 2013-10-29 22:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-08-21 20:28 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-08-21 20:28 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-08-21 20:28 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-08-21 20:28 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-08-21 20:28 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-08-21 20:28 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-08-21 20:28 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-08-21 20:28 - 2013-06-06 00:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-08-21 20:28 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-08-21 20:28 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-08-21 20:28 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-08-21 20:28 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-08-21 20:28 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-08-21 20:28 - 2013-03-18 23:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-08-21 20:28 - 2013-01-24 00:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-08-21 20:28 - 2012-11-02 01:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-08-21 20:28 - 2012-10-09 13:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-08-21 20:28 - 2012-10-09 13:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-08-21 20:28 - 2012-07-04 17:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-08-21 20:28 - 2012-07-04 17:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-08-21 20:28 - 2012-07-04 17:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-08-21 20:28 - 2012-05-05 03:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-08-21 20:28 - 2012-04-27 23:17 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-08-21 20:28 - 2011-12-30 01:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-08-21 20:28 - 2011-11-19 10:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-08-21 20:28 - 2011-11-17 01:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-08-21 20:28 - 2011-10-26 00:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-08-21 20:28 - 2011-10-15 01:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-08-21 20:28 - 2011-08-27 00:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-08-21 20:28 - 2011-08-27 00:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-08-21 20:28 - 2011-08-17 00:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-08-21 20:28 - 2011-08-17 00:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-08-21 20:28 - 2011-07-08 22:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-08-21 20:28 - 2011-05-24 06:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-08-21 20:28 - 2011-05-03 00:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-08-21 20:28 - 2011-04-26 22:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-08-21 20:28 - 2011-04-26 22:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-08-21 20:28 - 2011-03-03 01:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-08-21 20:28 - 2011-03-03 01:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-08-21 20:28 - 2011-03-03 01:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-08-21 20:28 - 2011-02-18 01:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-08-21 20:28 - 2011-02-12 01:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-08-21 20:27 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-21 20:27 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-08-21 20:27 - 2014-05-30 02:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-08-21 20:27 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-08-21 20:27 - 2014-03-04 05:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-08-21 20:27 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-08-21 20:27 - 2013-11-26 21:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-08-21 20:27 - 2013-11-26 21:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-08-21 20:27 - 2013-11-26 21:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-08-21 20:27 - 2013-11-26 21:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-08-21 20:27 - 2013-11-26 21:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-08-21 20:27 - 2013-11-26 21:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-08-21 20:27 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-08-21 20:27 - 2013-10-11 22:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-08-21 20:27 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-08-21 20:27 - 2013-10-03 21:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-08-21 20:27 - 2013-10-03 21:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-08-21 20:27 - 2013-08-04 21:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-08-21 20:27 - 2013-08-01 21:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 20:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-08-21 20:27 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-08-21 20:27 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-08-21 20:27 - 2013-07-12 06:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-08-21 20:27 - 2013-07-04 07:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-08-21 20:27 - 2013-07-04 07:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-08-21 20:27 - 2013-07-04 05:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-08-21 20:27 - 2013-06-25 18:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-08-21 20:27 - 2012-11-28 18:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-08-21 20:27 - 2012-11-28 18:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-08-21 20:27 - 2012-11-28 18:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-08-21 20:27 - 2012-05-14 00:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-08-21 20:27 - 2012-05-01 00:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-08-21 20:27 - 2012-04-26 00:45 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-08-21 20:27 - 2012-04-26 00:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-08-21 20:27 - 2012-04-26 00:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-08-21 20:27 - 2012-03-17 03:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-08-21 20:27 - 2011-12-16 03:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-08-21 20:27 - 2011-06-16 00:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-08-21 20:27 - 2011-06-15 04:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2014-08-21 20:27 - 2011-06-15 04:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-08-21 20:27 - 2011-06-15 04:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-08-21 20:27 - 2011-06-15 04:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-08-21 20:27 - 2011-06-15 04:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-08-21 20:27 - 2011-04-09 01:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-08-21 20:27 - 2011-03-11 01:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-08-21 20:27 - 2011-03-11 01:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-08-21 20:26 - 2014-01-19 03:37 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-21 20:26 - 2012-09-25 18:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-08-21 20:26 - 2011-02-23 00:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-08-21 20:24 - 2013-12-03 22:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-08-21 20:24 - 2013-12-03 22:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-08-21 20:24 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-08-21 20:24 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-08-21 20:24 - 2013-12-03 22:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-08-21 20:24 - 2013-12-03 21:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-08-21 20:24 - 2013-12-03 21:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-08-21 20:24 - 2013-12-03 21:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-08-21 20:24 - 2013-12-03 21:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-08-21 20:20 - 2013-06-14 23:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-08-21 20:11 - 2014-06-05 10:26 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-08-21 20:11 - 2014-04-11 22:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-08-21 20:11 - 2014-04-11 22:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-08-21 20:11 - 2014-04-11 22:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-08-21 20:11 - 2014-04-11 22:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-08-21 20:11 - 2014-04-11 22:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-08-21 20:11 - 2014-04-11 22:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-08-21 20:11 - 2013-07-04 08:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-08-21 20:11 - 2013-02-27 00:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-08-21 20:09 - 2012-02-17 01:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-08-21 20:09 - 2012-02-17 00:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-08-21 20:01 - 2014-08-21 20:01 - 00001413 _____ () C:\Users\6910p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-21 19:58 - 2014-08-28 06:33 - 00000000 ____D () C:\Users\6910p
2014-08-21 19:58 - 2014-08-21 19:58 - 00000020 ___SH () C:\Users\6910p\ntuser.ini
2014-08-21 19:58 - 2014-08-21 19:58 - 00000000 ____D () C:\Users\6910p\AppData\Local\VirtualStore
2014-08-21 19:58 - 2009-07-14 00:42 - 00000000 ___RD () C:\Users\6910p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-21 19:58 - 2009-07-14 00:37 - 00000000 ___RD () C:\Users\6910p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-21 19:57 - 2014-08-21 19:57 - 00000000 __SHD () C:\Recovery

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-29 14:04 - 2014-08-29 14:03 - 00011896 _____ () C:\Users\6910p\Downloads\FRST.txt
2014-08-29 14:03 - 2014-08-28 06:38 - 00000000 ____D () C:\FRST
2014-08-29 14:01 - 2014-08-29 14:01 - 01095168 _____ (Farbar) C:\Users\6910p\Downloads\FRST.exe
2014-08-29 13:58 - 2014-08-29 13:31 - 00000000 ____D () C:\AdwCleaner
2014-08-29 13:53 - 2014-08-29 13:53 - 00000633 _____ () C:\Users\6910p\Desktop\JRT.txt
2014-08-29 13:50 - 2014-08-29 13:50 - 00000000 ____D () C:\Windows\ERUNT
2014-08-29 13:45 - 2014-08-29 13:45 - 01016261 _____ (Thisisu) C:\Users\6910p\Downloads\JRT.exe
2014-08-29 13:44 - 2009-07-14 00:34 - 00036928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-29 13:44 - 2009-07-14 00:34 - 00036928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-29 13:42 - 2010-11-20 17:01 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-29 13:41 - 1980-01-04 04:21 - 01527597 _____ () C:\Windows\WindowsUpdate.log
2014-08-29 13:37 - 2014-08-26 05:21 - 00000386 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
2014-08-29 13:37 - 2014-08-22 01:06 - 00013464 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
2014-08-29 13:37 - 2010-11-20 17:48 - 00020120 _____ () C:\Windows\PFRO.log
2014-08-29 13:37 - 2009-07-14 00:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-29 13:37 - 2009-07-14 00:39 - 00024625 _____ () C:\Windows\setupact.log
2014-08-29 13:31 - 2014-08-29 13:31 - 01364531 _____ () C:\Users\6910p\Downloads\AdwCleaner.exe
2014-08-28 19:38 - 2009-07-14 00:33 - 00433496 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-28 07:04 - 2014-08-26 00:12 - 00000000 ____D () C:\NPE
2014-08-28 06:57 - 2014-08-28 06:56 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\6910p\Downloads\tdsskiller.exe
2014-08-28 06:33 - 2014-08-21 19:58 - 00000000 ____D () C:\Users\6910p
2014-08-28 06:32 - 2014-08-21 22:48 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2014-08-28 06:32 - 2014-08-21 22:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2014-08-28 06:32 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-08-28 06:31 - 2014-08-26 01:22 - 00000000 ____D () C:\Program Files\Adware-Removal-Tool
2014-08-28 06:31 - 2014-08-21 23:42 - 00000000 ____D () C:\Program Files\CONEXANT
2014-08-28 06:31 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\registration
2014-08-28 06:31 - 1980-01-04 23:14 - 00000000 ____D () C:\ProgramData\Norton
2014-08-28 06:30 - 2014-08-24 19:20 - 00000000 ____D () C:\Users\6910p\AppData\Local\Google
2014-08-28 06:30 - 2014-08-21 22:54 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\DVDVideoSoft
2014-08-28 06:29 - 2014-08-24 19:20 - 00000000 ____D () C:\Program Files\Google
2014-08-26 19:38 - 2014-08-26 00:10 - 00000000 ____D () C:\Users\6910p\AppData\Local\NPE
2014-08-26 05:28 - 1980-01-04 23:29 - 00000000 ____D () C:\Users\6910p\Documents\Symantec
2014-08-26 04:11 - 2014-08-26 01:22 - 00290304 _____ (Microsoft Corporation) C:\Windows\system32\subinacl.exe
2014-08-26 01:21 - 2014-08-26 01:21 - 00753184 _____ () C:\Users\6910p\Downloads\Adware-Removal-Tool-v3.9.1.exe
2014-08-25 19:51 - 2014-08-21 22:49 - 00000000 ____D () C:\Program Files\TweakNow RegCleaner
2014-08-24 22:48 - 2014-08-24 22:48 - 00000017 _____ () C:\Users\6910p\AppData\Local\resmon.resmoncfg
2014-08-24 19:40 - 2014-08-24 19:22 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-24 19:24 - 2014-08-24 19:24 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\Macromedia
2014-08-24 19:22 - 2014-08-24 19:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2014-08-24 19:20 - 2014-08-24 19:20 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-08-24 19:20 - 2014-08-24 19:20 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-08-24 19:20 - 2014-08-24 19:20 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-24 16:14 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\rescache
2014-08-24 15:42 - 2014-08-21 22:49 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-08-22 21:46 - 2014-08-28 06:38 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 20:42 - 2014-08-28 06:38 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 08:43 - 2014-08-22 08:43 - 00000000 ____D () C:\ProgramData\Sun
2014-08-22 08:43 - 2014-08-22 08:43 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-22 08:43 - 2014-08-22 08:43 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-22 08:42 - 2014-08-22 08:42 - 00000000 ____D () C:\Program Files\Java
2014-08-22 08:40 - 2014-08-22 08:40 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\he-IL
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-08-22 02:35 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\Help
2014-08-22 02:33 - 2014-08-22 02:33 - 00000000 ____D () C:\Windows\system32\vs08
2014-08-22 02:33 - 2014-08-22 02:33 - 00000000 ____D () C:\Program Files\Broadcom
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\th-TH
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\et-EE
2014-08-22 02:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-08-22 02:32 - 2014-08-22 02:33 - 02682880 _____ (Microsoft Corporation) C:\Windows\system32\vcredist_x86.exe
2014-08-22 02:32 - 2014-08-22 02:33 - 00052224 _____ (Broadcom Corporation) C:\Windows\system32\wltrynt.dll
2014-08-22 02:32 - 2014-08-22 02:32 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\InstallShield
2014-08-22 02:31 - 2014-08-22 02:33 - 07250944 _____ (Broadcom Corporation) C:\Windows\system32\BCMWLCPL.CPL
2014-08-22 02:31 - 2014-08-22 02:33 - 04358144 _____ (Broadcom Corporation) C:\Windows\system32\bcmttls.dll
2014-08-22 02:31 - 2014-08-22 02:33 - 04270288 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL6.SYS
2014-08-22 02:31 - 2014-08-22 02:33 - 03928064 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv.dll
2014-08-22 02:31 - 2014-08-22 02:33 - 03616768 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui.dll
2014-08-22 02:31 - 2014-08-22 02:33 - 01005056 _____ (Broadcom Corporation) C:\Windows\system32\BCMLogon.dll
2014-08-22 02:31 - 2014-08-22 02:33 - 00092464 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2014-08-22 02:31 - 2014-08-22 02:33 - 00035088 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys
2014-08-22 02:31 - 2014-08-22 02:33 - 00019664 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcm42rly.sys
2014-08-22 02:31 - 2014-08-22 02:33 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-08-22 02:31 - 2014-08-22 02:33 - 00000441 _____ () C:\Windows\system32\vcredist_x86.bat
2014-08-22 02:25 - 2014-08-21 21:01 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-08-22 02:17 - 2014-08-22 01:42 - 00000000 ____D () C:\Program Files\Intel
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\ATI
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\Users\6910p\AppData\Local\ATI
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-08-22 01:19 - 2014-08-22 01:19 - 00000000 ____D () C:\ProgramData\ATI
2014-08-22 01:19 - 2014-08-22 01:16 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-22 01:16 - 2009-07-13 22:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-08-22 01:15 - 2014-08-22 01:15 - 00000000 ____D () C:\Program Files\ATI
2014-08-22 01:05 - 2014-08-22 01:05 - 00000000 ____D () C:\Users\6910p\AppData\Local\SlimWare Utilities Inc
2014-08-22 00:23 - 2014-08-21 23:25 - 00111520 _____ () C:\Users\6910p\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-22 00:22 - 2009-07-13 22:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-22 00:21 - 2014-08-22 00:21 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-08-22 00:17 - 2014-08-21 22:43 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-08-22 00:16 - 2014-08-21 22:38 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-22 00:15 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-08-22 00:13 - 2014-08-22 00:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-08-22 00:13 - 2014-08-22 00:13 - 00000000 ____D () C:\Program Files\Synaptics
2014-08-22 00:09 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-21 23:57 - 2014-08-21 22:07 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-08-21 23:49 - 2009-07-13 22:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-21 23:49 - 2009-07-13 22:04 - 00000478 _____ () C:\Windows\win.ini
2014-08-21 23:46 - 2014-08-21 23:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-21 23:46 - 2014-08-21 23:46 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-21 23:20 - 2014-08-21 23:20 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-08-21 23:01 - 2014-08-21 23:01 - 00000000 __SHD () C:\Users\6910p\AppData\Local\EmieUserList
2014-08-21 23:01 - 2014-08-21 23:01 - 00000000 __SHD () C:\Users\6910p\AppData\Local\EmieSiteList
2014-08-21 22:49 - 2014-08-21 22:49 - 00002455 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk
2014-08-21 22:49 - 2014-08-21 22:49 - 00001052 _____ () C:\Users\Public\Desktop\TweakNow RegCleaner.lnk
2014-08-21 22:49 - 2014-08-21 22:49 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\TweakNow RegCleaner 2012
2014-08-21 22:49 - 2014-08-21 22:49 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\TweakNow RegCleaner
2014-08-21 22:49 - 2014-08-21 22:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow RegCleaner
2014-08-21 22:48 - 2014-08-21 22:48 - 00002038 _____ () C:\Users\Public\Desktop\NCH Suite.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001130 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disketch Disc Label Software.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001128 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Burn.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001118 _____ () C:\Users\Public\Desktop\Disketch Disc Label Software.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001116 _____ () C:\Users\Public\Desktop\Express Burn.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001116 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad Video Editor.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001104 _____ () C:\Users\Public\Desktop\VideoPad Video Editor.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001100 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WavePad Sound Editor.lnk
2014-08-21 22:48 - 2014-08-21 22:48 - 00001088 _____ () C:\Users\Public\Desktop\WavePad Sound Editor.lnk
2014-08-21 22:47 - 2014-08-21 22:47 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-08-21 22:42 - 2014-08-21 22:42 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-08-21 22:42 - 2010-11-20 20:47 - 00000000 ____D () C:\Windows\ShellNew
2014-08-21 22:41 - 2014-08-21 22:41 - 00000000 ____D () C:\Windows\PCHEALTH
2014-08-21 22:41 - 2014-08-21 22:41 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-08-21 22:41 - 2014-08-21 22:38 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-21 22:38 - 2014-08-21 22:38 - 00000000 ____D () C:\Users\6910p\AppData\Local\Microsoft Help
2014-08-21 22:38 - 2014-08-21 22:38 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-08-21 22:36 - 2014-08-21 22:36 - 00000000 __RHD () C:\MSOCache
2014-08-21 22:35 - 2014-08-21 22:35 - 00000000 ____D () C:\ProgramData\TEMP
2014-08-21 22:22 - 2010-11-20 20:47 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-21 22:17 - 2014-08-21 22:16 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-21 21:21 - 2014-08-21 21:21 - 00000000 _____ () C:\Users\6910p\AppData\Local\QSwitch.txt
2014-08-21 21:21 - 2014-08-21 21:21 - 00000000 _____ () C:\Users\6910p\AppData\Local\DSwitch.txt
2014-08-21 21:21 - 2014-08-21 21:21 - 00000000 _____ () C:\Users\6910p\AppData\Local\AtStart.txt
2014-08-21 21:20 - 2014-08-21 21:20 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\Adobe
2014-08-21 21:09 - 2014-08-21 21:09 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-21 21:09 - 2009-07-14 00:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-21 21:03 - 2014-08-21 21:03 - 00000000 ____D () C:\Program Files\Analog Devices
2014-08-21 21:02 - 2014-08-21 21:02 - 00000000 ____D () C:\Users\Default\AppData\Roaming\hpqLog
2014-08-21 21:02 - 2014-08-21 21:02 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\hpqLog
2014-08-21 21:02 - 2014-08-21 21:02 - 00000000 ____D () C:\Users\6910p\AppData\Roaming\hpqLog
2014-08-21 21:02 - 2014-08-21 21:01 - 00000000 ____D () C:\Windows\QLB
2014-08-21 21:02 - 2014-08-21 21:01 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-08-21 20:57 - 2014-08-21 20:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
2014-08-21 20:57 - 2014-08-21 20:57 - 00000000 ____D () C:\Program Files\AuthenTec
2014-08-21 20:57 - 2009-07-14 00:52 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-08-21 20:45 - 2014-08-21 20:37 - 00014012 _____ () C:\Windows\IE11_main.log
2014-08-21 20:43 - 2014-08-21 20:43 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-21 20:43 - 2014-08-21 20:43 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-21 20:43 - 2014-08-21 20:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-21 20:43 - 2014-08-21 20:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-21 20:43 - 2014-08-21 20:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-21 20:43 - 2014-08-21 20:43 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-21 20:42 - 2014-08-21 20:42 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-08-21 20:42 - 2014-08-21 20:42 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-08-21 20:42 - 2014-08-21 20:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-08-21 20:42 - 2014-08-21 20:42 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-21 20:39 - 2014-08-21 20:39 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-21 20:38 - 2014-08-21 20:38 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-08-21 20:01 - 2014-08-21 20:01 - 00001413 _____ () C:\Users\6910p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-21 19:58 - 2014-08-21 19:58 - 00000020 ___SH () C:\Users\6910p\ntuser.ini
2014-08-21 19:58 - 2014-08-21 19:58 - 00000000 ____D () C:\Users\6910p\AppData\Local\VirtualStore
2014-08-21 19:58 - 2009-07-14 00:52 - 00000000 ____D () C:\Windows\system32\restore
2014-08-21 19:58 - 1980-01-04 04:17 - 00000000 ____D () C:\Windows\Panther
2014-08-21 19:57 - 2014-08-21 19:57 - 00000000 __SHD () C:\Recovery
2014-08-21 19:57 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\Recovery
2014-08-06 21:43 - 2014-08-21 20:29 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-06 21:39 - 2014-08-21 20:29 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-31 23:42 - 2014-08-21 22:16 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-31 19:16 - 2014-08-21 23:07 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-24 16:08

==================== End Of Log ============================


Edited by bittercreek1414, 29 August 2014 - 12:06 PM.

  • 0

#13
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hi Linda, 
 
Do you recognise this folder? C:\Windows\AutoKMS

Please run the following tools. 
 
STEP 1
XrDFflh.png.pagespeed.ce.Z3VhGXMjQZ.png CKScanner

  • Please download CKScanner and save the file to your Desktop.
  • Right-Click CKScanner.exe and select xAVOiBNU.jpg.pagespeed.ic.H5HC6LkiJX.jpg Run as administrator to run the programme.
  • Click Search For Files.
  • When the cursor hourglass disappears, click Save List To File.
  • A message box will verify the file saved.
  • Please run this programme only once.
  • A log (CKFiles.txt) will be created on your DesktopCopy the contents of the log and paste in your next reply.
     

STEP 2
DmqaAZx.png.pagespeed.ce.TCAhWPLZ8j.png MGADiag

  • Please download MGADiag and save the file to your Desktop.
  • Double-click the MGADiag icon on your Desktop.
  • Click continue.png.
  • Click copy.png.
  • Press the Windows Key xpdKOQKY.png.pagespeed.ic.tmAgS1-k6q.png + r on your keyboard at the same time. Type Notepad and click OK.
  • Click Edit followed by Paste in Notepad.
  • Replace the numbers & letters with 'x's in the line beginning with Windows Product Key (to hide your Product Key from the public). 
  • Copy the contents of the log and paste in your next reply.
     

======================================================

STEP 3
pfNZP4A.png Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • CKFiles.txt
  • MGADiag log

  • 0

#14
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts
Hello,

Do you still require assistance?
  • 0

#15
bittercreek1414

bittercreek1414

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

Adam,

 

Yes. I am sorry for the delay. I had a sick grandbaby. I am trying the last steps you told me, Thanks

 

Linda


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP